Previous Topic: How to Create the Recoverable DNA (or SE) FileNext Topic: Enable Encryption Key Recovery Options and Provide Public Key Path

CA Desktop Migration Manager Online HelpCA DMMDeferred MigrationEncryption Key Recovery for the Recoverable DNA or Self-Extracting (SE) FilePrerequisite to Run the Encryption Key Recovery CommandHow to Create the Recoverable DNA (or SE) FileGenerate the Public-Private Key Pair

Generate the Public-Private Key Pair

You must generate the public-private key pair to be able to retrieve the password or FIPS key if you lose or forget it. The public key is used for encrypting the DNA (or SE) file and the private key for decrypting it. The Key Generator tool, which is provided with the application, lets you generate the public-private key pair. The tool is installed with the application, and the default location is C:\Program Files\CA\Desktop Migration Manager.

Note: A one-to-one relationship exists between the public key and the private key. So, while retrieving the password or FIPS key from the recoverable DNA (or SE) file, make sure that both the keys belong to the same public-private key pair.

To generate the public-private key pair

  1. Navigate to the location where you have installed the application, and double-click the DNAKeyGenerator.exe file.

    The Key Generator tool launches and displays the CA DMM PKI KeyGenerator dialog.

  2. Enter the location to save the public key file in the Public Key Path field.

    The public key file path appears in the field.

  3. Enter the location to save the private key file in the Private Key Path.

    The private key file path appears in the field.

  4. Click the GenerateKeyPair button.

    The public and private key files are generated and are saved in the specified location.