Encrypting private keys

Virtual Storage Platform One SDS Block System Administrator Guide

Version
1.16.x
Audience
anonymous
Part Number
MK-24VSP1SDS001-03

If your private key is exposed to third parties, security of servers might be compromised. To prevent such a problem, you can encrypt private keys to protect them from third parties. Use an OpenSSL command to encrypt private keys.

You can use the same OpenSSL command for both Windows and Linux. Use a console where you can run commands. In Windows, open a command prompt and run the command. In Linux, open a terminal and run the command.

Run the following command.
openssl genrsa -aes256 -out server.key 2048

When you run the command, you are prompted to enter a passphrase. Passphrases are passwords for encrypting keys. Do not forget your passphrase. In addition, do not let others know your passphrase.

Option

Description

-aes256

Encryption algorithm. Other types of algorithms are available in addition to AES-256.

To find out available encryption algorithms, run the following command.

openssl genrsa -h

-out<private-key-file-name>

A private key file is created with the specified name.

2048

Key length.