To encrypt or decrypt files or plaintext using Pretty Good Privacy (PGP) or X.509 certificates as part of a chain, add a step that includes an Encryption connection command.
To enable these commands, an IT admin first creates an Encryption connection.
Decrypt with PGP key
To decrypt a file or text with your PGP key, use a Decrypt with PGP key command.
Properties
| Property |
Detail |
| File to decrypt |
Enter the file to decrypt. To decrypt text, leave blank. |
| Text to decrypt |
Enter the text to decrypt. To decrypt a file, leave blank. |
| Armored message |
If the ciphertext to decrypt starts with ------BEGIN, or is armored, check this box. |
Outputs
| Output |
Output type |
| PGP decrypted file |
File |
Exit codes
| Code |
Type |
Detail |
| 0 |
Success |
Success |
| 1 |
Error |
General failure |
Decrypt with X509 certificate
To decrypt a file or text with an X.509 certificate, use a Decrypt with X509 certificate command.
Properties
| Property |
Detail |
| File to decrypt |
Enter the file to decrypt. To decrypt text, leave blank. |
| Text to decrypt |
Enter the text to decrypt. To decrypt a file, leave blank. |
| Hash |
Select the hash function used as a random oracle. Both the encryption and decryption using an X.509 certificate must use the same hash function.
|
Outputs
| Output |
Output type |
| X509 decrypted file |
File |
Exit codes
| Code |
Type |
Detail |
| 0 |
Success |
Success |
| 1 |
Error |
General failure |
Encrypt with PGP key
To encrypt a file or text with your PGP key, use an Encrypt with PGP key command.
Note: For PGP encryption, the connector supports Advanced Encryption Standard (AES)-128; for PGP decryption, AES-128, AES-256, CAST-128 (CAST5), and Triple Data Encryption Standard (3DES).
Properties
| Property |
Detail |
| File to encrypt |
Enter the file to encrypt. To encrypt text, leave blank. |
| Text to encrypt |
Enter the text to encrypt. To encrypt a file, leave blank. |
| Armored message |
To have the encrypted text starts with ------BEGIN, or be armored, check this box. |
Outputs
| Output |
Output type |
| PGP encrypted file |
File |
Exit codes
| Code |
Type |
Detail |
| 0 |
Success |
Success |
| 1 |
Error |
General failure |
Encrypt with X509 certificate
To encrypt a file or text with an X509 certificate, use an Encrypt with X509 certificate command. This command is only intended for very small files, and will trigger an error when the file size is too large for the selected public key and hash function.
We've included the maximum file size for each public key/hash function combo in the table below.
Properties
| Property |
Detail |
| File to encrypt |
Enter the file to encrypt. To encrypt text, leave blank. |
| Text to encrypt |
Enter the text to encrypt. To encrypt a file, leave blank. |
| Hash |
To ensure each ciphertext generated is unique, select the hash function used as a random oracle. To decrypt a file encrypted with this command, select this same hash with the Decrypt with X509 certificate command.
Options:
|
Approximate maximum file size (in bytes) for each public key/hash function
| |
RSA 1024 |
RSA 2048 |
RSA 3072 |
RSA 4096 |
| SHA1 |
86 |
214 |
342 |
470 |
| SHA256 |
62 |
190 |
318 |
446 |
| SHA512 |
n/a |
126 |
254 |
382 |
Please note that the maximum file size (in bytes) is dependent on both the public key size (in bits) and the hash function selected. Additionally, it's important to note that these numbers are approximations and may vary slightly depending on combination selected.
Outputs
| Output |
Output type |
| X509 encrypted file |
File |
Exit codes
| Code |
Type |
Detail |
| 0 |
Success |
Success |
| 1 |
Error |
General failure |