OVHcloud is the largest European cloud hosting provider, delivering hosted private cloud, public cloud, and dedicated server solutions to over 1.5 million developers. As of 2021, OVH had 30 data centers in 19 countries hosting 300,000 servers.

OVHcloud’s network team is responsible for end-to-end security across its global cloud infrastructure, from private and public cloud platforms to bare-metal servers, ensuring trusted services for enterprises and public-sector customers worldwide.

After evaluating the market, OVHcloud chose EJBCA Enterprise. The decision was driven by several factors: its open-source roots and large community, its reputation as a widely deployed and trusted PKI solution, support for sovereignty requirements, and the enterprise support and advanced features available in the Keyfactor Enterprise edition.

EJBCA is mission-critical at OVHcloud. Certificates secure access for employees and authenticate machines across the company’s global infrastructure, ensuring that only trusted identities interact with critical systems. They also protect internal services and applications by enabling encrypted communication and establishing trusted identities across private cloud environments.

Just as importantly, OVHcloud leverages EJBCA to meet strict regulatory requirements: by operating its own end-to-end certification authority on certified infrastructure, the company demonstrates compliance with standards such as PCI DSS and SecNumCloud during audits.

Since deploying EJBCA Enterprise, OVHcloud has gained full visibility and control over tens of thousands of certificates used across its infrastructure. The platform allows teams to address internal use cases that were previously costly or difficult to solve with external providers.

The shift to Keyfactor’s enterprise edition has also improved automation, enabling OVHcloud to quickly generate, revoke, and rotate certificates, while supporting shortened lifespans mandated by new regulations.

Operational efficiency has been a key gain. Instead of manual or outsourced certificate management, OVHcloud now has an internal system aligned with its cloud DNA and sovereignty principles.

Sovereignty is a cornerstone of OVHcloud’s business. OVHcloud ensures that certificates, keys, and cryptographic operations remain entirely under its control by managing its own PKI with EJBCA.

Looking ahead, the company also sees EJBCA as a foundation for long-term cryptographic agility.

By adopting Keyfactor EJBCA Enterprise, OVHcloud has moved from fragmented, ad-hoc certificate management to centralized, automated, and sovereign PKI platform. The solution secures employees, machines, and services internally, supports compliance with strict industry standards, and provides a scalable foundation for future use cases.

As OVHcloud continues to expand globally, EJBCA ensures that its infrastructure remains secure, compliant, and prepared for the next wave of cryptographic change.