Certificate Authority
EJBCA
Before you start
6 min
verify your environment meets these requirements supported hardware {{vectera}} , 7 2 x x or later supported operating systems linux required access an account on the {{vectera}} with administrator permissions to create application partitions, identities, tls pki, and update system settings local administrator/root access on all hosts where you install or configure components network and firewall allow outbound tcp port 9100 (default excrypt port) from the ejbca server to the {{vectera}} , specified by fqdn (for example, hsm example com ) or cidr (for example, 10 0 0 0/24 ) tls inspection or ssl proxies can break mutual tls handshakes exempt the {{vectera}} fqdn(s) from inspection configure the vectera plus with a fqdn so the exemption applies other openssl java 17 or 21 ejbca (this document does not include the ejbca installation process; it should already be installed on the server )