Activity for EJBCA, JEE PKI Certificate Authority
-
Tomas Gustavsson posted a comment on discussion Open Discussion
The question on GitHub was the correct place to ask questions
-
Kobus Bensch posted a comment on discussion Open Discussion
Hi I need to change the Certificate Profile of the Management CA. Can anybody help with this as searching the internet provides no answers. Thank you Kobus
-
Muhamed K posted a comment on discussion Help
I have the same problem. How did u fix it?
-
Kobus Bensch posted a comment on discussion Help
Hi This may no longer be required, but I thought I would post it here in case there is someone that can use this and save many hours of frustration. If you use 3 port separation, port 8442 is for public web and 8443 is for private web. Yes I know this may be obvious, but.... In setting up EJBCA-CE I assumed that all commands need to b e run as root. This is not the case. I, after trying the docs as is, decided to install EJBCA-CE as follows: I created a system user called wildfly on linux with a...
-
Hi Omar, That sounds like a question you should ask in the forum. For the benefit of the whole Community. Unless you are a support customer, and have access to the Enterprise support system of course. Cheers, Tomas
-
omar salek modified a comment on discussion ejbca-develop
Hi Tomas, Thank you for your response. i found the same bug on Github : https://github.com/Keyfactor/ejbca-ce/issues/821 we’d like to confirm if any of the following approaches are valid or recommended. Your input would be greatly appreciated: Option 1 – Exclude Log4j API using Kubernetes ConfigMap We’re deploying EJBCA in a Kubernetes environment. One idea is to mount a volume with a custom META-INF/jboss-deployment-structure.xml file that includes: <exclusions> <module name="org.apache.logging.log4j.api">...
-
Hi Tomas, Thank you for your response. i found the same bug on Github : https://github.com/Keyfactor/ejbca-ce/issues/821 we’d like to confirm if any of the following approaches are valid or recommended. Your input would be greatly appreciated: Option 1 – Exclude Log4j API using Kubernetes ConfigMap We’re deploying EJBCA in a Kubernetes environment. One idea is to mount a volume with a custom META-INF/jboss-deployment-structure.xml file that includes: xml Copier Modifier <exclusions> <module name="org.apache.logging.log4j.api">...
-
You can find information about this at GitHub there the forum is now located. You can find a link to GitHub Discussions on the web page. https://www.ejbca.org/engage/
-
2025-04-04 16:03:18,443+0000 ERROR [org.ejbca.core.ejb.upgrade.UpgradeSessionBean] (EJB default - 1) Unexpected error from post-upgrade: java.lang.ClassCastException: class org.jboss.logmanager.log4j.JBossLogger cannot be cast to class org.apache.logging.log4j.core.Logger (org.jboss.logmanager.log4j.JBossLogger is in unnamed module of loader 'org.jboss.logmanager.log4j2@1.1.2.Final' @c0c07e4; org.apache.logging.log4j.core.Logger is in unnamed module of loader 'deployment.ejbca.ear' @5c982fcd): jakarta.ejb.EJBException:...
-
Hello, We are currently performing an upgrade of EJBCA from version 6.10.1 to 9.0.0. During the post-upgrade process, we encountered an error related to compatibility issues between Log4j and the logging system, as both seem to be in use simultaneously. Despite not finding Log4j references in the standalone.xml, we would like to disable or resolve this conflict. Could you please provide guidance on how to deactivate Log4j or suggest any alternative solutions to address this issue? Thank u
-
hsunmark created a blog post
EJBCA Community 9.1 is released
-
EJBCA, JEE PKI Certificate Authority updated /ejbca9/ejbca_ce_9_1_1.zip
-
-
-
-
-
Arthur Walle modified a comment on discussion Help
Hello, I'm pretty new in EJBCA and I wanted to do some tests with PQC certificates. I created a full PQC PKI hierarchy thanks to Keyfactor tutorial and I wanted to create a hybrid hierachy with RSA 4098 and DILITHIUM5. I also follow the keyfactor tutorial and it seems to works well but I have some questions about some PQC stuff. 1.- Why end-entity certificate doesn't have the extension "Alternative public key" (OID: 2.5.29.72) I dont really understand why because the Root CA and the Sub CA have it....
