Sign RPM files

Before you install the latest
Symantec Data Loss Prevention
version on a Linux platform, Symantec recommends that you use the RPM signing key to verify the signature of RPM files. All RPM packages provided in the
Symantec_DLP_16.0.00000.60853_Platform_Lin-IN.zip
are signed with a GPG key. The signature provides integrity protection and ensures that the packages are the same packages produced by Symantec and were not altered in any way by a malicious third-party.
If you try to install and do not use the RPM signing key, a "NOKEY" warning message displays during the installation.
Use the RPM signing key before you install the Enforce Server, detection server, or a single-tier system.
  1. Locate the
    Symantec_DLP_RPM_Signing_Key.asc
    file in the
    DLPDownloadHome
    directory. The
    Symantec_DLP_RPM_Signing_Key.asc
    is packaged in the
    Symantec_DLP_16.0.00000.60853_Platform_Lin-IN.zip
    file.
  2. Copy the
    Symantec_DLP_RPM_Signing_Key.asc
    file to the computer where you plan to install the server component.
  3. Log on as root to the computer where you plan to install the server component.
  4. Import the key to the RPM key ring by running the following command:
    rpm --import Symantec_DLP_RPM_Signing_Key.asc
  5. Display the imported key by running the following command:
    rpm -qi gpg-pubkey-b891399b-59c04bd7
  6. Verify the signature of files before installing them by running the following command:
    rpm -K *rpm