Hallett_German - for the private key (.pem) file to import successfully into CEM:
A. does CEM crosscheck that key with that particular app traffic to see if it can decrypte?
B. does CEM check to ensure the passphrase is correct for the .pem file?
Is it A?
Is it B?
Is it A & B?
Is is A or B?
Basically, what does CEM need to successfully import a private key (.pem) file?