EJBCA SaaS is available in different sizes and contract options to meet customer needs and allowing you to scale as you grow.

Contract Options Overview

The following provides a contract option and size comparison overview.

To view the table in full screen, click the expand icon below.

EJBCA SaaSExtra SmallSmallMediumLargeExtra Large
Use case
  • Non-Production
  • Proof of Concept (PoC)
  • Development and Test staging environments
  • Small production workloads
  • Corporate IT workloads
  • Typical production workloads
  • Manufacturing / IIoT
  • Large Corporate IT workloads
Coming SoonComing Soon
Service Level Agreement
Service Level Agreement (SLA)99%99.95%99.95%

Key Features
Certificate capacity10 K250 K2.5 M

Certificate performance capacity10 Certificates per second25 Certificates per second80 Certificates per second

Certificate performance capacity with CloudHSM
Coming SoonComing Soon

OCSP performance capacity with KMS25 OCSP responses per second50 OCSP responses per second100 OCSP responses per second

OCSP performance capacity with CloudHSM
Coming SoonComing Soon

On demand performance and capacity upgrades(tick)(tick)(tick)

Geographic availability
  • 1 Region - US or EU or AP
  • 1 Availability zone
  • 1 Region - US or EU or AP
  • 2 Availability zones
  • 1 Region - US or EU or AP
  • 2 Availability zones


HSMAWS KMS
  • AWS KMS
  • CloudHSM coming soon
  • AWS KMS
  • CloudHSM coming soon
  • CloudHSM coming soon
  • CloudHSM coming soon
CP/CPS templates(tick)(tick)(tick)

Dedicated offline root EJBCA Instance(tick)(tick)(tick)



Fully controlled self service root CA(tick)(tick)(tick)

Custom user configurable domain name(tick)(tick)(tick)

Dedicated, load balanced Issuing Instances(tick)(tick)(tick)

Full EJBCA administrator access(tick)(tick)(tick)

User configurable source IP access to PKI(tick)(tick)(tick)

On Command Provisioning*(tick)(tick)(tick)

PKI intelligence dashboard
(see PrimeKey SaaS Portal)		(tick)(tick)(tick)

2 Factor Authentication

(tick)

(tick)

(tick)



Key Recovery
(tick)
CloudHSM Only		(tick)
CloudHSM Only

Protocols & APIs
SCEP

(tick)
CloudHSM Only

(tick)
CloudHSM Only



CMP(tick)(tick)(tick)

EST(tick)(tick)(tick)

ACME(tick)(tick)(tick)

WebServices API(tick)(tick)(tick)

REST API(tick)(tick)(tick)

Integration
Microsoft Intune Integration
(tick)
CloudHSM Only		(tick)
CloudHSM Only

Hashicorp Vault Integration

(tick)(tick)(tick)

Microsoft Windows Autoenrollment integration(tick)(tick)(tick)

Upcoming Features
Free Extra Small (non-production) instance of EJBCA includedComing SoonComing SoonComing Soon

Upgrade scheduler

Coming Soon

Coming Soon

Coming Soon



*On Command Provisioning means that everything is uniquely configured for you upon startup without any pre-provisioned infrastructure.