How-To: Create Your First Cloud Certificate Authority (CA) with EZCA

Create your first HSM backed, compliant, Azure based certificate authority in minutes and get started with passwordless authentication with EZCA.

How To Create Your First Cloud CA

In this section we will cover how to create your first cloud certificate authority. We will cover the different types of CAs, how to create your first root CA, how to create your first subordinate CA, and for people that are looking to modernize or manage their certificates in Windows AD Certificate Services how to connect your first ADCS CA to EZCA.

  1. How To Design Your PKI Hierarchy
  2. Difference Between Public and Private CAs
  3. Difference Between Root and Issuing CAs
  4. Create Your First Root CA
  5. Create Your First SSL CA
  6. Create Your First SCEP CA
  7. Connect to GlobalSign MSSL
  8. Connect Your First ADCS CA
  9. Validity Period & Revocation Best Practices
  10. How To Choose a Cryptographic Key Type
  11. How to chain external CA To EZCA Root
Learn About How to Get Started With Certificate Authorities

In cryptography a certificate authority or certification authority (CA) is an entity that issues digital certificates. A digital certificate certifies the ownership of a public key by the named subject of the certificate.

Learn About the Difference Between Private and Public CAs

The key difference between a publicly trusted and private certificate authority is that all computers and browsers trust publicly trusted Certificate Authorities while private CAs will have to be explicitly added by the IT administrator.

Learn What the Difference are Between Root CA vs Issuing CA

The two tier hierarchy has two CA types Root CA and Issuing/Subordinate CA. This article explains what is the difference between a root CA and an Issuing CA.

How-To: Create a Root CA in Azure

A Root CA is needed to be the root of trust for your PKI Deployment. In this page we will guide you on how you can create your own Root CA either using EZCA or creating your own offline CA.

How-To: Create a Subordinate SSL CA in Azure

In this page we will guide you on how you can create your own Issuing SSL CA and chain it up to a Root CA (EZCA Root or Offline Root).

How-To: Create SCEP PKI in Azure

This page will walk you through how to create an Azure based SCEP CA to issue SSL Certificates for your Intune managed devices.

How-To: Automate GlobalSign MSSL Certificate Lifecycle for Free

In this page we will show you how to connect to GlobalSign to issue and automate public SSL certificate lifecycle using the EZCA and all the integrations it offers.

Learn the Differences in Cryptographic Algorithms for PKI

When deciding the lifetime of your certificates, the selected key size and cryptographic algorithm have an effect on how long the certificate will be safe.

Learn About PKI Validity Period & Revocation Best Practices

When designing the validity period of a Certificate Authority (CA), many factors have to be taken into consideration Lifetime of the parent CA, desired lifetime for issued certificates, key algorithm used, and security of the private key.

How-To: Create a Subordinate ADCS CA in EZCA

In this page we will guide you on how you can create your own Issuing SSL CA and chain it up to a Root CA (EZCA Root or Offline Root).