From: Muhammed W. K. <mw...@ma...> - 2012-06-08 14:04:12
|
Hi Guys, I have been requested to assess the possibility of using another CA (not EJBCA) to issue certs for devices which would communicate with the RA (yet to develop) using SCEP. Itts not because EJBCA is no good, its because the CA I am looking to integrate also provide other services like digital signature creation, verification etc hence it makes one stop for clients to generate end user certificates, signing, device certificates etc. I know EJBCA has implemented this but can I plug the properietary CA and using the RA API to poll the EJBCA RA and get the certificates issued. I have read this: http://www.ejbca.org/externalra.html but its not crystal clear whether this is possible. If it is what clear interfaces I have to implement? If not then this means that the properietary CA needs to implement its own RA which supports SCEP which I want to avoid. Regards, wahaj |