I keep having problem on the sources list with GPG error while upgrading to 4.3-1
N: See apt-secure(8) manpage for repository creation and user configuration details.
W: GPG error: http://updates.software-univention.de/3.2/maintained/component 3.2-7-errata/all/ Release: The following signatures were invalid: EXPKEYSIG 1DD67AFB2CBDA4B0 Univention Corporate Server 3.x Archive Key packages@univention.de
E: The repository ‘http://updates.software-univention.de/3.2/maintained/component 3.2-7-errata/all/ Release’ is not signed.
N: Updating from such a repository can’t be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.
W: GPG error: http://updates.software-univention.de/3.2/maintained/component 3.2-7-errata/amd64/ Release: The following signatures were invalid: EXPKEYSIG 1DD67AFB2CBDA4B0 Univention Corporate Server 3.x Archive Key packages@univention.de
E: The repository ‘http://updates.software-univention.de/3.2/maintained/component 3.2-7-errata/amd64/ Release’ is not signed.
N: Updating from such a repository can’t be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details
How to resolve this problem or whay it is being generated?
Your UCS server is at version 4.3-0, but for some reason a repository from UCS 3.2-7 is still activated. UCS 3.2-7 is out of maintenance for quite some time now, so the gpg key to verify the 3.2-7 repository is expired, which generates the error message.
This particular repository should not be enabled on a UCS 4.x server, to deactivate, it execute the following: ucr set repository/online/component/3.2-7-errata=false