- This line was added.
- This line was removed.
- Formatting was changed.
The following prerequisites apply:
Configure ACME in Protocol Gateway
For demo use cases, when there is no real DNS set up, follow these steps to point out the CM domain:
Create a certificate procedure for TLS server certificates, see Create certificate procedure in Certificate Manager:
Create token procedures, see Create token procedure in Certificate Manager:
To set the properties for the ACME protocols:
Set up Certbot ACME client
This example shows how to use Certbot as the ACME client. For more information and examples with Kubernetes and Cert-manager, see Examples - Use ACME clients with Certificate Manager.
An ACME client must be installed. The certbot client is recommended:
To set up TLS communication:
In Registration Authority (RA) in Certificate Manager, preregister an ACME device:
Test the ACME setup via Certbot
To test the ACME setup, request a certificate via Certbot:
For a certbot example without preregistration, see Examples - Use ACME clients with Certificate Manager.
To test revocation using Certbot:
For more information, see Requirements to revoke certificates issued by ACME account.