Client certificate key settings

Client certificate key settings include the key label, time to expire, and key size.

Table 1. Client certificate key settings
Setting	Description
Key Creation Action	Upload Key. If you have a certificate file that you want to use, you can upload the file. Generate Key. If you do not have a certificate file, Cloud Identity Portal can generate a key.
Status	Enabled. If you enable the key, the previously enabled key and all other certificates keys are disabled. Only one key can be enabled at any one time. Important: If you enable the key, the previously enabled key is disabled. All connections that use the previously enabled key are invalid. Disabled. The key is disabled.
Key Label	For an uploaded key, a label must be entered when the status is set to Enabled. The key label is the name of the certificate file that you are uploading. For a generated key, a unique identifier that represents a certificate. The label provides a name with which to refer to a certificate when key management functions are performed.
Key File	For an uploaded key only, click Browse to browse to and select the file to upload. JKS, PEM, and P12 formats are supported.
Key Password	For an uploaded key only, the key password. The password must match the password in the certificate file you are uploading.
Expires in	The number of days the key is valid for.
Key Size	The key size.