Create TLS credentials using an existing certificate

If you have an existing private key and certificate, create a TLS Credentials element and import the private key and certificate.

Before you begin

The private key and certificate must be saved in a location that you can access from the computer where you run the Management Client.

For more details about the product and how to configure features, click Help or press F1.

Select Configuration, then browse to Administration.
Select Certificates > TLS Credentials.
Right-click TLS Credentials, then select Import Private Key.
In the Name field, enter a unique name.
Next to the Private Key field, click Import, then browse to the private key.
If the private key is encrypted, you are prompted to enter the password.
Next to the Certificate field, click Import, then browse to the certificate.
(TLS Credentials for Web Portal Server or SSL VPN Portal) Next to the Intermediate Certificate field, click Import, then browse to the certificate from an intermediate CA that was used to sign the server certificate.

Note: If you do not import a certificate from the intermediate CA, the NGFW Engine does not send the issuer CA to the client.
Click OK.

Use this dialog box to configure certificates for TLS credentials.

Option	Definition
Name	The name of the element.
Import (Private Key)	Opens a file browser to import a private key file.
Import (Certificate)	Opens a file browser to import a certificate file.
Export (Certificate)	Opens a file browser to export a certificate file.
Import (Intermediate Certificate) (TLS Credentials for Web Portal Server or SSL VPN Portal)	Opens a file browser to import an intermediate certificate file. Note: If you do not import a certificate from the intermediate CA, the NGFW Engine does not send the issuer CA to the client.
Export (Intermediate Certificate)	Opens a file browser to export an intermediate certificate file.
Comment (Optional)	A comment for your own reference.