After successfully enrolling a client using a domain user account with the PGP Universal Server, then attempting to enroll a client using the same domain user account on different systems with the server, you enter the username and password, but you receive the following error:
Even after deleting the PGP folder in My Documents and the PGP preferences, you continue to receive the error when attempting to enroll clients. This can occur when Silent Enrollment is being used for clients and GKM is the key mode option specified for the user policy. When the GKM key is initially created for the user, the passphrase for the key is the user's domain password at the time of enrollment.
Use the following to resolve this issue when enrolling multiple clients using the same domain email account.
When performing additional installations with an existing user who initially enrolled using Silent Enrollment with a GKM key, you will need to enter the passphrase assigned to the key. The passphrase will be the Windows password of the user at the time of the first enrollment with the server when the original GKM key was created.
If the original passphrase is unknown, a new user can be created by deleting the original user on the PGP Universal Server. During enrollment a new keypair is created for the Active Directory user.
CAUTION: This should only be done if there is no data created by the original keypair user on the computer.
If the original passphrase is unknown, and key-reconstruction was configured for the Internal User Policy, the keypair passphrase can be reset by responding to the key-reconstruction questions.
Imported Document ID: TECH149316
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.