How to Install and Uninstall pki-kra Package on Ubuntu 16.04 LTS (Xenial Xerus)

Last updated: November 23,2024

1. Install "pki-kra" package

This guide let you learn how to install pki-kra on Ubuntu 16.04 LTS (Xenial Xerus)

$ sudo apt update $ sudo apt install pki-kra

2. Uninstall "pki-kra" package

Learn how to uninstall pki-kra on Ubuntu 16.04 LTS (Xenial Xerus):

$ sudo apt remove pki-kra $ sudo apt autoclean && sudo apt autoremove

3. Information about the pki-kra package on Ubuntu 16.04 LTS (Xenial Xerus)

Package: pki-kra
Priority: optional
Section: universe/java
Installed-Size: 656
Maintainer: Ubuntu Developers
Original-Maintainer: Debian FreeIPA Team
Architecture: all
Source: dogtag-pki
Version: 10.2.6+git20160317-1
Depends: pki-server (>= 10.2.6+git20160317-1)
Suggests: pki-ca
Filename: pool/universe/d/dogtag-pki/pki-kra_10.2.6+git20160317-1_all.deb
Size: 172234
MD5sum: 9403f6e9f85c50a539152fecbb2b15d8
SHA1: f77afdc30ba0709ba3c574dfd94e5f1c9e7fb134
SHA256: cee21ad5ce5f15999092b1769fd9f4ebc2c2505a00ad09db8d45ab9aa91995ef
Description-en: Certificate System - Data Recovery Manager
Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
.
The Data Recovery Manager (DRM) is an optional PKI subsystem that can act
as a Key Recovery Authority (KRA). When configured in conjunction with the
Certificate Authority (CA), the DRM stores private encryption keys as part of
the certificate enrollment process. The key archival mechanism is triggered
when a user enrolls in the PKI and creates the certificate request. Using the
Certificate Request Message Format (CRMF) request format, a request is
generated for the user's private encryption key. This key is then stored in
the DRM which is configured to store keys in an encrypted format that can only
be decrypted by several agents requesting the key at one time, providing for
protection of the public encryption keys for the users in the PKI deployment.
.
Note that the DRM archives encryption keys; it does NOT archive signing keys,
since such archival would undermine non-repudiation properties of signing keys.
Description-md5: 246648bc4977717e7478d9a034ee965d
Homepage: http://pki.fedoraproject.org
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Origin: Ubuntu