Skip to main content

시스템 및 네트워크 요구 사항

DigiCert ACME 자동화 에이전트를 설치하기 전에 시스템과 네트워크가 최소 요구 사항을 충족하는지 확인하십시오.

에이전트는 자동화된 TLS/SSL 인증서와 동일한 시스템에 설치해야 합니다.

시스템 요구 사항

ACME 에이전트 소프트웨어는 Linux 및 Windows 시스템에서 실행되며 다음 요구 사항이 있습니다.

Server type

Supported OS versions

Minimum specifications

Windows

  • Windows 10

  • Windows Server 2016

  • Windows Server 2019

  • Windows Server 2022

  • 64비트 버전

  • 2GB RAM(4GB RAM 권장)

  • 2GB 여유 디스크 공간(최소)

  • Microsoft .NET Framework 4.x installed

  • Administrator privileges

Linux

  • Red Hat Enterprise Linux 7.x

  • Red Hat Enterprise Linux 8.x

  • Red Hat Enterprise Linux 9.x

  • Ubuntu 20.04 or later

  • 64비트 버전 및 US 로캘 필요

  • 2GB RAM(4GB RAM 권장)

  • 2GB 여유 디스크 공간(최소)

  • CLI utilities awk, grep, sed, lsof, and dos2unix installed

  • Root privileges

네트워크 요구 사항

  • The DigiCert agent on each host must be able to resolve the fully qualified domain names (FQDNs) for the local web server, either via DNS or a local "hosts" file.

  • HTTPS(포트 443)에 대한 아웃바운드 연결.

    Region

    Platform URLs1

    TCP port

    Protocol

    Americas (U.S.A.)

    one.digicert.com, clientauth.one.digicert.com

    443

    HTTPS

    APJ (Japan)

    one.digicert.co.jp, clientauth.one.digicert.co.jp

    443

    HTTPS

    EMEA (Netherlands)

    one.nl.digicert.com, clientauth.one.nl.digicert.com

    443

    HTTPS

    EMEA (Switzerland)

    one.ch.digicert.com, clientauth.one.ch.digicert.com

    443

    HTTPS

    1. For users with an on-premises DigiCert ONE deployment, the agent needs to access port 443 (HTTPS) on the local DigiCert ONE instance and ClientAuth host (for example, my-org.one.digicert.com and my-org.clientauth.digicert.com).

  • In addition, the agent requires outbound access to the below host for Trust Lifecycle Manager discovery and automation services:

    Region

    URL

    TCP port

    Protocol

    All regions

    automation-service.digicert.com 1

    443

    HTTPS

    1. This service is delivered through a content distribution network (CDN) and the IP addresses may vary by region. If your organization uses IP-based allowlists, look up the automation-service.digicert.com host in your local region to determine which IP addresses to allow.

참고

If using a local DigiCert​​®​​ sensor as proxy, the agent must also be able to connect outbound to the proxy listening port on the sensor. To learn more, see Use a sensor as a proxy server.

What's next

이 섹션의 내용: