PAN-OS® Administrator’s Guide
  • PAN-OS® Administrator’s Guide
  • All Documentation
>
Import a Private Key for IKE Gateway and Block It
Focus
Download PDF
Focus
  1. Home
  2. PAN-OS
  3. Certificate Management
  4. Block Private Key Export
  5. Import a Private Key for IKE Gateway and Block It
Download PDF

Import a Private Key for IKE Gateway and Block It

Table of Contents
Secure private keys for IKE Gateways that you import into PAN-OS devices by blocking key export.
Block the export of a private key to prevent its misuse after generating a certificate for IKE Gateway authentication.
  1. Select NetworkNetwork ProfilesIKE Gateways.
  2. Add a new IKE Gateway.
  3. On the General tab, for Authentication, select Certificate.
  4. For Local Certificate select Import or Generate depending on whether you want to import an existing certificate or create a certificate.
  5. Enter the certificate information. If you are importing the certificate, select Import Private Key to activate the Block Private Key Export checkbox.
  6. Select Block Private Key Export to prevent anyone from exporting the key.
    For importing a certificate, enter and confirm the Passphrase and then click OK
    For generating a certificate, click Generate.
  7. Enter the Passphrase, confirm it, and then click OK.

Technical Documentation

Company

Legal Notices

© 2025 Palo Alto Networks, Inc. All rights reserved.