An externally generated public/private key pair can be imported into the ESKM system for use as a server certificate. The encrypted private key data and the public key certificate must be present in the third-party server certificate file. For example:
-----BEGIN ENCRYPTED PRIVATE KEY-----
MIIFDjBAB..........vvbKI=
-----END ENCRYPTED PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
MIIDhjCCA..........MKH9Fk
-----END CERTIFICATE-----
In addition, the password for the private key file must be known.
To import a third-party server certificate, perform the following steps:
-
In Certificates & CAs, click Certificates to display the Import Certificate section.
-
Provide the source location of the certificate file.
-
Enter the Certificate Name and private key password.
-
Click Import Certificate.