Skip to main content
Skip table of contents

Introduction

EJBCA is one of the longest running CA software projects, providing time-proven robustness and reliability.

EJBCA supports multiple deployment types, and can easily be scaled out to match the needs of your PKI requirements, whether you're setting up a national eID, securing your industrial IoT platform or managing your own internal PKI. 

keyfactor-ejbca-saas.png

EJBCA SaaS Documentation

keyfactor-ejbca-cloud.png

EJBCA Cloud Documentation

keyfactor-ejbca-software-appliance.png

Software Appliance Documentation

keyfactor-ejbca-hardware-appliance.png

Hardware Appliance Documentation

keyfactor-ejbca-software-container.png

EJBCA & SignServer Container Documentation

EJBCA Software Stack

EJBCA Software Stack Documentation

Certificate Issuance and Validation

EJBCA provides full capabilities for issuing certificates, from powerful profiles that give you fine-grained and easily configured control over the identities and properties of your cryptographic certificates, automated validation of submitted keys and certification requests and support for all common enrollment protocols including ACME, EST, CMP, SCEP and Microsoft Auto-enrollment.

EJBCA provides easy to use tools to allow administrators to easily revoke and renew certificates, ensuring that that your organization and assets are kept secured.

Certificate validation is supported through Certificate Revocation Lists (CRL) and Online Certificate Status Protocol (OCSP)

Dynamic and Scalable

EJBCA is your one-stop shop, from setting up your own self-contained PKI to setting up a complex infrastructure with 100% uptime requirements and extreme performance demands. EJBCA instances can easily be couple securely over TLS in order to secure your CA infrastructure as much as possible while providing accessibility to registration and validation nodes. By clustering nodes, high levels of reliability and performance can be achieved, achieving high degrees of availability regardless of external circumstances. 

The following sections cover EJBCA concepts and architectures, and provides an overview of EJBCA's capabilities and support:

EJBCA Concepts

EJBCA implements Public Key Infrastructure (PKI) according to standards such as X.509 and IETF-PKIX, and thus follows the general PKI concepts closely. The administration of the PKI includes some EJBCA specific concepts in order to implement unique flexibility. For definitions for general and EJBCA specific concepts and key terms, see EJBCA Concepts.

EJBCA Architecture

There are multiple ways that you can implement and architect a PKI solution. EJBCA allows implementing virtually any type of PKI architecture, for information on a selection of common PKI architectures deployed, see EJBCA Architecture.

Interoperability and Certifications

For an overview of EJBCA's capabilities and support, with relevant links to documentation and external standards, see Interoperability and Certifications.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close