EJBCA

Overview

QCecuring integrates with EJBCA (Enterprise Java Beans Certificate Authority) to provide unified management over certificates issued by this widely deployed open-source PKI platform. Organizations gain centralized visibility and governance while leveraging EJBCA’s flexible CA capabilities.

Key capabilities

• Certificate issuance through EJBCA’s REST and Web Service APIs managed by QCecuring workflows.
• Synchronization of EJBCA certificate inventory into QCecuring’s centralized platform.
• Policy enforcement for EJBCA certificate profiles, end entity profiles, and CA selections.
• Centralized CRL and OCSP monitoring for EJBCA-managed certificate authorities.
• Unified lifecycle management spanning EJBCA and other connected CA platforms.

Typical use cases

• Organizations running EJBCA as their primary private PKI infrastructure.
• Security teams needing centralized governance over multiple EJBCA instances and CA hierarchies.
• Enterprises migrating from or running EJBCA alongside cloud-managed CA services.

High-level integration flow

1. Configure EJBCA API access credentials and CA endpoint details in QCecuring.
2. The platform discovers EJBCA CA hierarchies, profiles, and existing certificate inventory.
3. Certificate requests are submitted through QCecuring, which interacts with EJBCA’s issuance APIs.
4. Issued certificates are tracked centrally with automated renewal and revocation workflows.
5. Compliance reporting provides unified visibility across EJBCA and all other connected CAs.