Sign RPM files
Before you install the latest
Symantec Data Loss Prevention
version on a Linux platform, Symantec recommends that you use the RPM signing key to verify the signature of RPM files. All RPM packages provided in the Symantec_DLP_
are signed with a GPG key. The signature provides integrity protection and ensures that the packages are the same packages produced by Symantec and were not altered in any way by a malicious third-party.16_0_1
_Platform_Lin-IN_<platform_lin_version>.zipIf you try to install and do not use the RPM signing key, a "NOKEY" warning message displays during the installation.
Use the RPM signing key before you install the Enforce Server, detection server, or a single-tier system.
- Locate theSymantec_DLP_RPM_Signing_Key.ascfile in theDLPDownloadHomedirectory. TheSymantec_DLP_RPM_Signing_Key.ascis packaged in theSymantec_DLP_file.16_0_1_Platform_Lin-IN_<platform_lin_version>.zip
- Copy theSymantec_DLP_RPM_Signing_Key.ascfile to the computer where you plan to install the server component.
- Log on as root to the computer where you plan to install the server component.
- Import the key to the RPM key ring by running the following command:rpm --import Symantec_DLP_RPM_Signing_Key.asc
- Display the imported key by running the following command:rpm -qi gpg-pubkey-b891399b-59c04bd7
- Verify the signature of files before installing them by running the following command:rpm -K *rpm