CCF: Unable to obtain ACME endorsement for CCF service

Hello, I am trying to create a CCF network with ACME endorsement, but I am not quite sure how "acme_challenge_server_interface" works, because I am hosting CCF network on Azure Virtual Machines and when I try to bind private DNS ip to "bind_address" nothing works. Besides I don’t know how can I find this directory “/.well-known/acme-challenge/” in my virtual machine if bind address is point to that virtual machine? Thank you

About this issue

  • Original URL
  • State: closed
  • Created a year ago
  • Comments: 21 (8 by maintainers)

Most upvoted comments

@JustasStankunas + @kristupaslozoraitis - Thanks very much for the clarification. It looks like the missing intermediate certs is a bug - we’re passing the full chain around, but drop it when passing to OpenSSL. This was missed by our testing, because the client there is provisioned with a full chain and doesn’t need the intermediates to be provided by the server.

I’ve got a fix for this in-progress.

+1
eddyashton on Jul 13, 2023
Read more comments on GitHub
← CCF: samples/apps/logging cmake undefined pthread
clarity: A error about call clarity. →