-
Hello, I'm pretty new in EJBCA and I wanted to do some tests with PQC certificates. I created a full PQC PKI hierarchy thanks to Keyfactor tutorial and I wanted to create a hybrid hierachy with RSA 4098 and DILITHIUM5. I also follow the keyfactor tutorial and it seems to works well but I have some questions about some PQC stuff. 1.- Why end-entity certificate doesn't have the extension "Alternative public key" (OID: 2.5.29.72) I dont really understand why because the Root CA and the Sub CA have it....
-
Hello, I'm pretty new in EJBCA and I wanted to do some tests with PQC certificates. I created a full PQC PKI hierarchy thanks to Keyfactor tutorial and I wanted to create a hybrid hierachy with RSA 4098 and DILITHIUM5. I also follow the keyfactor tutorial and it seems to works well but I have some questions about some PQC stuff. Why end-entity certificate doesn't have the extension "Alternative public key" (OID: 2.5.29.72) I dont really understand why because the Root CA and the Sub CA have it. I...
-
Hello, I'm pretty new in EJBCA and I wanted to do some tests with PQC certificates. I created a full PQC PKI hierarchy thanks to Keyfactor tutorial and I wanted to create a hybrid hierachy with RSA 4098 and DILITHIUM5. I also follow the keyfactor tutorial and it seems to works well but I have some questions about some PQC stuff. Why end-entity certificate doesn't have the extension "Alternative public key" (OID: 2.5.29.72) I dont really understand why because the Root CA and the Sub CA have it. I...
-
Khiem Nguyen posted a comment on discussion Open Discussion
But can you help me pls?
-
Oh, thanks Tomas
-
The forum has moved here: https://github.com/Keyfactor/ejbca-ce/discussions
-
Hello everyone, please help me to upgrade the EJBCA system. I am using EJBCA 6.15.5.2 Wildfly 18.0.1 Final JDK8 Now I want to upgrade to EJBCA 7.4.3.2, what do I need to do? I have read the documentation but don't really understand it. Can everyone explain more about the command and how to upgrade? Does upgrading to version 8.x require upgrading Wildfly and JDK? And how will I perform the upgrade? Thanks you.
-
Hi Martin, the forum has moved to https://github.com/Keyfactor/ejbca-ce/discussions
-
martin Edward corr posted a comment on discussion Open Discussion
Hi Im trying to get ejbca to work with Luna HSM but failing. luna client is installed and I can view the slots via lunacm. running ejbca standard docker image. running docker as root. When I start ejbca with debug logging I see this: ejbca-ce | 2025-02-04 15:16:27,563+0000 DEBUG [org.ejbca.config.WebConfiguration] (default task-1) PKCS#11 library /usr/safenet/lunaclient/lib/libCryptoki2_64.so was not detected in file system and will not be available. but the file is there: sh-4.2$ pwd /usr/safenet/lunaclient/lib...
-
Kalyani Bharatha posted a comment on discussion Open Discussion
Thank you for the response
-
EJBCA doesn't have a "FIPS mode" switch. EJBCA Enterprise certainly runs in many FIPS certified environments. This can mean many different things to different organizations though as we've seen and assisting and documenting configuring for that does fall outside of community best effort support. PS: The discussion forum has moved to https://github.com/Keyfactor/ejbca-ce/discussions
-
Hi Tomas, Im using EJBCA 9.0.0 Community edition, so for Key recoverable i have selected BCFKS token type, but the response is not BCFKS keystore, so is there any way to enable fips mode in ejbca ? and is this supported in 9.0.0 community edition.
