Import and export key certificates

If you are operating Secure Email Gateway in FIPS mode, you cannot import or export PGP certificates as PGP is an unsupported encryption type. PGP uses algorithms that are not compliant with FIPS.

Import a key certificate

1. Place the PEM-format certificate A digital means of proving your identity. When you send a digitally-signed message, you are sending your certificate and public key. Certificates are issued by a certification authority and can expire or be revoked. file in a folder that you can access from the Gateway's web user interface.

   PEM-format certificate files can have a variety of extensions (.pem, .asc, and so on).

2. Navigate to System > Encryption > Certificate Store.
3. Select either the Corporate or the Partners tab.
4. Click Import.

5. Configure the Upload Certificate or Key dialog and click Import.

   If the import is successful, the certificate is added to the list.

6. Apply the configuration.

If you change any configuration or policy settings, you must Apply Configuration for the new settings to take effect. You can do this either from the Changes Made panel, or System > Configuration > Apply Configuration. See Apply new configuration for more information. If you use Peer Gateways (i.e. when multiple Gateways are peered), any configuration changes from a local Gateway can then be applied to all the peers at the same time. See Configure Peer Gateways for more information.

Export a key certificate

1. Navigate to System > Encryption > Certificate Store.
2. Select either the Corporate or the Partners tab.
3. Select a certificate in the list.
4. Click Export.