Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Exporting private key & public certificate

SOLVED
Go to solution
NicolasBedard_
Occasional Contributor
‎11-16-2009 01:24:PM
‎11-16-2009 01:24:PM

Exporting private key & public certificate

Hi,

We have two SA-4500 in two different Data-Center with different IP addressing. But we're loadbalencing with the same public URL.

I dont know how to export the private key from our primary SA to be able to upload our public certificate on the second SA.

It that something possible ?

Do I need to buy one certificate per SA from Entrust ?

Thanks !

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
123go_
Contributor
‎11-17-2009 01:42:AM
‎11-17-2009 01:42:AM

Re: Exporting private key & public certificate

You can export the cert+private key by doing an export of the system config (system.cfg)

then import to your second SA, choosing following options when doing the import:

x Import Device Certificate(s)?

and

o Import only Device Certificate(s)

That is, assuming the devices are not FIPS models, in which case this procedure would not work (as the private key is held in the Hardware Security Module (FIPS) and cannot be extracted) so in that case you would have to request a new certificate.

View solution in original post

0 Kudos
2 REPLIES 2
123go_
Contributor
‎11-17-2009 01:42:AM
‎11-17-2009 01:42:AM

Re: Exporting private key & public certificate

You can export the cert+private key by doing an export of the system config (system.cfg)

then import to your second SA, choosing following options when doing the import:

x Import Device Certificate(s)?

and

o Import only Device Certificate(s)

That is, assuming the devices are not FIPS models, in which case this procedure would not work (as the private key is held in the Hardware Security Module (FIPS) and cannot be extracted) so in that case you would have to request a new certificate.

0 Kudos
Markus_Z_
Occasional Contributor
‎08-28-2012 07:39:AM
‎08-28-2012 07:39:AM

Re: Exporting private key & public certificate

So there's no way of exporting the private key otherwise? I mean, unless one would just generate the key/cert via openssl in the first place and then import into the ive?

 

That's kind of a bummer, when you need the private key for something else than importing it into another ive. Could you please confirm that there's no way of exporting the private key into a plain .pem formatted text file?

 

In case if you're wondering why one would need the private key anyway, I would say for example when you want to do WAN acceleration of SSL traffic to the admin gui, you'd have to import the private key into the wan optimizer.

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.