Issue:
It is not possible to verify the signature of the Linux installer downloaded from Countercept portal, it returns the error:
gpg --verify f-secure-mdr-installer-latest.sig f-secure-mdr-installer-latest
gpg: Signature from Tue 23 May 2023 11:30:49 CEST
gpg: using RSA key 86857BBCF1062E0BA51AB2E016A8160C01EA1C3D
gpg: signature cannot be verified: no public key
Resolution:
Latest installers have been signed with the new WithSecure certificate and the change did not make it to the latest version in guide.
Follow the next steps to validate the signature of MDR installer for Linux.
1. Get the new public key
wget https://keys.openpgp.org/vks/v1/by-fingerprint/A370B3A07343C2A0BC24B7F5C2D2D8ADE61239F3
2. Import the key
gpg --import A370B3A07343C2A0BC24B7F5C2D2D8ADE61239F3.asc
3. Verify the signature
Put the package files and signature files in the current directory and run the following command: gpg --verify WithSecure-Countercept-Agent-Installer.amd64.bin.sig WithSecure-Countercept-Agent-Installer.amd64.bin
Article no: 000042707