Skip to main content
Skip table of contents

EJBCA Software Appliance 2.6.2 Release Notes

SEPTEMBER 2024

We are pleased to announce the release of EJBCA Software Appliance 2.6.2.

This release brings support for Application Trust Store modification for Secure LDAP and Database Connections. The release also brings enhancements to the Luna HA implementation.

Highlights

Custom JVM Truststore Support

The latest release introduces the ability to override the default JVM truststore in the EJBCA application with a custom Java Key Store (JKS). Users can now upload individual certificates or complete certificate bundles directly into the application truststore, allowing for more flexible trust management. Any updates to the JKS will automatically restart the application container to apply the changes.

Additionally, users can reset the truststore to its default state, clearing all custom certificates. This new feature enables secure usage of EJBCA functionalities, such as:

  • TLS connections to external DBMS

  • LDAP Publisher and LDAP Search Publisher

This enhancement provides greater flexibility and security when managing external connections that require modifications to the JVM truststore.

Improvements and Corrections

The following lists other improvements and corrections included in the release.

  • Shutdown and Reboot the appliance via Webconf

  • Improved Recovery Mechanism for HA Groups: The system now handles the loss and reconnection of HA group members more efficiently.

  • Enhanced Handling of Lost Connections to Luna HSMs: When the connection between the SWAPP and all Luna HSMs is lost, the system now properly shuts down EJBCA to prevent operational errors due to the absence of HSMs. A background routine checks in regular intervals to ensure at least one HSM slot is available. The p11proxy service will only start when lunacm reports at least one available slot. This improvement enhances system stability and ensures EJBCA operates correctly even when HSM connections are disrupted.

Upgrade Information

For important information on the required steps to update the Software Appliance, see Update Software Appliance.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close