EldoS | Feel safer!

Software components for data protection, secure storage and transfer

How do I configure the OpenPGPReceive Pipeline

Also by EldoS: MsgConnect
Cross-platform protocol-independent communication framework for building peer-to-peer and client-server applications and middleware components.
#19044
Posted: 02/14/2012 13:09:54
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

I used Richard Seroters tool to enter the SSO data.

I entered the application name:TestBC

Field Label Field Value

AccountName <Empty>
FirstSecret <Empty>
KeyIsHere IQHPBE81WalRBAD......

1. I just made up these Field names, do they need to have a specific name?

2. Is this the format of the field cause when I ran the PipeLine I got the following error.

SSO AUDIT
Function: RedeemTicket
Tracking ID: 76d7a67d-0a94-4a68-8ff2-c420217e4330
Client Computer: vBizTalk10Dev.hma.local (BTSNTSvc.exe:7736)
Client User: HMA\biztalkdev
Application Name: TestBC

I am struggling with this process is there an SDK or any help?

Thanks
Kent Wallace
425 306 8327
Error Code: 0x80070057, The parameter is incorrect.
#19062
Posted: 02/15/2012 05:04:46
by  shevchenko
Hi,

Quote
1. I just made up these Field names, do they need to have a specific name?

No, only values by fields should be in a certain order 1. PGPKeyFilter, 2. PGPPassphrase, 3. PGPSecretKeyringValue.

Quote
2. Is this the format of the field cause when I ran the PipeLine I got the following error.


Please try to use standard "Microsoft Enterprise Single Sign-On\SSO Administration" tool for creating SSO Application and
"SSO Client Utility" tool for assigning values to the fields.

Best regards.
#19155
Posted: 02/21/2012 11:01:58
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

1. PGPKeyFilter, 2. PGPPassphrase, 3. PGPSecretKeyringValue.


Can you give me an example of the PGPKeyFilter??

to encrypt is the correct syntax???

pgp -c <plaintext_filename>

Thanks
Kent Wallace
425 306 8327
#19156
Posted: 02/21/2012 11:59:07
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

My notes say to assign a path to the public keyring to the publickeyring property.

Is that path like:

C:\PGP\pubring.pkr

Or

C:\PGP\

Thanks
Kent
#19157
Posted: 02/21/2012 12:10:57
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

When I built the pipe line and put a file through I got the followng error:

BizCrypto OpenPGP pipeline: Failed to load secret keys: The specified path, file name, or both are too long. The fully qualified file name must be less than 260 characters, and the directory name must be less than 248 characters.

It does not tell me what field I have left oo long???

Thanks
Kent
425 306 8327
#19158
Posted: 02/21/2012 12:45:09
by Ken Ivanov (EldoS Corp.)

Answering all your questions, in order:

Quote
Can you give me an example of the PGPKeyFilter??

The simplest key filter is an empty string (no filter). Other possible values are User IDs (e.g. "someone@somewhere.com"), Key IDs (a1b2c3d4 or 01234567a1b2c3d4) and their combinations separated by semicolons.

Quote
My notes say to assign a path to the public keyring to the publickeyring property.
Is that path like:
C:\PGP\pubring.pkr
Or
C:\PGP\

You should always specify a path to the keyring file, not the directory that contains it. I.e. the path to assign to the Public Keyring property would be C:\PGP\pubring.pkr in the above case.

Quote
BizCrypto OpenPGP pipeline: Failed to load secret keys: The specified path, file name, or both are too long. The fully qualified file name must be less than 260 characters, and the directory name must be less than 248 characters.

It's about the Secret Keyring property (as the error message states there was a failure when loading secret keys). If you store secret key as a value in the SSO, please also set the Secret Keyring Source property to Value.
#19183
Posted: 02/22/2012 12:08:25
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

Ok I gave up on SSO in the pipeline I could not get it to work.

I was able to encrypt a file using the pipeline. I took the long string of charaters from the private key. Removed the carriage return and line feeds and put them in the PublicKeyringvalue and set the PublicKeyRingSource to "Value"

Now I am try to decrypt in the pipeline using the open pgp reader. I tested the fle to decrypt outside of BizTalk and it decrypted fine.

I entered the passphrase
I entered the KeyFilter a Hex number
I entered the long strings for the PublicKeyRingValue and the SecretKeyRingValue

In another attemp I tried using the file value. I get this error message:

[2/22/2012 9:53 AM] (OpenPGP reader) Running Execute()
[2/22/2012 9:53 AM] (BizCrypto.BizTalk.Pipelines.PipelineBase) Failed to process the message: No appropriate OpenPGP secret key for decryption found


Thanks
Kent


#19184
Posted: 02/22/2012 12:28:33
by Ken Ivanov (EldoS Corp.)

Normally you should not provide a key filter for decryption keys. The pipeline will pick the correct key from the keyring automatically by its ID. This way, could you please try

1) setting Key Filter to empty string,

2) if (1) doesn't help, providing the secret keyring by assigning a path to the secret keyring file to the SecretKeyring property?
#19186
Posted: 02/22/2012 14:51:17
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

I got teh decryption working I put the passphrass in the KeyPasPhrase and it worked...

Thanks
Kent
#19187
Posted: 02/22/2012 17:20:50
by Kent Wallace (Standard support level)
Joined: 11/29/2011
Posts: 9

How do you encrypt in a pipeline without using a public keyring file? I do not want to use a file.

I want to encrypt using the public key value generated form an extract and config PublicKeyringSource as value.

Can you tell me which parameters to set?

Kent Wallace
425 306 8327
Also by EldoS: SecureBlackbox
200+ components and classes for digital security, signing, encryption and secure networking.

Reply

Statistics

Topic viewed 13653 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!