Launch EJBCA Enterprise Cloud on Azure

The following describes how to launch EJBCA Enterprise Cloud from Azure Marketplace.

The Azure Portal is a web interface that allows you to configure the EJBCA Enterprise Cloud instance details from a web browser before you launch it. Follow the instructions below to launch an EJBCA Cloud Azure instance.

Locate EJBCA Cloud in the Azure Marketplace

Browse to the Azure Marketplace and search for "primekey" to display the EJBCA Cloud. Review the plans as desired under the plans tab to see the different pricing options. Select the instance type to use and click GET IT NOW.

Select the desired support level, 8x5 or 24x7 and specify the contact information as required my Microsoft.

Launch the Instance


This action will redirect you to the Azure portal. Login to the Azure portal if not already done, confirm that the proper support plan is selected, and then click Create.

This will bring you to the EJBCA Cloud Launch Wizard for Azure. Select the desired subscription, click Create new and enter the name of a Resource Group that will hold all of the EJBCA Cloud resources, and then click OK.

Select a location for the virtual machine and click OK.

Network Settings

A Virtual Network is predefined with a network. If a different virtual network is desired, enter the desired values and then click OK.

Select Subnets and optionally change the subnet names and prefix before clicking OK.

Select the IP Range that will be allowed to connect to this instance. For a single IP use a /32, for example,

VM Settings

Enter the Admin Username that will be allowed to SSH into the EJBCA Enterprise Cloud Instance.

Select the Authentication Type, either Password or SSH public key.

  • If using password, enter it twice. Password must be at least 12 characters long and have 3 out of the following: one number, one lower case, one upper case, or one special character.
  • If entering an SSH key, copy and paste an RSA public key in the single-line format (starting with "ssh-rsa") or the multi-line PEM format. You can generate SSH keys using ssh-keygen on Linux and OS X, or PuTTYGen on Windows.

The default VM size is a 2 Core 8GB RAM virtual machine. To change the size, click Change size Some default recommended sizes are shown. To see more options, click Clear all filters. The prices Azure charges will be shown as well as the resources available for those virtual machines. These charges are separate from the PrimeKey licensing charges associated with the marketplace. Once the desired virtual machine is chosen, click Select, and then click OK.  

EJBCA Credentials

Enter the EJBCA Superadmin Password in the dialog shown. This password will be used to retrieve the superadmin.p12 file that will be downloaded from the public web. The password must be at least 12 characters long and have 3 out of the following: one number, one lower case, one upper case, or one special character.

Once a valid password is entered, click OK

The system will run a final validation. This will check your settings as well as the resource allocations you selected.

Once the Validation passes, click OK.

Terms of Use

Accept the terms of use to proceed and click Create.


The deployment will begin. Once you see Deployment in progress..., select the link to see the details of the deployment:

Wait for the details of the deployment to appear. The typical deployment takes about 7-8 minutes in the Microsoft Azure environment.  

Wait until all of the of the deployed resources are green. Within a few minutes after this the instance should be available on the public IP deployed to the host.