Skip to main content

Requisiti di sistema e di rete

Verifica che il tuo sistema e la tua rete rispondano ai requisiti minimi, prima di insllare l'agente di automazione ACME DigiCert.

Importante

To avoid conflicts, do not install a DigiCert sensor and agent on the same system. Use a dedicated host for the sensor.

Requisiti sistema

Il software agente ACME viene eseguito sui sistemi Linux e Windows, con i seguenti requisiti:

Server type

Supported OS versions

Minimum specifications

Windows

  • Windows 10

  • Windows Server 2016

  • Windows Server 2019

  • Windows Server 2022

  • Windows Server 2025 Standard

  • Versione 64 bit

  • 2 GB di RAM (4 GB di RAM consigliati)

  • 2 GB di spazio libero su disco (minimo)

  • Microsoft .NET Framework 4.x installed

  • Administrator privileges

Linux

  • Red Hat Enterprise Linux 7.x

  • Red Hat Enterprise Linux 8.x

  • Red Hat Enterprise Linux 9.x

  • Ubuntu 20.04 or later

  • Versione 64 bit e US locale sono obbligatori

  • 2 GB di RAM (4 GB di RAM consigliati)

  • 2 GB di spazio libero su disco (minimo)

  • CLI utilities awk, grep, sed, lsof, and dos2unix installed

  • Root privileges

Requisiti di rete

  • The DigiCert agent on each host must be able to resolve the fully qualified domain names (FQDNs) for the local web server, either via DNS or a local "hosts" file.

  • Collegare l’uscita a HTTPS (porta 443).

    Region

    Platform URLs1

    TCP port

    Protocol

    Americas (U.S.A.)

    one.digicert.com, clientauth.one.digicert.com

    443

    HTTPS

    APJ (Japan)

    one.digicert.co.jp, clientauth.one.digicert.co.jp

    443

    HTTPS

    EMEA (Netherlands)

    one.nl.digicert.com, clientauth.one.nl.digicert.com

    443

    HTTPS

    EMEA (Switzerland)

    one.ch.digicert.com, clientauth.one.ch.digicert.com

    443

    HTTPS

    1. For users with an on-premises DigiCert ONE deployment, the agent needs to access port 443 (HTTPS) on the local DigiCert ONE instance and ClientAuth host (for example, my-org.one.digicert.com and my-org.clientauth.digicert.com).

  • In addition, the agent requires outbound access to the below host for Trust Lifecycle Manager discovery and automation services:

    Region

    URL

    TCP port

    Protocol

    All regions

    automation-service.digicert.com1

    443

    HTTPS

    1. This service is delivered through a content distribution network (CDN) and the IP addresses may vary by region. If your organization uses IP-based allowlists, look up the automation-service.digicert.com host in your local region to determine which IP addresses to allow.

Avviso

If using a local DigiCert​​®​​ sensor as proxy, the agent must also be able to connect outbound to the proxy listening port on the sensor. To learn more, see Use a sensor as a proxy server.

Loopback ports

To support automated certificate delivery, the agent binds to the following loopback port(s) on the local host. To adjust the loopback port numbers for an installed agent, edit the applicable configuration file/parameter in the agent conf sub-directory and restart the agent service.

Loopback port

Description

Agent conf file

Configuration parameter

58080

Local communications port for the plugin manager process used to manage certificate delivery events for Trust Lifecycle Manager.

config.toml

ControlPort

61613

Local communications port for Simple (or Streaming) Text Oriented Messaging Protocol (STOMP). Used for message queuing between the main agent process and the plugin manager process.

config.toml

StompPort

What's next

Data di pubblicazione: