Under profiles.<profile>, add a requestedProperties section with the properties users must provide during EJBCA enrollment.
username
The unique name of the end entity in EJBCA.
Mandatory: Yes.
When enable-ca-profile-sync is set to true, this setting is automatically populated; however, manually configured values take precedence.
password
The password for authenticating enrollment requests in EJBCA
Mandatory: Yes.
When enable-ca-profile-sync is set to true, this setting is automatically populated; however, manually configured values take precedence.
key_algs
The key algorithm for server-side key generation.
The selected value must be included in the Available Key Algorithms list described in Creating an EJBCA certificate profile.
Mandatory: When disabling key_client_generated under properties.
When enable-ca-profile-sync is set to true, this setting is automatically populated; however, manually configured values take precedence.