-
EJBCA Community 9.0 is released
-
-
-
-
The discussion forum for EJBCA is now here: https://github.com/Keyfactor/ejbca-ce/discussions
-
Marcus Berglund posted a comment on discussion Help
Hi I have been pulling my hair to get this to work in openshift, but I was not able so I opted for an nginx proxy infront of the ejbca container. My goal is: Display EJBCA RA Web and adminweb at https://pki.company.com with a certificate from another CA Redirect all HTTP-requests to HTTPS, except for OCSP and CRL. Require a client SSL certificate when accessing https://pki.company.local/adminweb/ (this is the default - managementCA superadmin cert) Still answer to requests on https://pki.company.local/ejbca/*...
-
You really need to upgrade. You realize that 6.6.0 is more than 8 years old? https://docs.keyfactor.com/ejbca/latest/ejbca-change-log-summary#id-(9.1.1)EJBCAChangeLogSummary-EJBCA6.6.0 Community discussion have moved here. https://github.com/Keyfactor/ejbca-ce/discussions For Enterprise upgrade, Keyfactor is here to help. https://www.keyfactor.com/contact-us/
-
primeoptimus posted a comment on discussion Help
Hi, in my test environment (EJBCA 6.6.0 Enterprise) i get this "Crypto Token currently does not contain any key pairs" when checking "Crypto Tokens" from the adminweb. I know that there should be at least 9 key pairs. The crypto is active but when trying to create crl or issuing certificate I get... Error: CA token is off-line, Please activate the token before continuing. Cause : No key with alias 'sign-1179'. I see all the key-pair files under /opt/nfast/kmdata/local but nothing is shown in the...
-
Dev posted a comment on discussion Help
i can help me in create cretificate profil electronic seal is this the right way ??
-
Moved to GitHub. https://github.com/Keyfactor/ejbca-ce/discussions
-
William posted a comment on discussion Help
I am trying to configure an NGINX controller in front of the EJBCA service node. But the authentication is failing, because the web browser is not sending the client certificate. I suppose because the issuer is different from the issuer of the client certificate. Is this behaviour normal, should the NGINX ingress controller present a certificate with the same issuer as the client's certificate (SuperAdmin)?
-
Discussions have moved to: https://github.com/Keyfactor/ejbca-ce/discussions
-
hi , I hope you are in good shape . I want you to help me with this problem : file confi.json "connections": { "hsm_1": { "ip": "address ip", "port": "60000" } }, "users": { "DEFAULT_PCO": { "authentication_type": "password", "connection": "hsm_1" } }, "log_verbosity": "full" } pkcs11-tool --module /usr/local/lib/kryptus/libknetpkcs11_64/libkNETPKCS11.so --list-slots Available slots: Slot 0 (0x3e8): User: DEFAULT_PCO token label : DEFAULT_PCO token manufacturer : KRYPTUS token model : kNET HSM token...
-
This is another topic that this thread is about. Please open a new question on the GitHub discussions (as linked from ejbca.org). https://github.com/Keyfactor/ejbca-ce/discussions
-
Jinat Rehana posted a comment on discussion Open Discussion
Hi, EJBCA 7.5.01 allows CAs to issue 20 Octets serial number by default. What is the recommended serial number size. Also, in older version of EJBCA the default serial number size was 8 Octets. On upgarded EJBCA version older CAs are having still 8 Octets as serial number is there any security risk about that? Only new CA by default can issue certificate with 20 Octet serial number on an upgraded version of EJBCA.
-
Jimmy wang posted a comment on discussion Help
The EDBCA service is normal, and administrators can login normally. However, the scheduled task generates CRL, and the log reports: Aug 25 15:30:01 casrv02_10_100_32_11 CROND[8639]: (ejbca) CMD (/home/ejbca/ejbca_ce_6_15_2_1/bin/ejbca.sh ca createcrl 'TimeStamp CA1') Aug 25 15:30:24 casrv02_10_100_32_11 CROND[8585]: (ejbca) CMDOUT (Error: CLI could not contact EJBCA instance. Either your application server is not up and running, EJBCA has not been deployed successfully, or some firewall rule is blocking...
