Importing a Key Pair
If you need to use your own key pair (for example, using the key pair created by the PuTTYgen tool), you can import the public key to the management console and use its private key to remotely log in to an ECS. You can also manage the private key on the management console of Huawei Cloud as necessary.
If multiple IAM users need to use the same key pair, use another tool (such as PuTTYgen) to create a key pair and import it for each of the IAM users separately.
Prerequisites
- The public and private key files of the key pair to be imported are ready.
- The imported key pair is an account key pair. If a private key pair with the same name has been created, a message will be displayed, indicating that the name already exists.
- Each IAM user does not have a private key pair with the same name.
- PKCS8 is supported for imported private keys. Convert the format if PKCS1 is used.
Constraints
- The SSH keys imported to the KPS console support the following cryptographic algorithms:
- SSH-DSS (not recommended)
- SSH-ED25519
- ECDSA-SHA2-NISTP256
- ECDSA-SHA2-NISTP384
- ECDSA-SHA2-NISTP521
- SSH_RSA: The length can be 2048, 3072, and 4096 bits.
- The format of the private key file that can be imported is PEM.
If the file is in the .ppk format, convert it to a .pem file. For details, see How Do I Convert the Format of a Private Key File?
- If the imported private key is encrypted, the upload will fail.
Procedure
- Log in to the management console.
- Click in the upper left corner of the management console and select a region or project.
- Click on the left. Choose .
- In the navigation pane on the left, click Key Pair Service.
- In the displayed Account Key Pairs tab, create or import a key pair as needed.
- Click Import Key Pair. In the displayed dialog box, click , as shown in Figure 1.
- Currently, a maximum of 10 public keys can be imported at a time.
- You can customize the name of an imported key pair.
- If a message is displayed, indicating that the name already exists, change the key pair name.
- Read and select I agree to host the private key of the key pair if needed, as shown in Figure 2. Skip this step if not needed.
- Copy and paste the private key content to the Private Key Content text box.
- Select an encryption key from the KMS Encryption drop-down list box.
- KPS encrypts private keys using the encryption key provided by KMS. When you use the KMS encryption function of the key pair, KMS creates a default key kps/default for you to use.
- For details about the custom keys created on KMS, see Creating a Key.
- Read the Key Pair Service Disclaimer and select I have read and agree to the Key Pair Service Disclaimer.
- Click OK to import the key pair.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot