Per object or per instance
download url: http://www.skypro.ch/downloads/SKyPRO_EJBCA_v1_1.zip
home page url: www.skypro.ch
Based on the Open Source Certificate Authority (CA) EJBCA (www.ejbca.org) the integration module automatically creates certificates for any objects (such as users, servers, workstations, laptops, printers, telephones, etc.) in the central directory. EJBCA is a CA based on JEE technology and can be used as a complete PKI infrastructure for large companies.
The integration module uses the SOAP interface offered by the EJBCA for the data transmission. For all objects synchronized with EJBCA, it will create an entity and generate the requested certificate. Preconfigurable key- and entity-profiles allow to define the intended use of the certificate at creation time.
Generated certificates will be collected via the SOAP interface and stored in the central directory. Both public key and private key will be saved. The resulting certificates can be exported automatically to a PFX, CER or DER file. In addition, the PFX file can be protected by a password. The directory where to store the certificates is definable.
A preconfigurable recertification process guarantees the in time renewal of expiring certificates. This way new certificates will be available before reaching the expiration date.
For more information visit our web site at www.skypro.ch
Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment. It just worked for at least one person, and perhaps it will be useful for you too. Be sure to test in a non-production environment.