GPG Environment

Follow the steps below to complete setting up a GPG Environment.

NOTE  As you proceed through these steps, note that some of the fields may not be editable, and some fields may not appear at all. This is based on the Environment Type you selected and the Environment Template settings that your Code Signing Administrator has established.

  1. If this Environment will be used as an issuer for other GPG Environments, click the Issuer for other GPG Environments checkbox.

    Per-User Environments can't be set up as issuer Environments.

  2. If this Environment should use another GPG Environment as its issuer, select the issuing Environment from the Issuer GPG Environment drop-down.

    DID YOU KNOW?  The Issuer for other GPG Environments and the Issuer GPG Environment options are not mutually exclusive. A single GPG Environment can have an Issuer GPG Environment and also be an issuer for other GPG Environments.

  3. Select a Signing Flow to use for this Environment. The Flow you select will be invoked when the keys associated with this Environment are used.

    This field is removed from GPG Environments designated as Issuer Environments since these Environments can't be used for signing.

  4. Select a Key Storage Location, which is where the private key will be stored. Selecting Software stores the key in the Trust Protection Platform Secret Store.

    Other options, such as HSMs, may be available based on key storage locations configured by your Code Signing Administrator. If you plan to import an existing key currently stored on an HSM, select the HSM that stores that key.

  5. In Creation Type, choose whether you want to Create new key, Import existing key, or Use existing key in HSM. Follow the remaining steps in the sections below based on your selection.

    If you're setting up a Per-User Environment, follow the steps in Create new key.

    IMPORTANT  Two Environments may not use the same certificate or private key. Make sure that each certificate or private key is assigned to only one CodeSign Protect Environment.

What's Next

If you need additional Environments as part of this Project, you can create those now. A Project can have as many Environments as needed, and the Environments can be any type.

If you're done creating Environments, you can submit your Project for approval.