github/infisical
1
0
Fork 0
mirror of https://github.com/Infisical/infisical.git synced 2026-01-09 07:28:09 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add docs

Browse Source
This commit is contained in:
Fang-Pen Lin
2025-12-11 15:30:28 -08:00
parent f6d20be7eb
commit 755126e1fc
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docs/documentation/platform/pki/enrollment-methods/acme.mdx
View File

@@ -26,6 +26,13 @@ In the following steps, we explore how to issue a X.509 certificate using the AC
![pki acme config](/images/platform/pki/enrollment-methods/acme/acme-config.png)
By default, when your ACME client attempts to get a certificate issued with the certificate profile, the Infisical ACME server will verify your domain ownership.
Currently only HTTP-01 is supported.
If you want to skip the domain validation process, please check the `Skip DNS Ownership Validation` checkbox.
However, please note that we can only skip the DNS validation for certificate issuance requests from your ACME client to our Infisical ACME server.
If you are using a third-party ACME external Certificate Authority as the source of certificate issuance, that external CA may still require domain ownership validation.
Please read the [document for external ACME CA](/documentation/platform/pki/ca/acme-ca) to learn more.
</Step>
<Step title="Obtain the ACME configuration">
Once you've created the certificate profile, you can obtain its ACME configuration details by clicking the **Reveal ACME EAB** option on the profile.