-
Notifications
You must be signed in to change notification settings - Fork 137
ACME Protocol
Endi S. Dewata edited this page Jul 19, 2021
·
7 revisions
-
Client generates agent keypair and sends authentication request to server
-
Server generates authentication challenges and nonce and sends the response to client
-
Client generates authentication response and signs nonce and notifies server
-
Server verifies signed nonce
-
Server verifies authentication response
-
with DNS record:
_acme-challenge.<domain>. -
with well-known URI:
http://<domain>/.well-known/acme-challenge/ <filename>
-
-
Client generates a CSR and sends a signed request to server
-
Server validates CSR signature and agent signature
-
Server generates a certificate and send it to client
-
Client sends a signed request to server
-
Server validates the request
-
Server generates CRL
|
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |