- DigiCert product docs
- CertCentral
- 证书工具
- Guided TLS/SSL certificate lifecycle automation
- CertCentral automation agent operational specification
- Run ACME operations on the CertCentral automation service
Run ACME operations on the CertCentral automation service
You can run ACME operations in the CertCentral automation command that you generate in CertCentral or directly through the service and a previously installed automation agent. The CertCentral automation service supports all valid ACME client operations and options.
request list- List ACME requestsrequest enroll- Enroll new certificaterequest delete- Delete ACME requestrequest ari- Check ARI renewal informationrequest status- Check service statusrequest update- Update ACME requestrequest help- Show request help
--directory-url <url>- ACME server directory URLProduction:
https://one.digicert.com/mpki/api/v1/acme/v2/directoryDemo:
https://demo.one.digicert.com/mpki/api/v1/acme/v2/directory
--email <email>- Email address for ACME account--eab-key <key>- External account binding (EAB) key--eab-hmac <hmac>- External account binding HMAC
--csr-file <path>- Path to CSR file--cn <name>- Common name for certificate--sans <names>- Subject alternative names (comma-separated)--key-type <type>- Key type: RSA, ECDSA, EdDSA (default: RSA)--key-size <size>- Key size: 2048 for RSA, 256 for ECDSA (default: context-aware)--signature-algo <algo>- Signature algorithm (default: context-aware based on key type)--org <orgs>- Organizations (comma-separated)--org-unit <units>- Organizational units (comma-separated)--country <countries>- Countries (comma-separated)--state <states>- States (comma-separated)--locality <localities>- Localities (comma-separated)--key-usages <usages>- Key usages (comma-separated)--ext-key-usages <usages>- Extended key usages (comma-separated)
--challenge-type <type>- Challenge type: http-01, dns-01 (default: http-01)--challenge-handler-name <name>- Challenge handler name (default: standalone)--challenge-handler-args <args>- Challenge handler arguments
--installer-handler-name <name>- Installer handler name (default: filesystem)--installer-handler-args <args>- Installer handler arguments (cert_file_extension=pfx, pfx_password=abc123)
--auto-ari-renew- Enable automatic ARI renewal (default: false)--auto-renew- Enable automatic renewal (default: false)--auto-renew-days <days>- Days before expiration to renew (default: 30)
--cc-order-id <id>- CertCentral order ID--cc-order-action <action>- CertCentral order action
--cert-path <path>- Path to certificate file for ARI
--cert-store-path <path>- Certificate storage path
--help- Show help information--version- Show version information--defaults- Show default configuration values (NEW)--quiet- Enable quiet mode--debug- Enable debug logging--info- Enable info logging (default)