Help Center> Data Encryption Workshop> User Guide> Key Pair Service> Managing Private Keys> Importing a Private Key
Updated on 2024-05-15 GMT+08:00
View PDF

Importing a Private Key

To facilitate local private key management, you can import the private key to the KPS console for centralized management of your private keys. The managed private keys are encrypted by the keys provided by KMS, ensuring security for storage, import, and export of the private keys. You can download the private keys from the management console whenever you need. To ensure the security of the private keys, keep the downloaded private keys properly.

This section describes how to import a key pair on the KPS console.

Prerequisites

The private key file matching the public key has been obtained.

Constraints

  • Only the private key that matches a public key can be imported for the public key.
  • The private key to be uploaded or copied to the text box must be in the .pem format. If it is in the .ppk format, convert it by referring to How Do I Convert the Format of a Private Key File?.
  • When you enable the encryption function for a key pair, KMS automatically creates a default key kps/default for the key pair.
  • When selecting an encryption key, you can select an existing encryption key or click View Key List to create an encryption key.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click . Choose Security & Compliance > Data Encryption Workshop.
  4. In the navigation pane on the left, click Key Pair Service.
  5. Click Import Private Key in the row where the target public key is located. Set parameters in the Import Private Key dialog box, as shown in Figure 1.

    Figure 1 Importing a private key

  6. Click Select File, select a local .pem private key file. Alternatively, you can copy and paste the private key content to the Private Key Content text box.

    • Only the private key that matches a public key can be imported for the public key.
    • The private key to be uploaded or copied to the text box must be in the .pem format. If it is in the .ppk format, convert it by referring to How Do I Convert the Format of a Private Key File?.

  7. Select an encryption key from the KMS encryption drop-down list box.

    • When you enable the encryption function for a key pair, KMS automatically creates a default key kps/default for the key pair.
    • When selecting an encryption key, you can select an existing encryption key or click View Key List to create an encryption key.

  8. Read and select I have read and agree to the Key Pair Service Disclaimer.
  9. Click OK to complete the import.
Parent topic: Managing Private Keys