>
    Import a Private Key for IKE Gateway and Block It
    Focus
    Download PDF
    Focus
    1. Home
    2. PAN-OS
    3. Decryption
    4. Block Private Key Export
    5. Import a Private Key for IKE Gateway and Block It
    Download PDF

    Import a Private Key for IKE Gateway and Block It

    Table of Contents
    End-of-Life (EoL)

    Import a Private Key for IKE Gateway and Block It

    Secure private keys for IKE Gateways that you import into PAN-OS devices by blocking key export.
    Block the export of a private key to prevent its misuse after generating a certificate for IKE Gateway authentication.
    1. Select NetworkNetwork ProfilesIKE Gateways.
    2. Add a new IKE Gateway.
    3. On the General tab, for Authentication, select Certificate.
    4. For Local Certificate select Import or Generate depending on whether you want to import an existing certificate or create a certificate.
    5. Enter the certificate information. If you are importing the certificate, select Import Private Key to activate the Block Private Key Export checkbox.
    6. Select Block Private Key Export to prevent anyone from exporting the key.
      For importing a certificate, enter and confirm the Passphrase and then click OK
      For generating a certificate, click Generate.
    7. Enter the Passphrase, confirm it, and then click OK.

    © 2024 Palo Alto Networks, Inc. All rights reserved.