EJBCA® Hardware Appliance

With PrimeKey EJBCA Hardware Appliance, you get the most used PKI solution in the world, packaged in a turn-key rack-mounted hardware appliance. With its integrated HSM, it is the easiest and most efficient way to deploy and manage a full-blown PKI.

Contact us Download Product Sheet

PKI-in-a-box

Feature-complete PKI

EJBCA Hardware Appliance supports all your public key infrastructure (PKI) use cases and scales with your needs. It offers clustering possibilities and comes in five models, XS to XL and three hardware security module (HSM) performance levels.

Turn-key solution

Easy and fast deployment and updates with a stable package that includes the complete software and hardware stack - not only the PKI application. 

HSM included

PrimeKey always recommends using a HSM with your PKI. That is why the EJBCA Hardware Appliance comes with an integrated FIPS-certified HSM, for easy installation and maintenance. 

hardware-appliance

Features of EJBCA Hardware Appliance

Make PKI simpler and safer, by predicting costs and saving resources while increasing the quality and minimizing the risks of your PKI project. Our turn-key PKI hardware appliance is the best choice for most on-premises medium to large deployments — suitable even for managed services, Internet of Things (IoT) and eIDAS (qualified) Trust Service Providers.

complete-720×720

Complete technology stack

EJBCA Hardware Appliance comes with all use cases and components needed to successfully deploy and operate a full-blown PKI. In a single instance, you can run multiple certificate authorities (CAs), subordinate CAs, registration authorities (RAs), and validation authorities (VAs).

easy-operate-720×720

Easy to maintain 

Easy and effective management is the key to a secure and reliable PKI deployment. Updates and upgrades are delivered as complete and tested software packages for smooth maintenance. Backup and restore routines are robust and simplified to reduce manual errors.

HSM-01-720×720

FIPS-certified HSM

An integrated FIPS 140-2 Level 3-certified HSM brings enterprise-grade security keeping all cryptographic keys secure. The built-in HSM comes in different performance levels.

flexible-720×720

Flexible for your use cases

PrimeKey understands that organizations have different needs and business requirements - and that things evolve over time. We therefore offer the EJBCA Hardware Appliance in five different models ranging from XS to XL. This gives you the possibility to start small and grow with your use cases.

Read more in the EJBCA Hardware Appliance documentation

 

Related resources

ejbca-common-criteria-banner
News
About PrimeKey
EJBCA Enterprise
EJBCA Hardware Appliance
EJBCA Software Appliance

EJBCA® Enterprise achieves Common Criteria certification

We are proud to announce that PrimeKey’s EJBCA Enterprise has achieved Common Criteria certification conformant to the Protection Profile for Certification Authorities, a Collaborative Protection Profiles (cPP) approved by the National Information Asso...
enabling security through PKI
On-demand webinar
Corporate PKI
EJBCA Cloud
EJBCA Enterprise
EJBCA Hardware Appliance
EJBCA SaaS
EJBCA Software Appliance
Enterprise
Manufacturing
PKI migration

Webinar: Own your own risks – Modern manufacturers on-prem security journey to the Cloud

Let us demonstrate together with Thales how manufacturing organizations can benefit from robust and securely built PKI implementations. Date: 12 May Time: 11 AM CET Duration: 1 hour Presented by: Paul Hampton, Cyber Security Specialist, Thales Tom...
Android signing schemes, compliance and crypto agility
Tech update
DevOps
EJBCA Cloud
EJBCA Enterprise
EJBCA Hardware Appliance
EJBCA Software Appliance

EJBCA plugin available for Hashicorp Vault

Hashicorp Vault is a popular tool  for encryption services and secrets management. The Vault is available both as open source and Enterprise versions. It can be deployed as a container in any cloud environment. The Vault allows applications  to generate...

See more blogs, news and events on EJBCA Hardware Appliance

Five models adapted to your needs

The EJBCA Hardware Appliance is available in five different models ranging from an XS model, which is designed to operate as a dedicated root CA, to an XL, which is suited for extremely large PKI deployments.

XS S M L XL

Extra Small EJBCA Hardware Appliance

Model Extra Small is the smallest Hardware Appliance with support for up to 1,000 certificates. This model is ideal for an offline Root CA in a PKI deployment.

