Cloud-based PKI
to Prove Identity

EJBCA Cloud; Powerful, flexible Certificate Authority and complete PKI, in the cloud.

Buy Now in AWS Buy Now in Azure

Public Key Infrastructure (or PKI) is largely about managing secure digital communication, to find a way to know who is who when sharing information. Otherwise, how can you be certain of the identities of obscure parties?

You also need to decide and grant different individuals access and rights within, and occasionally outside, your organization. And you need to keep track of every single level of trust amongst your co-workers and business associates.

PrimeKey’s extendable PKI covers all demands for authentication efficiently and reliably. Today and tomorrow. And now it’s also available in the cloud.

eIDAS electronic signatures - group discussing

EJBCA Cloud Edition, our cloud-based PKI solution

Strong encryption works, if you do it the right way.

Able to protect virtually any area of technology, our EJBCA software is used to meet all your needs for Public Key Infrastructure (PKI). PrimeKey’s EJBCA Cloud starts with just a few clicks, being a fully customized instance, tailored to your environment.  Choose from several instance sizes, in many available regions so you get the perfect PKI solution for your organization.

To get an introduction to EJBCA Cloud Edition, find our complimentary online training course here:
Online training for EJBCA Cloud

Security Infrastructure for any use case

Commonly referred to as a Certificate Authority (or CA), EJBCA Enterprise Cloud PKI is an open source IT-security software for Certificate Issuance and Certificate Management. By keeping track on who to trust, EJBCA Enterprise Cloud protects your data, allowing you to provide safe digital communication when needed.

Extremely flexible, EJBCA Cloud is used for most imaginable PKI use cases.

Control your own security with a cloud-based PKI

This is the one PKI software for any organization that needs to manage and operate its own serious, in-house PKI.

Deployable today in your AWS or Azure cloud environments, EJBCA Cloud gives you full control of everything you do. Bundled with support and available services, it allows you to handle and maintain your PKI implementation successfully, despite your level of expertise with PKI.

Security and Control

The support for HSMs brings the highest level of security by preventing unauthorized use of signing keys. PrimeKey EJBCA Cloud integrates with the FIPS 140-2 Level 3 validated AWS CloudHSM (Azure Key Vault coming soon). Or if you prefer, you can also combine EJBCA Cloud with a standard on-premises HSM (Hardware Security Module) via, for example, AWS Direct Connect or Azure Express Route.

EJBCA Enterprise Software

EJBCA Enterprise covers all your needs for Public Key Infrastructure (PKI) and Certificate Management.

More about EJBCA Enterprise

EJBCA Cloud Documentation

Browse EJBCA Cloud documentation

Support and Maintenance

PrimeKey developers are passionate about maintaining the high quality of EJBCA through continuous updates and upgrades. Each new release contains improvements and upgrades to the EJBCA functionality, improving the software and keeping it up to date with current regulations. Each EJBCA release will be made available in the cloud with an easy path to upgrade to the next version.  Choose annual or hourly purchase options to best meet your organization’s needs.  By choosing the annual option, you can subscribe to PrimeKey support and maintenance downloads, where you will automatically gain access to these new releases and upgrades, ensuring the highest quality of your PKI implementation.

The hourly option still gives you access to our skilled PKI professional support team.  Upgrades will be done through an easy migration to an updated instance.  You can pick the Standard 8X5 Support, or 24×7 Premium Support instance by selecting the appropriate instance from the Marketplace, both of which contain an annual option.

Through a PrimeKey Support subscription, both your management and your customers can sleep sound, assured that audit and policy requirements are fulfilled. And in case of issues with your PKI, or simply new demands on it, you have timely access to, and support from, our skilled PKI professionals.

More about PrimeKey Support

Talking about smart meter security concerns
eIDAS discussions

AWS GovCloud (US)


EJBCA Enterprise Cloud Edition is certified by ANSSI at EAL4+ as well as FIPS 201-2, ISO 27001, ISO 9001 and ISO 14001.  Combining that with AWS GovCloud, that is designed to allow U.S. government agencies and its customers to leverage the cloud for Controlled Unclassified Information (CUI) data, makes for a turnkey PKI system for many government agencies looking for cloud solutions.

AWS GovCloud (US) is an isolated AWS region, subject to FedRAMP High and Moderate baselines, that allows customers to host sensitive Controlled Unclassified Information (CUI) and all types of regulated workloads.

The region is operated by employees who are U.S. citizens on U.S. soil. The region is only accessible to vetted U.S. entities and root account holders, who must confirm they are U.S. Persons to gain access to this region.

AWS GovCloud (US) gives vetted government customers and their partners the flexibility to architect secure cloud solutions that comply with: the FedRAMP High baseline, the DOJ’s Criminal Justice Information Systems (CJIS) Security Policy, U.S. International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) for Impact Levels 2, 4 and 5, FIPS 140-2, IRS-1075, and other compliance regimes.

Webinar: Azure Key Vault Integration

In this webinar on PrimeKey EJBCA in Azure, you will learn how to protect your CA keys in the Azure Cloud. Alex Gregory, Director of Cloud Solutions at PrimeKey, fills you in on how to configure the Azure Key Vault for use with EJBCA Enterprise and more.

Sign up to see the webinar

Webinar: Why PKI in the Cloud?

In this highly-rated webinar, Alex Gregory, Director of Cloud Solutions at PrimeKey, lets you know all about PKI in the  Cloud. See how EJBCA Enterprise is deployed in the cloud and integrated into AWS CloudHSM to create Certificate Authorities and issue certificates. Fill in your email address below to see the webinar.

    I accept that PrimeKey stores my information, and I accept cookies for analysis and business identification. Read more about cookies and privacy policy here.

Contact us

Fill in your contact information below and we will get in touch with you.

    I accept that PrimeKey stores my information, and I accept cookies for analysis and business identification. Read more about cookies and privacy policy here.

Selected blog posts on EJBCA Enterprise Cloud