Installing the CA Connector Client

The Keyfactor CA ConnectorClosed The Keyfactor CA Connector is installed in the customer environment to provide a connection between a CA and Keyfactor Command when a direct connection is not possible. It is supported on both Windows and Linux and has versions for Microsoft (Windows only) or EJBCA CAs. solution by Keyfactor allows organizations to make connections to Keyfactor Command from certificate authorities that are remote from their instance of Keyfactor Command to issue and manage certificates across enterprise infrastructures. Typically this is used to leverage existing on-premises CAs with an Azure-hosted, Keyfactor-managed instance of Keyfactor Command. Out-of-the-box, Microsoft and EJBCA CAs are supported.

The CAClosed A certificate authority (CA) is an entity that issues digital certificates. Within Keyfactor Command, a CA may be a Microsoft CA or a Keyfactor gateway to a cloud-based or remote CA. Connector Client of the type appropriate to the CA is installed in the CA-side environment (typically on-premises) to provide a connection to an local CA. It runs on either Windows or Linux and can be installed either on the CA or on a separate machine on the same network. Connections to Microsoft CAs are only supported from CA Connector Clients running on Windows.

Note:  A single CA Connector Client can connect to more than one on-premises CA as long as all CAs are of the same type (e.g. Microsoft).
Note:  A given instance of the CA Connector Client can support only one type of CA. If you have more than one type of CA (e.g. both Microsoft and EJBCA), you will need more than one instance of the CA Connector Client.

For a comprehensive description of the components that make up Keyfactor Command, please see the Installation and Reference Guides (see Installing Keyfactor Command Servers and Keyfactor Command Reference Guide).