> ## Documentation Index
> Fetch the complete documentation index at: https://docs.futurex.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Configure EJBCA

> Steps to configure EJBCA and test the web service by importing an admin-generated certificate.

To test the web service, perform the following steps to first import a certificate (generated by the EJBCA Administrator) into the web browser:

<Note>
  The following example uses the Chrome browser.
</Note>

<Steps>
  <Step>
    Open the menu and select **\[ Settings ]**.
  </Step>

  <Step>
    Go to **Privacy and security** > **Security**.
  </Step>

  <Step>
    Open the certificate settings to add the certificate and enable communication.
  </Step>

  <Step>
    Select **\[ Import ]** to add a new certificate.
  </Step>

  <Step>
    Validate the certificate generation to log in to the web service.
  </Step>

  <Step>
    Log in to the EJBCA web service at the following link:

    `https://<ejbca-ip-or-hostname>/ejbca/adminweb/`
  </Step>
</Steps>

## Generate certificates

From the left-side menu on the Administration site, you can generate certificates and Crypto Tokens to work with the CryptoHub.

<Steps>
  <Step>
    Select the**Crypto Tokens** option in the left-side menu.
  </Step>

  <Step>
    Select **\[ Create New ]**.
  </Step>

  <Step>
    Fill in the information as follows to create a new Crypto Token that uses the **FXPKCS11** library, then select **\[ Save ]**.

    <Note>
      The Authentication Code to set here is the identity password configured inside the `<CRYPTO-OPR-PASS>` tag in the `fxpkcs11.cfg` file.
    </Note>
  </Step>

  <Step>
    Select the manager from the next menu to generate new keys.
  </Step>

  <Step>
    To generate a new key, you must specify a name and select the key algorithm. Then, select **\[ Generate new key pair ]**.
  </Step>

  <Step>
    Select **\[ Test ]** to verify that key pair generation is working properly.
  </Step>
</Steps>
