service.daemon Run as daemon? (doesn't fork) service.gid=SERVICE.GID GID to run as (default: don't drop privileges) service.uid=SERVICE.UID UID to run as (default: don't drop privileges) bugserveraddr=SERVICE.DEBUGSERVERADDR Address for debug server to listen on (do not specify a public address) (default: disabled) service.cpuprofile=SERVICE.CPUPROFILE Write CPU profile to file xlog.stderrseverity=XLOG.STDERRSEVERITY stderr logging severity limit xlog.fileseverity=XLOG.FILESEVERITY file logging severity limit verity=XLOG.SEVERITY log severity (any syslog severity name or number) xlog.journalseverity=XLOG.JOURNALSEVERITY systemd journal severity limit xlog.syslogseverity=XLOG.SYSLOGSEVERITY syslog severity limit xlog.facility=XLOG.FACILITY syslog facility to use response-file=RESPONSE-FILE Read dialog responses from the given file (default: $ACME_STATE_DIR/conf/responses) stdio Don't attempt to use console dialogs fall back to stdio prompts (acmetool can still obtain responses from a response file, if one was provided.) batch Do not attempt interaction useful for cron jobs. hooks=/usr/lib/acme/hooks Path to the notification hooks directory (env: ACME_HOOKS_DIR) state=/var/lib/acme Path to the state directory (env: ACME_STATE_DIR) help Show context-sensitive help (also try -help-long and -help-man). The -service options control privilege dropping and daemonization and are applicable only to the redirector subcommand. It can be specified on invocation via the -state option otherwise, the path in ACME_STATE_DIR is used, or, failing that, the path "/var/lib/acme" (recommended). New certificates are requested where existing ones are soon to expire.Īcmetool stores its state in a state directory. acmetool then requests certificates as necessary to satisify the configured targets. You use acmetool by configuring targets (typically using the "want") command. It emphasises automation, idempotency and the minimisation of state. Acmetool - request certificates from ACME servers automaticallyĪcmetool is a utility for the automated retrieval, management and renewal of certificates from ACME server such as Let's Encrypt.
0 kommentar(er)