-
There are some similar posts in the Discussion session. If you can post there it's good to keep it together. https://github.com/Keyfactor/ejbca-ce/discussions
-
Santatra Steve modified a comment on discussion Open Discussion
Using the docker container, API is working correctly on localhost or when using bare IP address. However, I cannot make it work behind an reverse proxy. There's no mention of API in the docker documentation. From what I understand, we should use the PROXY_HTTP_BIND environment variable and put the certificate in the client, then the container should read the certificate from the SSL_CLIENT_CERT header. However, that doesn't seems to work. What I've already done: * Using PROXY_HTTP_BIND and TLS_SETUP_ENABLED=later...
-
Using the docker container, API is working correctly on localhost or when using bare IP address. However, I cannot make it work behind an reverse proxy. There's no mention of API in the docker documentation. From what I understand, we should use the PROXY_HTTP_BIND environment variable and put the certificate in the client, then the container should read the certificate from the SSL_CLIENT_CERT header. However, that doesn't seems to work. What I've already done: * Using PROXY_HTTP_BIND and TLS_SETUP_ENABLED=later...
-
Using the docker container, API is working correctly on localhost or when using bare IP address. However, I cannot make it work behind an reverse proxy. There's no mention of API in the docker documentation. From what I understand, we should the PROXY_HTTP_BIND environment variable and put the certificate in the client, then the container should read the certificate from the SSL_CLIENT_CERT header. However, that doesn't seems to work. What I've already done: * Using PROXY_HTTP_BIND and TLS_SETUP_ENABLED=later...
-
EJBCA Community 8.3 is released
-
-
-
You should contact keyfactor support, they should be able to help you with that quickly.
-
PRABHAT DWIVEDI posted a comment on discussion Help
Hi, We have EJBCA 8.0 Enterprise and are are planning to integrating ACME for automated renewal/issuance of our internal certificates. Is there any way by which we can bypass the challenges. Is there any way to pre validate the requested domain . Something similar to digicert , which pre validates the domain and on receiving acme order , simply provides the certificates.
-
EJBCA discussions have moved here: https://github.com/Keyfactor/ejbca-ce/discussions
-
BHK posted a comment on discussion Help
Dear all, I've been trying for hours to get EJBCA working behind Nginx Proxy Manager. I've deployed EJBCA using Docker without issue using the following docker-compose: ` version: '3' services: ejbca-database: container_name: ejbca-database image: library/mariadb:lts networks: - application-bridge environment: - MYSQL_ROOT_PASSWORD=foo123 - MYSQL_DATABASE=ejbca - MYSQL_USER=ejbca - MYSQL_PASSWORD=ejbca volumes: - ejbca-data:/var/lib/mysql:rw ejbca-node1: hostname: ejbca-node1 container_name: ejbca...
-
You can find the new discussion forum here: https://github.com/Keyfactor/ejbca-ce/discussions (linked from ejbca.org as well)
-
Khoa Phung posted a comment on discussion Open Discussion
Hi team, I'd like to understand whether EJBCA 7.x, 8.x can be deployed on JBoss EAP 8? Thanks
-
Discussions have moved to https://github.com/Keyfactor/ejbca-ce/discussions Please state which version of EJBCA you are using when posting there and explain what commands you use.
-
Stockton modified a comment on discussion Open Discussion
i'm looking for a better step to set the newly created OCSP responder (responder-renew) take effective immediately. Looks there are delay when i disable the old OCSP responder and set active to the newly created one.
-
i'm looking for a better step to set the newly created OCSP responder (responder-renew) take effective immediately. Looks there are delay when i disable the old OCSP responder and set active to newly created one.
-
i'm trying to test the following case: old OCSP responder (e.g. responder) still valid and active. i create a new OCSP responder (e.g. responder-renew) and set to active. Both of two active OCSP responder issued by same CA, so that DN is same when i set default OCSP responder as below command: ./ejbca.sh ocsp setdefaultresponder --dn "xxx" how can i swap to use the newly created OCSP responder => responder-renew ? any command can do that instead of disable the old OCSP responder? Thanks.
