Test ACME Version Being Used

ewwwgiddings · January 16, 2020, 7:35pm

I received the email about updating to ACMEv2.

I believe I updated what I needed to.

How do I test that I am now running ACMEv2? Or how can I test that ACMEv2 is being used when my certificate is renewed?

Thank you and sorry if this should be obvious

rg305 · January 16, 2020, 10:52pm

It depends mainly on the client used.

For certbot, or certbot-auto, you can simply add --dry-run to the command (usually run in cron or systemd) and it should show you the appropriate (pass/fail) response.
[you can also look through the LE log files to ensure acme-v02 is being used]

tobiasherp · January 17, 2020, 10:00am

So, what do we need to look for?
Can I tell from requests to https://acme-staging-v02.api.letsencrypt.org/acme/acct (in /var/log/letsencrypt/letsencrypt.log) that aCMEv2 is used?

tobiasherp · January 17, 2020, 10:16am

It seems so. The above is from certbot v1.0.0; certbot 0.9.3 (on another machine) talks to https://acme-v01.api.letsencrypt.org/

rg305 · January 17, 2020, 9:07pm

Anything with v02 implies that is should be using acmev2 client.
Anything with v01 implies that is should be using acmev1 client.

So, if you are still seeing v01, you may need to update that client.

Topic		Replies	Views
Update your client software to continue using Let's Encrypt Help	10	2759	March 1, 2020
How to know which ACME version I am using to obtain TLS/SSL certificate? Help	3	5007	March 21, 2020
Got email telling me to update to ACME v2 despite recent certbot Help	4	2226	March 20, 2020
How to update from ACMEv1 to ACMEv2 Help	10	14309	March 25, 2020
Confirm ACME2 switch (how to) Help	5	1420	March 14, 2020

Test ACME Version Being Used

Related topics