JUNE 2022

The EJBCA team is pleased to announce the release of EJBCA 7.9.1.

This release includes improvements for the Microsoft Auto-enrollment integration and enhanced support for OAuth key rollover.

Deployment options include EJBCA Hardware ApplianceEJBCA Software Appliance, and EJBCA Cloud.

Highlights

Improvements to Microsoft Auto-enrollment Integration

We have resolved a couple of issues related to concurrent requests to EJBCA's auto-enrollment servlets. The improvements ensure proper handling of parallel requests, even under heavy loads.

New OAuth Key Updater Service

To better support OAuth providers' key rollover process, a new service worker has been added which automatically polls the provider for new public keys. See OAuth Key Update Worker for more details.

Upgrade Information

Review the EJBCA Upgrade Notes for important upgrade information. For upgrade instructions and information on upgrade paths, see Upgrading EJBCA.

EJBCA 7.9.1 is included in EJBCA Hardware Appliance 3.9.6, EJBCA Software Appliance 2.2.1 and EJBCA Cloud 2.10.1.

Change Log: Resolved Issues

For full details of fixed bugs and implemented features in EJBCA 7.9.1, refer to our JIRA Issue Tracker.

Issues Resolved in 7.9.1

Released June 2022

New Features

ECA-10693 - Periodically update public keys on Azure OAuth Alias

Improvements

ECA-10561 - ACME EAB with multiple keys

ECA-10519 - Add proper Git readme and license files in root directory

ECA-10746 - Improve ACME DNS challenge error handling and logging

ECA-10562 - Add support for EE email in REST /v1/certificate/pkcs10enroll POST

Bug Fixes

ECA-10519 - MSAE alias "Test connection" clears user input

ECA-10545 - RA Web Make New Request does not correctly parse CSR

ECA-10692 - Intune revocation poller fails if CA uses ldap order

ECA-10734 - ADConnectionSingletonBean - could not obtain lock within 5000MILLISECONDS

ECA-10745 - MSAE "RelatesTo" Id can ger overwritten during parallel requests

ECA-10758 - Sun PKCS11 not working on RedHat OpenJDK 11.0.15

ECA-10763 - Name constraints throwing NPE after 7.6.0