The way to generate keys is platform dependent.
The example below shows how to generate the public and private keys on Linux in GPG version 1.4.5 and up (gpg --help):
Passphrase not supported
When generating keys, make sure NOT to create them with a passphrase. JFrog Distribution does not currently support providing a passphrase when signing a release bundle.
To create a trust between Distribution, source Artifactory instances, and Artifactory Edge nodes, you will need to deploy the generated GPG key to each service. Upload your signing key using the following:
- Distribution service: Set Signing Key for Distribution REST API
- Source Artifactory and Artifactory Edge node: Set GPG Public Key REST API