Home
EN
Location
Documentation Home
Palo Alto Networks
Support
Live Community
Knowledge Base
>
Clear
Import a Private Key for IKE Gateway and Block It
Updated on
Wed Oct 16 22:52:42 UTC 2024
Focus
Download PDF
Updated on
Wed Oct 16 22:52:42 UTC 2024
Focus
Home
PAN-OS
Decryption
Block Private Key Export
Import a Private Key for IKE Gateway and Block It
Download PDF
Import a Private Key for IKE Gateway and Block It
Table of Contents
Filter
Expand All
|
Collapse All
Next-Generation Firewall Docs
Getting Started
Administration
Version
Cloud Management of NGFWs
PAN-OS 10.0 (EoL)
PAN-OS 10.1
PAN-OS 10.2
PAN-OS 11.0
PAN-OS 11.1 & Later
PAN-OS 9.1 (EoL)
Networking
Version
PAN-OS 10.1
PAN-OS 10.2
PAN-OS 11.0
PAN-OS 11.1 & Later
Incidents & Alerts
Release Notes
Version
Cloud Management and AIOps for NGFW
PAN-OS 10.0 (EoL)
PAN-OS 10.1
PAN-OS 10.2
PAN-OS 11.0
PAN-OS 11.1
PAN-OS 11.2
PAN-OS 8.1 (EoL)
PAN-OS 9.0 (EoL)
PAN-OS 9.1 (EoL)
Previous
Import a Private Key and Block It
Next
Verify Private Key Blocking
Import a Private Key for IKE Gateway and Block It
Secure private keys for IKE Gateways that you import into PAN-OS devices by blocking key export.
Block the export of a private key to prevent its misuse after generating a certificate for IKE Gateway authentication.
Select
Network
Network Profiles
IKE Gateways
.
Add
a new IKE Gateway.
On the
General
tab, for
Authentication
, select
Certificate
.
For
Local Certificate
select
Import
or
Generate
depending on whether you want to
import an existing certificate
or create a certificate.
Enter the certificate information. If you are importing the certificate, select
Import Private Key
to activate the
Block Private Key Export
checkbox.
Select
Block Private Key Export
to prevent anyone from exporting the key.
For importing a certificate, enter and confirm the
Passphrase
and then click
OK
For generating a certificate, click
Generate
.
Enter the
Passphrase
, confirm it, and then click
OK
.
Previous
Import a Private Key and Block It
Next
Verify Private Key Blocking