EJBCA Cloud AWS
- AWS Launch Guide
Quick Start Guide
- Create Crypto Tokens
- Create Root CA Certificate Profile
- Create Issuing CA Certificate Profile
- Create Certificate Authorities
- Create User and Workstation Profiles
- Create End Entity Profiles
- Request Certificate
- Create Another Administrator Account
- Import Certificate to Mozilla Firefox
- Configure Health Checks
- Create CRL Updater Service
- AWS Backup Guide
- AWS Restore and Upgrade Guide
- AWS TLS Certificate Generation Guide
- AWS RA Configuration and Administration Guide
- AWS VA Configuration and Administration Guide
AWS Cluster Configuration Guide
- Cluster AWS Operating Environment
- Multi Node Clusters
- Cluster Security Groups
- Clustering with RDS Database
- Clustering with Galera on Local Nodes
AWS CloudHSM Integration Guide
- Multiple Crypto Tokens with AWS CloudHSM
- 1 - Create CloudHSM Cluster
- 2 - Use OpenSSL to Validate the HSM
- 3 - Initialize the CloudHSM
- 4 - Assigning the Security Group to the EJBCA Instance
- 5 - Configure the cloudhsm-client
- 6 - PKCS11 PIN
- 7 - Activate the Cluster
- 8 - Create a CloudHSM Crypto User
- 9 - Create a Keystore in the HSM with clientToolBox
- 10 - Test with EJBCA ClientToolbox
- 11 - Create a CryptoToken in EJBCA
- Appendix A - Restoring an HSM Backup to a New Instance
- Appendix B - Troubleshooting HSM Issues
AWS Certificate Manager Integration Guide
- Provisioning an EJBCA Instance and setting up CloudHSM
- Create Root CA Keys
- Create CloudHSM Crypto Token for Root CA
- Create the Root and Issuing CA Certificate Profiles
- Create End Entity Sub CA Profile
- Create Root CA that uses the CloudHSM Crypto Token
- Create AWS ACM Certificate Authority CSR
- Add ACM PCA End Entity
- Generate the ACM PCA Certificate for AWS
- Fulfill the Pending ACM PCA Certificate Request
- AWS S3 Publisher Configuration Guide
- AWS KMS Configuration Guide
- How to Create Support Package
- EJBCA Cloud AWS VA
EJBCA Cloud Azure
- Azure Launch Guide
- Azure Backup Guide
- Azure Restore and Upgrade Guide
- Azure TLS Certificate Generation Guide
- Azure RA Configuration and Administration Guide
- Azure VA Configuration and Administration Guide
- Azure Cluster Configuration Guide
- Azure Key Vault Integration Guide
- How to Create Azure Support Package
- EJBCA Cloud Release Notes
Launch EJBCA Cloud AWS
This section describes how to launch EJBCA Cloud from AWS Marketplace.
The EC2 Console is a web interface that allows you to configure the EJBCA Cloud instance details from a web browser before you launch it. Follow the instructions below to launch an EJBCA Cloud instance.
Locate EJBCA ECE in the AWS Marketplace
Browse to the AWS Marketplace and search for "primekey" to display the following two results: one for Standard 8x5 support and the other for Premium 24x7 support. Select the instance type to use and click Continue to Subscribe.
Launch the instance
In the 1-Click Launch tab, the options will be unavailable and a warning displayed about certain instance types being available only in VPCs.
To select a VPC to display the details, scroll down and expand the VPC Settings. The EC2 Classic is by default selected in the Select a VPC field.
Select a VPC configured in your organization and all of the instance options will become available.
Review and specify the pricing model, Annual or Hourly. Then select a Version, the Region to run your instance in, and if needed a Security Group. For details, see VPC and Security Group. Choose a Key Pair to associate with this EJBCA Cloud EC2 instance, see Key Pair. Then click the Accept Software Terms & Launch with 1-click button to launch the instance.
VPC and Security Group
If you have an existing security group and Virtual Private Cloud (VPC) created, you can select them. Otherwise, choose which of these items you would like to be created. The 22, 80, and 443 are needed for access to the image and for it to perform its functions.
For more information on getting started with Amazon Virtual Private Cloud (Amazon VPC), refer to AWS Documentation on VPCs and Subnets.
Specify the name of the key pair you plan to use to access the command line of the EJBCA instance. When you later connect to the instance, you must specify the private key that corresponds to the key pair you specify now when launching the instance. For information on creating a key pair using Amazon EC2, refer to AWS Documentation on Amazon EC2 Key Pairs.
Software Installation Details
After launching, the installation details are displayed and the status of the deployment is available in the EC2 Dashboard.
Confirm running EJBCA ECE instance
It may take several minutes for your instance to launch. After the Instance State changes from pending to running, the EJBCA Cloud instance is started.