YUM — GPG check FAILED or package no digest

Sometimes you might need to install a RPM package individually on a system. You donwload it from a trusted repository and use yum (dnf) to install it locally — simple enough.

However with a secured system, you might run into some issues.

— GPG check FAILED

Downloading Packages:
Package managesoft-13.1.1-1.x86_64.rpm is not signed
Error: GPG check FAILED

That usually means the RPM package is not GPG signed or something wrong with the GPG signature. You can check the GPG signature of a RPM package:

root@joelinux:~# rpm -K managesoft-13.1.1-1.x86_64.rpm
managesoft-13.1.1-1.x86_64.rpm: digests OK

If you see the GPG signature seems to be good and the RPM is truthworthy. You can just use “–nogpgcheck” of yum to skip this check.

root@joelinux:~# yum --nogpgcheck localinstall managesoft-13.1.1-1.x86_64.rpm

package does not verify: no digest

Again, yum cannot verify or doesn’t find digest of the RPM package. One way to work around is to use the rpm command to install because it has an option “–nodiegest”

rpm -ivh --nodigest --nofiledigest /tmp/managesoft-13.1.1-1.x86_64.rpm

Or for Redhat Linux 7 or 8, disable FIPS if that’s not needed in your environment:

root@joelinux:~# /usr/bin/fips-mode-setup --disable
Setting system policy to DEFAULT
Note: System-wide crypto policies are applied on application start-up.
It is recommended to restart the system for the change of policies
to fully take place.
FIPS mode will be disabled.
Please reboot the system for the setting to take effect.

root@joelinux:~# /usr/bin/fips-mode-setup --check
FIPS mode is disabled.

Once FIPS is disabled and the system is rebooted, you should be able to install it with yum:

yum --nogpgcheck localinstall managesoft-13.1.1-1.x86_64.rpm

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s