EJBCA 8.3.2 Release Notes

JUNE 2024

The EJBCA team is pleased to announce the release of EJBCA 8.3.2. This maintenance release includes error corrections for Microsoft Auto-enrollment through a peer connected RA, and for using RSASSA-PSS on Windows deployments. This release also brings additional improvements and vulnerability upgrades.

For available deployment options and associated versions, refer to Supported Versions.

Upgrade Information

Review the EJBCA 8.3 Upgrade Notes for important information about this release.

For upgrade instructions and information on upgrade paths, see Upgrading EJBCA.

Change Log: Resolved Issues

The following lists implemented features and fixed issues in EJBCA 8.3.2.

Issues Resolved in 8.3.2

Released June 2024

Improvements

ECA-12472 - Improve error message in RA Web, if a user accidentally uploads a certificate instead of a CSR

ECA-12418 - Use the CA certificate uploaded in EJBCA for Keyfactor Enrollment CA during EST getcacert

ECA-12365 - Allow multiple EST templates to enroll using a Keyfactor Enroll CA

ECA-12493 - Add SDN support for Mark Certificates

Bug Fixes

ECA-12482 - Upgrade commons-configuration

ECA-12481 - Upgrade protobuf-java to 3.25.3

ECA-12478 - Get certificate profiles over peers in MSAE CESService

ECA-12466 - Certificate enrollment with the RA web inserts the e-mail into the RFC822name if checkbox is disabled

ECA-12461 - Cannot create hybrid CA certificate with non-default CA certificate profiles

ECA-12459 - CA health check field can't be specified when importing an SSH CA using ConfigDump

ECA-12435 - SSH Enrollments IPv6 Principal Values Segmenting

ECA-12359 - Fix RSA-PSS on Windows in P11NG and update P11NG

ECA-12311 - CRL Downloader Service Failing to Import External CA CRLs

ECA-12075 - Prevent ACME alias overrides when creating a new alias using an existing name