[acme-v01.api] What do you do when an SCT submission fails?

kf6nux · July 6, 2018, 6:42pm

LE

I found this thread What do you do when an SCT submission fails which appears to provide instructions specific to acme-v02’s api, but we’re using acme-v01.

We’ve seen 3 of these 500 urn:acme:error:serverInternal: Error creating new cert :: Unable to meet CA SCT embedding requirements within the past hour (1 was after today’s status page went into monitoring at July 6, 2018 18:26 UTC).

How should our acme-v01 client handle these errors?

It’s currently treating them as temporary and will attempt to re-issue after a lengthy backoff period.

Thanks in advance!

cpu · July 6, 2018, 6:44pm

That's the correct approach. There is nothing to be done on your end. You can retry the ACME v1 new-cert requests again once the incident has concluded.

Sorry for the inconvenience!

kf6nux · July 6, 2018, 6:45pm

Thanks @cpu! Take care!

system · August 5, 2018, 6:45pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
What do you do when an SCT submission fails Issuance Tech	3	2166	June 30, 2018
Unable to renew: "Unable to meet CA SCT embedding requirements" Help	5	2657	August 29, 2018
Error creating new cert	1	1510	February 4, 2016
Unable to meet CA SCT embedding requirements Help	3	1701	December 30, 2018
Error finalizing order Server	5	1381	November 2, 2018

[acme-v01.api] What do you do when an SCT submission fails?

Related topics