Skip to content

Overview

The ACME (Automatic Certificate Management Environment) protocol is a standard for automating the process of obtaining, renewing, and managing SSL/TLS certificates. It was developed by the Internet Security Research Group (ISRG), the organization behind Let's Encrypt, and is specified in RFC 8555. PKIaaS.io supports version 2 of the ACME protocol with HTTP-01 and DNS-01 challenges.

Note: PKIaaS.io requires use of an EAB (External Account Binding) to register an ACME account. Because of this requirement, only ACME clients that support EAB will work with the PKIaaS.io ACME service.

A few steps must be completed before requesting a certificate with an ACME client:

  1. Create an ACME Policy
  2. Generate EAB Credentials
  3. Register an ACME Account

The ACME directory URL for all PKIaaS.io ACME requests is https://acme-v02-api.pkiaas.io/directory