EJBCA Registration Authority
As the EJBCA CA’s face to the world, the EJBCA RA not only provides an attractive user experience and endpoints for enrollment protocols and EJBCA’s APIs, but also adds another layer of security both against external threats and separation between tenants.
A sophisticated toolbox for certificate enrollment
Being adaptable and dynamic are basic elements of the EJBCA RA design, with deployment options that can be tailored to any use case and delegation of authority to where it’s needed.
The EJBCA RA is deployed and used worldwide, and like the rest of the EJBCA ecosystem is best-in-breed in terms of volumes and throughput. Its architecture is based on being deployable in multiple mediums and making the best use of geographic locality.
All the communication between EJBCA nodes is secured through mutually authenticated TLS. Additionally, EJBCA’s sophisticated system of access rules provides both complete segregation between tenants with dedicated RA instances but also damage mitigation in case of an external attack.