Configure EJBCA
To test the web service we need to first import a certificate (generated by the EJBCA Administrator) into the web browser. The procedure to add the certificate is explained in the following steps:
The example below uses Chrome.
Open the menu and select [ Settings ].
Go to Privacy and security > Security.
Open the certificate settings to add the certificate and enable the communication.
Click the [ Import ] button to add a new certificate.
Validate the certificate generation to log in to the web service.
Log in to the EJBCA web service at the following link:
From the lefthand menu on the Administration site, certificates and Crypto Tokens can be generated to work with the .
Select the Crypto Tokens option in the lefthand menu.
Click the [ Create New ] option.
Fill in the information as follows to create a new Crypto Token that uses the FXPKCS11 library, then click [ Save ].
The Authentication Code to set here is the identity password configured inside the <CRYPTO-OPR-PASS> tag in the fxpkcs11.cfg file.
Select the manager from the next menu to generate new keys.
To generate a new key you need to specify a name and select the key algorithm. Then, click the [ Generate new key pair ] button.
Click the [ Test ] button to verify that key pair generation is working properly.