Menu Close

11.5. Deploying ACME Responder

  1. Once you have configured the ACME responder, deploy it using the following command:
    $ pki-server acme-deploy
    This creates a deployment descriptor at /etc/pki/pki-tomcat/Catalina/localhost/acme.xml.
    The PKI server starts the ACME responder automatically after a few seconds, you do not need to restart the server.
  2. To verify that the ACME responder is running, use the following command:
    $ curl -s -k https://$HOSTNAME:8443/acme/directory | python -m json.tool
    {
    "meta": {
    "caaIdentities": [
    "example.com"
    ],
    "externalAccountRequired": false,
    "termsOfService": "https://example.com/acme/tos.pdf",
    "website": "https://www.example.com"
    },
    "newAccount": "https://<hostname>:8443/acme/new-account",
    "newNonce": "https://<hostname>:8443/acme/new-nonce",
    "newOrder": "https://<hostname>:8443/acme/new-order",
    "revokeCert": "https://<hostname>:8443/acme/revoke-cert"
    }
For more information, see the pki-server-acme manpage.