Creating a public-private key pair

Public-private key pairs can be manually added for distribution with Private Sites or Service Watch Desktop installations. Centralizing and deploying your own key pairs can enhance the security of your installation and enable the movement of synthetic sensors if licensed to do so. For information about the Exoprise Public Key Infrastructure (PKI), refer to Public Key Infrastructure.

Generating and uploading your own public key pair

Managing public keys requires the administrative role or higher, and OpenSSL is a prerequisite.

To generate your own key pair and upload the public portion of the key, follow these steps:

  1. From the command line, execute the following:

    Copy 
    openssl genrsa -des3 -out private.pem 2048

  2. When prompted, choose a password and remember it.

  3. Generate the public key file from the secured private key.

    Copy 
    openssl rsa -in private.pem -outform PEM -pubout -out public.pem

  4. Supply the password you used to generate the private key.

  5. To upload the public key for use with deployments, navigate to the Public Keys page in Exoprise.

  6. Click the Choose button and select your public key file.

  7. Edit the key name and choose a unique name to remember the key pair.

You can now secure Service Watch or Private Site deployments with the new key pair.

Remember that you must keep the private key in a secure location and record the password for the private key.