Jump to:navigation, search
Wiki

Keys

From Securepoint Wiki





notempty
Dieser Artikel bezieht sich auf eine nicht mehr aktuelle Version!

notempty
Der Artikel für die neueste Version steht hier

notempty
Zu diesem Artikel gibt es bereits eine neuere Version, die sich allerdings auf eine Reseller-Preview bezieht








































































De.png
En.png
Fr.png






Key management on the UTM
Last adaptation to the version: 12.5.1
New:
notempty
This article refers to a Resellerpreview

12.2.4 11.7

Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 → Authentication →Keys

Preliminary note

  • The keys on the UTM are used both for encryption (e.g. of VPN connections) and for signing (e.g. DKIM)
  • Locally generated keys always consist of a public and a private part
  • Only the public part should end up in someone else's hands


    • Export key

    Caption Description UTM v12.5.1 Schluessel-en.png
    Key management
    Name Name of the key
    Type Key type
    • RSA
    • x25519
    • ed25519
    Hash Hash value of the key
    Length Key length
    Public part (Format) Key part is saved as a file in the set format (see below)
    The suggested file name consists of the name of the key and - depending on the key part - the extension priv or pub.
    Public part (Format) Key part is copied to the clipboard in the set format (see below)
    Delete Deletes the key
    Opens the key export settings
    		UTM v12.5 Schlüssel Export-Einstellungen-en.png
    Dropdown menu with settings for key export
    Export destination FileClipboard Exports the respective key part either to a file or to the clipboard
    RSA export format:
    		PemHEXB64 Exports the RSA key part in Pem, Hex or Base64 format
    ED25519/X25519 export format:
    		PemRAW Exports ED25519/X25519 keys in Pem or RAW format

    Add key

    Create a new key with the Add key button.
    Name: rsa-demo Enter the desired name of the key UTM v12.5.1 Schlüssel hinzufügen-en.png
    Add key dialog
    Type RSA Select cryptographic method
    RSA used for: IPSec, Mailrelay
    ED25519 Used for: Mailrelay (signing)
    X25519 Used for: WireGuard
    Key length:
    Only for RSA:

    512

    1024

    2048

    3072 Default

    4096

    		 Select bit-length of the key
    Speichern Legt den Schlüssel an
    Schließen Schließt den Dialog

    Import key

    Import a key by clicking the Import key button.
    Import from file
    Import from file
    Import option: File Clipboard The import is done from a file.
    The key name corresponds to the file name followed by the format     		UTM v12.2.3 Schlüssel importieren-en.png
    Import key from file dialog
    Datei: Browse Select the file that contains the key to be imported
    File type: determine automatically The key type can be determined automatically.
    Alternatively, type can be specified manually.
    Format PEM RAW HEX B64 Select the format in which the key is provided
    Type
    Only for RAW, HEX & B64    		 private The key is to be imported as a private key part
    public The key is to be imported as a public key part
    Import from clipboard
    Import from clipboard
    Import option: File Clipboard Der Import erfolgt über die Eingabe eines Wertes UTM v12.2.3 Schlüssel importieren copy-en.png
    Dialog Import key from clipboard
    Name rsa-demo Enter the desired name of the key
    Key value 7yn3H5gXHHrXdFwEAD6… Key from the clipboard
    File type: determine automatically The key type can be determined automatically.
    Alternatively, type can be specified manually.
    Format PEM RAW HEX B64 Select the format in which the key is provided
    Type
    Only for RAW, HEX & B64    		 private The key is to be imported as a private key part
    public The key is to be imported as a public key part



    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/AUTH/Schluessel_v12.5.1&oldid=89292"