Importing an existing certificate and key-pair - PingIntelligence for APIs

Importing an existing certificate and key-pair - PingIntelligence for APIs - 4.4

PingIntelligence

bundle

pingintelligence-44

ft:publication_title

PingIntelligence

Product_Version_ce

PingIntelligence for APIs 4.4

category

APISecurity

AdvancedAPICybersecurity

Capability

Environment

Product

apisecurity

capability

linux

pi-44

pingintelligence

private

ContentType_ce

Page created: 16 Dec 2020 |

Page updated: 12 May 2021

| 1 min read

4.4 Capability API Security Advanced API Cybersecurity Linux On-Premises Operating System Hosting Environment PingIntelligence for APIs Product

Complete the following steps to import an existing certificate and key-pair:

Flowchart for importing an existing certificate and key-pair

Convert the key to .key file.

openssl rsa -in private.pem -out private.key

Convert the SSL certificate to .crt file.

openssl x509 -in server-cert.pem -out server-cert.crt

Import the cluster key into the keystore using following CLI command.

import_cluster_key_pair {key_path} [--yes | -y]
import key pair for cluster server
--yes | -y : import key pair without confirmation prompt

Import the certificate into the keystore using following CLI command.

import_cluster_cert {cert_path} [--yes | -y]
import CA signed certificate for cluster server
--yes | -y : import CA signed certificate without confirmation prompt

Restart the ASE cluster for synchronizing the key and the certificate. To restart the ASE cluster, follow the instructions explained in Restart ASE cluster.