Request for solution — access to GPG keys/certificates for privileged accounts (X replacement)

KUMAR · November 7, 2025, 9:52am

I work in Generali France (Saint-Denis). I’m writing because we have an operational issue related to the account X that I hope you can help us solve.

Context

We use the shared account X(has administrator-equivalent rights) to generate and publish GPG keys / certificates which are exchanged with external partners.
For security reasons we were told not to connect interactively to servers via RDP using X.
As an alternative, team members should connect with their individual privileged accounts (which have the same rights as X).
Problem: with our privileged accounts we cannot list the keys/certificates, modify them, or update expirations for the X key(s). This blocks our ability to manage partner certificates and to perform routine key lifecycle operations.

Request
Could you please propose a secure solution so that our privileged accounts can manage the X keys/certificates (list, modify, update expirations) without requiring interactive RDP logons with the X account?

Thanks for your support

bernhard · November 7, 2025, 10:12am

Hi @KUMAR,

are you using the command line, like “gpg.exe” or “Kleopatra” to manage your key material?

Which version of Gpg4win are you using on which operating system?

It should be possible to manage a GNUPGHOME directory from several accounts. For this you may need to set this to a directory explicitely and make sure that file systems permissions allow every account that wants to manage to read and write.

KUMAR · November 7, 2025, 2:23pm

thanks for yr reply .we use interface KLEOPATRA . gpg version is 2.2.8 ON windwos