Updated on 2024-12-19 GMT+08:00

Importing a Private Key

To facilitate local private key management, you can import the private key to the KPS console for centralized management of your private keys. The managed private keys are encrypted by the keys provided by KMS, ensuring security for storage, import, and export of the private keys. You can download the private keys from the management console whenever you need. To ensure the security of the private keys, keep the downloaded private keys properly.

This section describes how to import a key pair on the KPS console.

Prerequisites

The private key file matching the public key has been obtained.

Constraints

  • Only the private key that matches a public key can be imported for the public key.
  • The private key to be uploaded or copied to the text box must be in the .pem format. If it is in the .ppk format, convert it by referring to How Do I Convert the Format of a Private Key File?.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click on the left. Choose Security & Compliance > Data Encryption Workshop.
  4. In the navigation pane on the left, click Key Pair Service.
  5. Click Import Private Key in the row where the target public key is located. Set parameters in the Import Private Key dialog box, as shown in Figure 1.

    Figure 1 Importing a private key

  6. Click Select File, select a local .pem private key file. Alternatively, you can copy and paste the private key content to the Private Key Content text box.

    • Only the private key that matches a public key can be imported for the public key.
    • The private key to be uploaded or copied to the text box must be in the .pem format. If it is in the .ppk format, convert it by referring to How Do I Convert the Format of a Private Key File?.

  7. Select an encryption key from the KMS encryption drop-down list box.

    • KPS encrypts private keys using the encryption key provided by KMS. When you use the KMS encryption function of the key pair, KMS creates a default key kps/default for you to use.
    • For details about the custom keys created on KMS, see Creating a Key.

  8. Read and select I have read and agree to the Key Pair Service Disclaimer.
  9. Click OK to complete the import.