-
Phil Robinson posted a comment on discussion Open Discussion
Hello, we are trying to setup EJBCA with an external ECDSA root that is a non EJBCA. We were able to import the External Root into our Certification Authorities. We created an Issuing ECDSA root, generated a CSR (after providing the ECDSA external Root certificate) and we were able to obtain the certificate for the issuing CA from the external Root. However, after attempting to import the certificate to complete the installation of the Issuing CA, we received the following message: Error: Error building...
-
Hi, The EJBCA discussion channel has officially moved here: https://github.com/Keyfactor/ejbca-ce/discussions For Bitnami VM you need to askBitnami support. We have no insight in how their VM works, they create that themselves You can find the official EJBCA Container on DockerHub, https://hub.docker.com/r/keyfactor/ejbca-ce
-
Juri Reitsakas modified a comment on discussion Help
Hi I have EJBCA CE bitnami VM Where i can find the keystore and truestore passwords? keytool -list -keystore /opt/bitnami/wildfly/standalone/configuration/keystore.jks -storepass 'pass' i try all the passwords from web.properties file and also 'ejbca', 'foo123' and password from bitnami_credentials file but all these pass are incorrect "Keystore was tampered with, or password was incorrect" how i can find the correct password? I have access to MariaDB (using the password from bitnami_credential file),...
-
Hi I have EJBCA CE bitnami VM Where i can find the keystore and truestore passwords? keytool -list -keystore /opt/bitnami/wildfly/standalone/configuration/keystore.jks -storepass <pass></pass> i try all the passwords from web.properties file and also 'ejbca', 'foo123' and password from bitnami_credentials file but all these pass are incorrect "Keystore was tampered with, or password was incorrect" how i can find the correct password? I have access to MariaDB (using the password from bitnami_credential...
-
marc aro modified a comment on discussion Help
-
Hello, I'm try to install EJBCA but i have an error when i try to execute the procedure "Generate a keypair and create a CSR using JBoss CLI" from https://doc.primekey.com/ejbca/ejbca-installation/application-servers/wildfly-26#WildFly26-UseanHSM. When i try to execute the command: "/opt/wildfly/bin/jboss-cli.sh --connect '/subsystem=elytron/key-store=httpsKSInHSM:generate-certificate-signing-request(alias=tlsKey0001, path=keystore/csr.pem, relative-to=jboss.server.config.dir, signature-algorithm=SHA256withRSA)"...
-
Follow on GitHub: https://github.com/Keyfactor/ejbca-ce/discussions/528
-
Dalibor Rada posted a comment on discussion Help
Hi, I'm trying to install EJBCA on my PC, but every time I restart the server after installation I get these two errors. I use: openjdk-11jdk mariadb-server latest ejbca version There 2 errors are: [image: f.png] and the second one is [image: a.png] EDIT: The server.log says ERROR [org.jboss.as] (Controller Boot Thread) WFLYSRV0026: WildFly Full 26.0.0.Final (Wildfly COre 18.0.0.Final) started (with errors) in 5039ms - Started 338 of 610 services (29 services failed or missing dependencies, 341 services...
-
Hi, I'm trying to install EJBCA on my PC, but every time I restart the server after installation I get these two errors. I use: openjdk-11jdk mariadb-server latest ejbca version EDIT: The server.log says ERROR [org.jboss.as] (Controller Boot Thread) WFLYSRV0026: WildFly Full 26.0.0.Final (Wildfly COre 18.0.0.Final) started (with errors) in 5039ms - Started 338 of 610 services (29 services failed or missing dependencies, 341 services are lazy, passive or on-demand). I mean, it looks like it started...
