Issue:
It is not possible to verify the signature of the Linux installer downloaded from Countercept portal, it returns the error:
gpg --verify f-secure-mdr-installer-latest.sig f-secure-mdr-installer-latest
gpg: Signature from Tue 23 May 2023 11:30:49 CEST
gpg: using RSA key 86857BBCF1062E0BA51AB2E016A8160C01EA1C3D
gpg: signature cannot be verified: no public key
Resolution:
Latest installers have been signed with the new WithSecure certificate and the change did not make it to the latest version in guide.
Follow the next steps to validate the signature of MDR installer for Linux.
1. Get the new public key
wget https://keys.openpgp.org/vks/v1/by-fingerprint/86857BBCF1062E0BA51AB2E016A8160C01EA1C3D -O 86857BBCF1062E0BA51AB2E016A8160C01EA1C3D.asc
2. Import the key
gpg --import 86857BBCF1062E0BA51AB2E016A8160C01EA1C3D.asc
3. Verify the signature
Put the package files and signature files in the current directory and run the following command: gpg --verify f-secure-mdr-installer-latest.sig f-secure-mdr-installer-latest
Article no: 000042707