It seems that there's something broken with NetID integration in EJBCA. The browser enrollment page seems to detect the NetID plug-in, but then there is no way to select key strength (the drop-down menu is empty).
Additionally, when NetID is detected, the user is unable to pick any other keystore for generating the private key/storing certificate.
Perhaps the integration should be removed if there's no one working on it/using it.
Integration with specific token management is better done using plug-ins specific for these systems.