HOW TO: Add Debug Level Logging on Windows 7 and above for Symantec Encryption Desktop (previously PGP Desktop)
Last Updated December 02, 2016
This article describes how to setup debug logging for SED on Windows 7 and above for both 32 and 64-bit versions. Enabling debug logging can assist in troubleshooting any issues with SED.
Enable debug logging
Use the following steps to enable debug logging:
With PGP Desktop installed. Click Start.
Type regedit in the Start Search field, and then right-click the regedit result in the Programs list and Run as Administrator.
Browse to the HKEY_CURRENT_USER\SOFTWARE\PGP Corporation folder.
Right-click the PGP Corporation folder and select New > Key and type in Universal.
Right-click the Universal folder and select New > Key and type Debug for name the key.
Enter the following values in the Debug folder.
Right-click the right pane and click New > DWORD Value. Type LoggingLevel for the Name and press Enter.
Right-click the LoggingLevel and select Modify. Type 0003FFFF for the Value data and click OK.
Right-click the right pane and click New > DWORD Value. Type DebugLogging for the Name and press Enter.
Right-click the DebugLogging and select Modify. Type 00000001 for the Value data and click OK.
Right-click the right pane and click New > DWORD Value. Type PassthruMode for the Name and press Enter.
Right-click the PassthruMode and select Modify. Type 00000000 for the Value data and click OK.
Right-click the right pane and click New > String Value. Type ReDirectExe for the Name and press Enter. Do not assign any Value.
Close the Registry Editor.
Stop PGP services by clicking the PGP Tray icon and selecting Exit PGP Services and then click Yes.
Restart the PGP services by clicking Start > All Programs > Startup > PGPtray.exe.
The Registry Editor should look like this after adding the appropriate resources:
Verify debugging is enabled
There are several ways to verify that debug logging is taking place.
Click the PGP Tray icon and the menu will now include Debug Logging Options.
Next verify that logging is taking place at the debug level by using the following steps.
Leave Debug Logging Options in the default state of On after enabling the logging.
Click the PGP Tray icon and then select View PGP Log.
Set the View level to verbose. You should see some log records at the debug level.
How to Use
If there are problems and you want a copy of the logs you can go to the tray, click on the PGP icon and the click to View PGP Log. Then you can save the log files which will include the debug level information.
If there was a crash, you may need to obtain the file(s) from %appdata%\Roaming\PGP Corporation\PGP\PGPlog.txt. The %appdata%\Roaming\PGP Corporation\PGP\PGPlog.txt may not show that the debug level of logging is taking place but it is nevertheless. The main indication that the debug level is being used is in the log visible from the tray.
Disable debug logging:
Right-click on the PGP Tray icon > Debug Logging Options and then disable Override User-specific Logging Level.
Stop PGP Services by clicking on the PGP Tray icon and then select Exit PGP Services.
Restart the PGP Services by clicking on Start > Programs > Startup > PGPtray.exe.
Please be aware:
The user needs permissions to add content to the registry.
Certain information will be written to the log in debug mode. PGP handles your data with care but you may want to remove confidential information.
If you are using SMTP/POP3/IMAP the log will contain usernames/passwords and raw emails as they pass through the proxy.
MAPI and notes protocols are not affected.
The log may contain private key information.
The logs, including at the debug level, are written to the following locations.
Windows 2000, Windows XP %appdata%\PGP Corporation\PGP\PGPlog.txt
Windows Vista, Windows 7 %appdata%\Roaming\PGP Corporation\PGP\PGPlog.txt
Imported Document ID: HOWTO64205
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe