Quick Start : Using FAOPGP CLS for the first time


STEP 1 : Logging on

Select FileAssurity OpenPGP CLS from the Windows Start menu.



When you first start FAOPGP CLS you are asked to provide a password so that FAOPGP CLS can create your personal keystore. FAOPGP CLS uses this password as one of the mechanisms for protecting your keystore.

Keystore Logon - first time


Enter New Password
Enter a password for the keystore. Your password must be between 8 and 40 alphanumeric or special characters in this field. Please see choosing a good password.

Confirm New Password
Retype the password you entered in the 'Enter New Password' field to confirm that it is correct.

As soon as you press Set Password button your keystore is created, protected with the password you just entered. You are now logged onto your keystore and can begin protecting files, managing your keys and changing your default settings.



STEP 2 : Generating / Importing your Own Key

Generating or importing your own key - so you can protect files for yourself

The first thing you must do before you can protect files is generate, or import, your own personal key (so you can encrypt files for yourself and digitally sign files). You will also need to send the public part of this key to others (see step 4 : exporting keys) so that they can encrypt files for you.

IMPORTANT NOTE:  If you want to encrypt files for other people then they must generate a key on their computer using their copy of FAOPGP CLS (or FAOPGP CLS Reader or any other OpenPGP application) and send it to you. You can then import this key into Key Manager so that it will become available for selection from the 'Encrypt For' drop-down list box. You cannot generate keys on behalf of others because when you export a key, only the public part of the key (used for encryption and signature verification) is exported.  The private part of the key (used for decryption and signing) never leaves the computer unless you specifically ask for this, which you should not normally do.

Generating and importing keys is done in FAOPGP CLS's Key Manager.  Selecting 'Key Manager' from the Tools menu in the Script Editor



displays the following tabbed dialog:

Key Manager


 Generating your Own Key

Generate Signing Key  Pressing the Generate Key button displays the following dialog.  

Generate Self-Signed Key

Enter your information (every field must be filled in) and press .  An encryption and signing key is automatically generated for you and is displayed in the 'My Own Keys' tab in Key Manager.


Importing your Own Key
You can also import a key from a Certificate Authority (X.509) or another OpenPGP application (PGP, GnuPGP, etc.) if you prefer by pressing the Import Key File Import Key File icon.

Once you have generated or imported a key you will want to export it to other people. They need this key to encrypt files for you !



STEP 3 : Importing Other People's Keys

Importing keys - so that you can send encrypted files to others

If you are encrypting files for other people they must send you their keys and you will have to import them into FAOPGP CLS before you can encrypt files for them.  They have to generate a key in Key Manager on their computer (they can do this with either FAOPGP CLS, FAOPGP, the FREE reader software or any OpenPGP application) or purchase one from a public Certification Authority (X.509). Once they have generated their key they can export it and send it to you so you can import it into Key Manager.

In Key Manager, press the Import Key File Import Key File button and select their key.  See Importing Keys.

Once you have imported someone else's key it will be shown in the 'Other Peoples Keys' tab and will be available from the 'Encrypt For' pull-down list box when protecting files.



STEP 4 : Exporting Your Key

Exporting your key - so that others can send you encrypted files

To send your key to others, highlight a key in the 'My Keys' tab in Key Manager, then select the Export Key File icon Export Key File. This will start the Key Export wizard which will guide you through the process of exporting your key. See Exporting Keys.  NOTE : If you are sending a key to another FAOPGP CLS user then you must export your key in this manner.

A quick way of sending your key to another PGP, FileAssurity OpenPGP or other OpenPGP user is to right-click on your key in Key Manager and select 'Export and send' from the pop-up menu. Choosing this option will open up your default MAPI email application with the exported key displayed as ascii text in the message body. Only the public part of your key is exported. It can only be used to encrypt files for you or to verify files you have signed. Once someone has received your key they just highlight the key block and copy and paste it into FAOPGP's secure text editor and press the 'Unprotect' button to start the key import process.  

Once someone has imported your key it will automatically be added to their 'Other Peoples Keys' tab.



STEP 5 :  Creating Script Files and Command Line Parameters

1. In the Script Editor select the button to add to create a new set of command line parameters.



The following dialog will be displayed :




3. Choose whether you want to protect (encrypt and/or digitally sign), unprotect (decrypt and/or verify) and/or securely delete files and folders. See FAOPGP CLS command editor for a full explanation of using this GUI.

The GUI creates command line parameters that can be saved to a batch file, run from the FAOPGP CLS script editor or pasted directly onto the DOS command line.

If you would prefer to enter commands directly on the command line without using the GUI to create them for you see Command Line Parameters.



STEP 6 : Scheduling Scripts

Once you have created your scripts you can start scheduling them so that they are run automatically and unattended.  See Scheduling Scripts



Keystore Protection

Once you have finished using the Script Editor to create scripts you should exit the application so that your keys are not available to others, or at the very least invoke a secure screen saver.