PKI ACME Responder with PKI Issuer

From Dogtag
Jump to: navigation, search

Installing ACME Profile

To install ACME profile on PKI CA:

$ pki -u caadmin -w Secret.123 ca-profile-add /usr/share/pki/ca/profiles/acmeServerCert.cfg --raw

To enable the profile:

$ pki -u caadmin -w Secret.123 ca-profile-enable acmeServerCert

Configuring ACME Responder

To configure the ACME responder to use PKI Issuer:

$ cp /usr/share/pki/acme/conf/issuer/pki/issuer.conf /etc/pki/pki-tomcat/acme/issuer.conf

The configuration will be stored in /etc/pki/pki-tomcat/acme/issuer.conf:

class=org.dogtagpki.acme.issuer.PKIIssuer
url=https://localhost:8443
profile=acmeServerCert
username=caadmin
password=Secret.123

See Also