Sometimes you might need to install a RPM package individually on a system. You donwload it from a trusted repository and use yum (dnf) to install it locally — simple enough.

However with a secured system, you might run into some issues.

— GPG check FAILED

Downloading Packages:
Package managesoft-13.1.1-1.x86_64.rpm is not signed
Error: GPG check FAILED

That usually means the RPM package is not GPG signed or something wrong with the GPG signature. You can check the GPG signature of a RPM package:

root@joelinux:~# rpm -K managesoft-13.1.1-1.x86_64.rpm
managesoft-13.1.1-1.x86_64.rpm: digests OK

If you see the GPG signature seems to be good and the RPM is truthworthy. You can just use “–nogpgcheck” of yum to skip this check.

root@joelinux:~# yum --nogpgcheck localinstall managesoft-13.1.1-1.x86_64.rpm

— package does not verify: no digest

Again, yum cannot verify or doesn’t find digest of the RPM package. One way to work around is to use the rpm command to install because it has an option “–nodiegest”

rpm -ivh --nodigest --nofiledigest /tmp/managesoft-13.1.1-1.x86_64.rpm

Or for Redhat Linux 7 or 8, disable FIPS if that’s not needed in your environment:

root@joelinux:~# /usr/bin/fips-mode-setup --disable
Setting system policy to DEFAULT
Note: System-wide crypto policies are applied on application start-up.
It is recommended to restart the system for the change of policies
to fully take place.
FIPS mode will be disabled.
Please reboot the system for the setting to take effect.


root@joelinux:~# /usr/bin/fips-mode-setup --check
FIPS mode is disabled.

Once FIPS is disabled and the system is rebooted, you should be able to install it with yum:

yum --nogpgcheck localinstall managesoft-13.1.1-1.x86_64.rpm

• Linux