E.3.3. Replaying and processing encrypted audit trails

To replay encrypted audit trails, the private key of the certificate used to encrypt the audit trails must be available on the machine running AP. This key must be either imported into the Personal Certificate Store / My Store on Windows, or it must be available on a USB token.


Certificates are used as a container and delivery mechanism. For encryption and decryption, only the keys are used.

Balabit recommends using 2048-bit RSA keys (or stronger).

To import a private key, select Edit > Import key, select the file containing the key, and click OK. Then enter the password for the key if needed.


The private key must be in PKCS12 format.