-
hi all, i'm using latest Wildfly 31+EJBCA v8.2.0.1 When i start deploy the ejbca.ear, it return the following error msg: "{ \"WFLYCTL0080: Failed services\" => { \"jboss.deployment.subunit.\\"ejbca.ear\\".\\"adminweb.war\\".INSTALL\" => \"WFLYSRV0153: Failed to process phase INSTALL of subdeployment \\"adminweb.war\\" of deployment \\"ejbca.ear\\" Caused by: org.jboss.as.server.deployment.DeploymentUnitProcessingException: WFLYEJB0405: No Jakarta Enterprise Beans found with interface of type 'org.ejbca.core.ejb.EjbBridgeSessionLocal'...
-
hi all, i'm using latest Wildfly 31+EJBCA v8.2.0.1 When i start deploy the ejbca.ear, it return the following error msg: "{ \"WFLYCTL0080: Failed services\" => { \"jboss.deployment.subunit.\\"ejbca.ear\\".\\"adminweb.war\\".INSTALL\" => \"WFLYSRV0153: Failed to process phase INSTALL of subdeployment \\"adminweb.war\\" of deployment \\"ejbca.ear\\" Caused by: org.jboss.as.server.deployment.DeploymentUnitProcessingException: WFLYEJB0405: No Jakarta Enterprise Beans found with interface of type 'org.ejbca.core.ejb.EjbBridgeSessionLocal'...
-
hi all, i'm using latets Wildfly 31+EJBCA v8.2.0.1 When i start deploy the ejbca.ear, it return the following error msg: "{ \"WFLYCTL0080: Failed services\" => { \"jboss.deployment.subunit.\\"ejbca.ear\\".\\"adminweb.war\\".INSTALL\" => \"WFLYSRV0153: Failed to process phase INSTALL of subdeployment \\"adminweb.war\\" of deployment \\"ejbca.ear\\" Caused by: org.jboss.as.server.deployment.DeploymentUnitProcessingException: WFLYEJB0405: No Jakarta Enterprise Beans found with interface of type 'org.ejbca.core.ejb.EjbBridgeSessionLocal'...
-
Please post here: https://github.com/Keyfactor/ejbca-ce/discussions
-
REGELAN Samuel posted a comment on discussion Open Discussion
Hi, we have a problem, we are building an ejbca keyfactor/ejbca-ce:7.11.0 container, when I start our container it can't connect to our external database: **2024-02-15 08:41:17,560+0000 INFO [/opt/keyfactor/bin/start.sh] (process:1) Waiting for external database 'jdbc:mariadb://xxx.xxx.xxx.xxx:3000/database?characterEncoding=UTF-8?verifyServerCertificate=false&SSLMode=true&requireSSL=true' to become available. 2024-02-15 08:41:21,654+0000 INFO [org.apache.commons.beanutils.FluentPropertyBeanIntrospector]...
-
Maxwell Chandler modified a comment on discussion Help
My VA server has the CertificateData table constantly synced with my CA. I have imported all the active CA certs on my CA into my VA as external CAs. Yet in the server.log i constantly see: No CertificateData found with fingerprint 049a1b0baf74aea8a811f24c8d72dba59a4e029b for 'CN=SUBCAOCSP' issued by 'CN=SUBCA'. Yet if i Query the ejbca.CertificateData table on my VA: MariaDB [ejbca]> select fingerprint from CertificateData; +------------------------------------------+ | fingerprint | +------------------------------------------+...
-
My VA server has the CertificateData table constantly synced with my CA. I have imported all the active CA certs on my CA into my VA as external CAs. Yet in the server.log i constantly see: No CertificateData found with fingerprint 049a1b0baf74aea8a811f24c8d72dba59a4e029b for 'CN=SUBCAOCSP' issued by 'CN=SUBCA'. Yet if i Query the ejbca.CertificateData table: MariaDB [ejbca]> select fingerprint from CertificateData; +------------------------------------------+ | fingerprint | +------------------------------------------+...
-
Closing this thread, moved to GitHub.
