-
##### SUMMARY
Unable to create ACME account using 'acme_account' module. Our company uses Keyfactor ACME solution, which requires External Account binding.
I am able to create account us…
-
From https://letsencrypt.org/2023/07/10/cross-sign-expiration.html:
> If you are an ACME client author, please make sure that your client correctly downloads and installs the certificate chain prov…
-
I noticed that LetsEncrypt, ZeroSSL and BuyPass have official suppor in acme2certifier.
It would be nice if it supported Digicert aswell, since they have ACME support since a couple of years.
The …
-
Hello,
we are currently testing our implementation of ACME server with various ACME clients (so far I've successfully tested WIN-ACME client)
and I am facing issues with Posh-ACME.
I couldn't c…
-
Testing with [Posh-ACME](https://github.com/rmbolger/Posh-ACME) indicated a bug in a2c nonce-handling
[RFC 8555 section 6.5](https://datatracker.ietf.org/doc/html/rfc8555#section-6.5) states.
``…
-
[RFC8555's Account Key Rollover ](https://tools.ietf.org/html/rfc8555#section-7.3.5) is not yet supported in the acme package. This is a desirable RFC8555 feature that is supported by Let's Encrypt, a…
-
`poll_and_request_issuance` cleary uses `retry_after` in order to poll the server and wait. On `poll_and_finalize` this does not seem to happen.
Since from what I see on https://tools.ietf.org/html…
-
##### SUMMARY
Private CAs like Sectigo, which use external account binding, don't require challenges. It should be possible to create certificates without challenges against these endpoints.
…
-
After landing the `orderUrl` fix on production and clearing out the old certificates in the db, I was able to make a certificate. The new certificate says it's only valid for 7 days:
However, …
-
Hey all:
Currently, challenge/resolver/solver_manager.go imposes a minimum 5 second sleep between successful http-01 solutions, even if the previous solution was successful. As the comment in the …