Support · Get Started · License · Related Integrations
The EJBCA PKI Secrets Engine for HashiCorp Vault enables DevOps teams to request and retrieve certificates from EJBCA using HashiCorp Vault, while security teams retain control over backend PKI operations.
The secrets engine is built on top of the EJBCA REST API and uses the EJBCA Go Client SDK for programmatic access. The EJBCA PKI Secrets Engine is a Vault plugin that replicates the built-in Vault PKI secrets engine, but processes requests through EJBCA instead of through Vault. The plugin was designed to be swapped for the built-in Vault PKI secrets engine with minimal changes to existing Vault configurations.
In the Keyfactor Community, we welcome contributions. Keyfactor Community software is open-source and community-supported, meaning that no SLA is applicable. Keyfactor will address issues as resources become available.
- To report a problem or suggest a new feature, go to Issues.
- If you want to contribute bug fixes or proposed enhancements, see the Contributing Guidelines and create a Pull request.
Commercial support is available for EJBCA Enterprise customers, who may request escalation by opening up a support ticket through their Keyfactor representative.
- EJBCA >= v7.7
- HashiCorp Vault >= v1.11.0
To get started with EJBCA PKI Secrets Engine for HashiCorp Vault, see Getting Started.
For license information, see LICENSE.
See all Keyfactor EJBCA GitHub projects.