-
Hi, I have 2 instances. A CA and a VA. Within the CA server i have created a ssh key for the wildfly user. I can use this key to scp files to a directory on my VA without it asking for a password, everything is working fine. However, within the admin GUI in ejbca in the Publisher section, this fails. It can find the key, and the permissions for the key are fine. However it tells me that the CRL/Certificate location is inaccessable. I know this location exists on my VA and is accessable, because I...
-
Dev: Please create a new issue in GitHub. https://github.com/Keyfactor/ejbca-ce/discussions Deleting these.
-
Hi Alexandre, can you move this topic to GitHub? https://github.com/Keyfactor/ejbca-ce/discussions
-
Hi Dev, this is not realated to the topic of this issue. Please post questions under a new thread, on GitHub. https://github.com/Keyfactor/ejbca-ce/discussions
-
ant runinstall Buildfile: /opt/ejbca/build.xml customejbca.message: [echo] No custom changes to merge. appserver.error.message: runinstall: check:bootstrapdone: ejbca:prompt: [input] skipping input as property ca.name has already been set. [input] skipping input as property ca.dn has already been set. [input] skipping input as property ca.keytype has already been set. [input] skipping input as property ca.keyspec has already been set. [input] skipping input as property ca.signaturealgorithm has already...
-
Alexandre Fonseca posted a comment on discussion Help
Hi, Is possible to change the supported algorithm in pkcs#12 to AES-256-CBC? Thanks in advance
-
Christian posted a comment on discussion Help
Hello Tomas, thanks for your reply. I will monitor the progress on GitHub. In the meantime I reverted back to tag 8.0.0, so that I can continue evaluating CMP with EJBCA. Best Regards, Christian
-
You can see this issue, and continue the discussion in that channel. https://github.com/Keyfactor/ejbca-ce/issues/473
-
Hello, I downloaded the docker container of EJBCA and I try to setup CMP now. However, when I try to connect with OpenSSL to CMP, I get this error in OpenSSL: CMP info: sending IR CMP error: received error:code=404, reason=Not Found CMP error: error receiving:server=http://localhost:80 CMP error: transfer error:request sent: IR, expected response: IP And that error in HTTP <title>Error</title>CMP alias 'cmp' does not exist What's also strange is, that in EJBCA I cannot configure any CMP aliases....
-
Hi, Can you post this to the GitHub discussions. With some more details such as what version of EJBCA you are using, what version of application server, version of Java, and such. https://github.com/Keyfactor/ejbca-ce/discussions
-
AbdoulKadri Mossi posted a comment on discussion ejbca-develop
how to fix this error 2024-01-16 15:23:40,022 INFO [org.jboss.as.jpa] (MSC service thread 1-7) WFLYJPA0002: Read persistence.xml for ejbca 2024-01-16 15:23:41,611 INFO [org.jipijapa] (MSC service thread 1-1) JIPIORMV6020260: Second level cache enabled for ejbca.ear#ejbca 2024-01-16 15:23:41,702 INFO [org.infinispan.CONTAINER] (ServerService Thread Pool -- 170) ISPN000556: Starting user marshaller 'org.wildfly.clustering.infinispan.marshalling.jboss.JBossMarshaller' 2024-01-16 15:23:42,243 INFO [org.jboss.weld.deployer]...
-
Daniel Gómez Aguado posted a comment on discussion Help
Hi everyone, I am following the quick start guide for EJBCA container with client certificate authenticated access: https://doc.primekey.com/ejbca/tutorials-and-guides/quick-start-guide-start-ejbca-container-with-client-certificate-authenticated-access On step 5, after introducing the .p12 certificate onto my browser and trying to access https://localhost/ejbca/adminweb/ , I am asked with a certificate. When giving the certificate, instead of the page loading, I get a Secure connection failed error...
-
-
-
-
Hi, Please continue the discussion here: https://github.com/Keyfactor/ejbca-ce/discussions There are many docker related discussions there.
-
Please continue the discussion here: https://github.com/Keyfactor/ejbca-ce/discussions There are many docker and env discussions there.
1 >