acme-client's Introduction
ACME-CLIENT(1) BSD General Commands Manual ACME-CLIENT(1) NAME acme-client — ACME client SYNOPSIS acme-client [-Fnrv] [-f configfile] domain DESCRIPTION acme-client is an Automatic Certificate Management Environment (ACME) client: it looks in its configuration for a domain section corresponding to the domain given as command line argument and uses that configuration to retrieve an X.509 certificate which can be used to provide domain name validation (i.e. prove that the domain is who it says it is). The cer‐ tificates are typically used to provide HTTPS for web servers, but can be used in any situation where domain name validation is required (such as mail servers). If the certificate already exists and is less than 30 days from expiry, acme-client attempts to renew the certificate. In order to prove that the client has access to the domain, a challenge is issued by the signing authority. acme-client implements the “http-01” challenge type, where a file is created within a directory accessible by a locally run web server. The default challenge directory /var/www/acme can be served by httpd(8) with this location block, which will properly map response challenges: location "/.well-known/acme-challenge/*" { root "/acme" request strip 2 } The options are as follows: -F Force certificate renewal, even if it's too soon. -f configfile Specify an alternative configuration file. -n No operation: check and print configuration. -r Revoke the X.509 certificate. -v Verbose operation. Specify twice to also trace communication and data transfers. domain The domain name. FILES /etc/acme Private keys for acme-client. /etc/acme-client.conf Default configuration. /var/www/acme Default challengedir. EXIT STATUS acme-client returns 0 if certificates were changed (revoked or updated), 1 on failure, or 2 if the certificates didn't change (up to date). EXAMPLES Example configuration files for acme-client and httpd(8) are provided in /etc/examples/acme-client.conf and /etc/examples/httpd.conf. To generate a certificate for example.com and use it to provide HTTPS, create acme-client.conf and httpd.conf and run: # acme-client -v example.com && rcctl reload httpd A cron(8) job can renew the certificate as necessary. On renewal, httpd(8) is reloaded: 0 * * * * sleep $((RANDOM \% 2048)) && \ acme-client example.com && rcctl reload httpd SEE ALSO openssl(1), acme-client.conf(5), httpd.conf(5) STANDARDS R. Barnes, J. Hoffman-Andrews, D. McCarney, and J. Kasten, Automatic Certificate Management Environment (ACME), RFC 8555, March 2019. HISTORY The acme-client utility first appeared in OpenBSD 6.1. AUTHORS The acme-client utility was written by Kristaps Dzonsons <[email protected]>. BSD June 15, 2019 BSD COMPILING sudo apt-get install build-essential sudo apt-get install bison sudo apt-get install autoconf sudo apt-get install libssl-dev sudo apt-get install libbsd0 libbsd-dev git clone https://github.com/baytuch/acme-client.git cd acme-client/ autoreconf --install ./configure --prefix=/usr make CREATE PKG: sudo apt-get install build-essential sudo apt-get install fakeroot dh-make sudo apt-get install bison sudo apt-get install autoconf sudo apt-get install libssl-dev sudo apt-get install libbsd0 libbsd-dev git clone https://github.com/baytuch/acme-client.git cd acme-client/ dpkg-buildpackage -rfakeroot -b --no-sign
acme-client's People
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.