Skip to main content
Skip table of contents

EJBCA 9.3.6 Release Notes

NOVEMBER 2025

This maintenance release includes error corrections related to functionalities when running SCEP mode with separate encryption and signing keys. Using this option for SCEP mode is required for customers using an HSM running in FIPS 140-3 mode.

EJBCA 9.3.6 is available for software stack and Container Set-based deployments. For available deployment types and associated versions, refer to Supported Versions.

Upgrade Information

Review the EJBCA 9.3 Upgrade Notes for upgrade information. For upgrade instructions and information on upgrade paths, see Upgrading EJBCA.

Change Log: Resolved Issues

The following lists implemented features and fixed issues in EJBCA 9.3.6.

Issues Resolved in 9.3.6

Released November 2025

Bug Fixes

ECA-14267 CA mode with separate keys fails when Allow Client Certificate Renewal enabled

ECA-14292 ConfigDump returns error for SCEPCONFIG

ECA-14294 Use separate keys for SCEP decryption doesn't render keys on p11ng tokens

ECA-14297 Wrong error message when no CA is selected in SCEP alias

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close