11.5. Deploying ACME Responder
- Once you have configured the ACME responder, deploy it using the following command:
$ pki-server acme-deploy
This creates a deployment descriptor at/etc/pki/pki-tomcat/Catalina/localhost/acme.xml
.The PKI server starts the ACME responder automatically after a few seconds, you do not need to restart the server. - To verify that the ACME responder is running, use the following command:
$ curl -s -k https://$HOSTNAME:8443/acme/directory | python -m json.tool { "meta": { "caaIdentities": [ "example.com" ], "externalAccountRequired": false, "termsOfService": "https://example.com/acme/tos.pdf", "website": "https://www.example.com" }, "newAccount": "https://<hostname>:8443/acme/new-account", "newNonce": "https://<hostname>:8443/acme/new-nonce", "newOrder": "https://<hostname>:8443/acme/new-order", "revokeCert": "https://<hostname>:8443/acme/revoke-cert" }
For more information, see the
pki-server-acme
manpage.