diff options
Diffstat (limited to 'doc/gpg.texi')
| -rw-r--r-- | doc/gpg.texi | 29 |
1 files changed, 20 insertions, 9 deletions
diff --git a/doc/gpg.texi b/doc/gpg.texi index 9b6303540..0c53bc1d4 100644 --- a/doc/gpg.texi +++ b/doc/gpg.texi @@ -353,13 +353,18 @@ numbers 1-9 or "T" for 10 and above to indicate trust signature levels @opindex locate-keys @opindex locate-external-keys Locate the keys given as arguments. This command basically uses the -same algorithm as used when locating keys for encryption or signing -and may thus be used to see what keys @command{@gpgname} might use. -In particular external methods as defined by -@option{--auto-key-locate} may be used to locate a key. Only public -keys are listed. The variant @option{--locate-external-keys} does not -consider a locally existing key and can thus be used to force the -refresh of a key via the defined external methods. +same algorithm as used when locating keys for encryption and may thus +be used to see what keys @command{@gpgname} might use. In particular +external methods as defined by @option{--auto-key-locate} are used to +locate a key if the arguments comain valid mail addresses. Only +public keys are listed. + +The variant @option{--locate-external-keys} does not consider a +locally existing key and can thus be used to force the refresh of a +key via the defined external methods. If a fingerprint is given and +and the methods defined by --auto-key-locate define LDAP servers, the +key is fetched from these resources; defined non-LDAP keyservers are +skipped. @item --show-keys @opindex show-keys @@ -1811,14 +1816,20 @@ list. The default is "local,wkd". PGP Universal method of checking @samp{ldap://keys.(thedomain)}. @item ntds - Locate the key using the Active Directory (Windows only). + Locate the key using the Active Directory (Windows only). This + method also allows to search by fingerprint using the command + @option{--locate-external-key}. @item keyserver - Locate a key using a keyserver. + Locate a key using a keyserver. This method also allows to search + by fingerprint using the command @option{--locate-external-key} if + any of the configured keyservers is an LDAP server. @item keyserver-URL In addition, a keyserver URL as used in the @command{dirmngr} configuration may be used here to query that particular keyserver. + This method also allows to search by fingerprint using the command + @option{--locate-external-key} if the URL specifies an LDAP server. @item local Locate the key using the local keyrings. This mechanism allows the user to |