PingAccess

Importing existing key pairs

Import a key pair from a PKCS#12 or PEM-encoded file.

About this task

If PingAccess is running in Federal Information Processing Standards (FIPS) mode, you can only import or export PEM-encoded key pairs. For more information, see Managing Federal Information Processing Standards (FIPS) mode.

Steps

  1. Click Security and then go to Key Pairs → Key Pairs.

  2. Click Import.

  3. In the Alias field, enter a name that identifies the key pair.

    Special characters and spaces are allowed. This name identifies the key pair when you’re assigning the key pair to various configurations such as HTTPS Listeners.

  4. In the Password field, enter a password used to protect the key pair file.

    PingAccess uses the password to read the file.

  5. Click Choose File to locate the key pair file.

  6. Click Save to import the file.

    If the key pair is either expired or not yet valid, PingAccess displays a warning, but the import will proceed. If the key pair cannot be read using the specified password, the import fails.

PEM-encoded format

PEM-encoded key pair files use this format for the key and certificates.

-----BEGIN ENCRYPTED PRIVATE KEY-----
 Base64–encoded private key
(Private Key:  domain_name.key)
-----END ENCRYPTED PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
 Base64–encoded certificate
(Primary SSL certificate:  domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
 Base64–encoded certificate
(Intermediate certificate:  Intermediate.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
 Base64–encoded certificate
(Root certificate:  Root.crt)
-----END CERTIFICATE-----