Installing the CA Connector Client

The Keyfactor CA ConnectorClosed solution by Keyfactor allows organizations to make connections to Keyfactor Command from certificate authorities that are remote from their instance of Keyfactor Command to issue and manage certificates across enterprise infrastructures. Typically this is used to leverage existing on-premises CAs with an Azure-hosted, Keyfactor-managed instance of Keyfactor Command. Out-of-the-box, Microsoft and EJBCA CAs are supported.

The CAClosed Connector Client of the type appropriate to the CA is installed in the CA-side environment (typically on-premises) to provide a connection to an local CA. It runs on either Windows or Linux and can be installed either on the CA or on a separate machine on the same network. Connections to Microsoft CAs are only supported from CA Connector Clients running on Windows.

Note:  A single CA Connector Client can connect to more than one on-premises CA as long as all CAs are of the same type (e.g. Microsoft).
Note:  A given instance of the CA Connector Client can support only one type of CA. If you have more than one type of CA (e.g. both Microsoft and EJBCA), you will need more than one instance of the CA Connector Client.

For a comprehensive description of the components that make up Keyfactor Command, please see the Installation and Reference Guides (see Installing Keyfactor Command Servers and Keyfactor Command Reference Guide).