Small EJBCA Hardware Appliance

This is your PKI start environment - EJBCA with everything you need. The Small model supports the operation of multiple, independent PKI hierarchies with one installation. 

Medium EJBCA Hardware Appliance

Start with model Medium if you already know that you need more certificates and better certificate performance capacity. This model supports up to 15 million certificates.

Large EJBCA Hardware Appliance

Model Large has an increased certificate issuing performance and can manage even more certificates. If you have one or a couple of use cases that require a high number of certificates, and you soon expect to add additional use cases on top, then you should choose this model. 

Extra Large EJBCA Hardware Appliance

Model XL is suited for extremely large PKI deployments with the need for more than 100 million certificates. It has the same certificate issuing performance as model Large, but supports up to 160 million certificates and has upgraded storage.

See full model specification

Stand-alone models

The following stand-alone models are also available, including the Validation Authority and Registration Authority modules and the eIDAS edition. 

EJBCA Registration Authority

The EJBCA RA is an external entity to the Certificate Authority (CA). It is used for registration and enrollment of any type of certificate and adds an additional layer of security around the CA.

Read more

EJBCA Validation Authority

EJBCA Validation Authority (VA) offers real-time certificate validation with OCSP and CRLs.

Read more

eIDAS edition

The hardware appliance is also available as an eIDAS edition including a Common Criteria Protection Profile EN 419 221-5 Hardware Security Module (HSM).

Read more on Doc

Customer stories from PKI implementations around the globe

communication tower. cell, radio and television antennas on top

EJBCA Enterprise, Telecom

Powering 5G innovation through security, open standards and flexible integration

Read customer story
Attorneys talking

EJBCA Enterprise, Enterprise, Trust Service Provider

Bundesnotarkammer – Innovation and security in German notaries

Read customer story
DGN Customer Story, PrimeKey

EJBCA Enterprise, Enterprise, Trust Service Provider

Securing and enabling German healthcare

Read customer story
EJBCA Faroe eID

Document signing, EJBCA Enterprise, SignServer Enterprise, Timestamping, Trust Service Provider

The Faroe Islands – Creating a Future-Proof National e-ID

Read customer story
vault and businessman

Bank & Finance, EJBCA Enterprise, Trust Service Provider

Bank-Verlag – Launching an eIDAS-compliant trust center for the German banking industry

Read customer story
EJBCA Telecom

EJBCA Enterprise, PKI migration, Trust Service Provider

Swisscom – Becoming eIDAS compliant and migrating from RSA to EJBCA Enterprise

Read customer story

See all customer stories

More information

See the links for more information on EJBCA Hardware Appliance and related products. 

EJBCA Hardware Appliance documentation

EJBCA

EJBCA Enterprise

EJBCA documentation

EJBCA Interoperability and Certifications

More

More news, blogs, etc on EJBCA Hardware Appliance 

All PKI and digital signing solutions

 

Contact us

Fill in your contact information below and we will get in touch with you.

This website uses cookies

Cookies consist of small text files. They contain data that is stored on your device. To enable us to place certain types of cookies we need to obtain your consent. At PrimeKey AB, corp. ID no. 556628-3064, we use the following kinds of cookies. To read more about which cookies we use and storage times, click here to access our cookies policy.

Manage your cookie-settings

Necessary cookies

Necessary cookies are cookies that must be placed for basic functions to work on the website. Basic functions are, for example, cookies which are needed so that you can use menus on the website and navigate on the site.

Functional cookies

Functional cookies need to be placed on the website in order for it to perform as you would expect. For example, so that it recognizes which language you prefer, whether or not you are logged in, to keep the website secure, remember login details or to be able to sort products on the website according to your preferences.

Cookies for statistics

For us to measure your interactions with the website, we place cookies in order to keep statistics. These cookies anonymize personal data.

Cookies for ad-tracking

To enable us to offer better service and experience, we place cookies so that we can provide relevant advertising. Another aim of this processing is to enable us to promote products or services, provide customized offers or provide recommendations based on what you have purchased in the past.
Confirm choices Accept all