High Availability Deployment

The high-availability deployment architecture is designed to ensure that the emCA application and its components are always accessible to clients, even in case of one or more emCA server failures. The emCA servers will be clustered, and the load balancer will distribute traffic between them. In case of an emCA server failure, the load balancer will automatically redirect the traffic to other active emCA servers. In High availability, there will be two HSMs deployed in High trusted Zone.

Components of the High Availability Deployment Architecture:

  • Load Balancer: The load balancer distributes incoming traffic across the emCA servers, preventing any single server from becoming overloaded. It also monitors server health and automatically redirects traffic away from unavailable servers.

  • emCA CA Servers: The emCA CA servers generate and issue certificates, manage the CA's certificate pool, and handle certificate lifecycle events. Multiple emCA CA servers provide redundancy and fault tolerance, ensuring uninterrupted certificate issuance and management even with server failures.

  • Timestamping Authority Server: Generates timestamps for digital signatures, ensuring the long-term validity and integrity of certificates.

  • OCSP App Server: Provides an online certificate status protocol (OCSP) responder service to verify the revocation status of certificates.

  • emCA DB Servers: The emCA DB servers store and manage the emCA database, containing critical information about certificates, users, and devices. Multiple emCA DB servers maintain data redundancy and prevent data loss in case of server failures.

  • HSMs (Hardware Security Modules): HSMs are tamper-proof devices that safeguard sensitive cryptographic material, such as the CA's private keys. Multiple HSMs provide redundancy and protect sensitive data even with HSM failures.

This high availability deployment architecture ensures that the emCA system remains continuously available and responsive, even in the face of server failures or other disruptions.

PreviousSingle InstanceNextHybrid Deployment

Last updated