blob: a5f3c0a556e58b9bbf4a08382148dc549ad55495 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
|
.\" This source code is released into the public domain.
.Dd June 3, 2025
.Dt ACME.CONF 5
.Os
.Sh NAME
.Nm acme.conf
.Nd lfacme global configuration file
.Sh SYNOPSIS
.Pa __CONFDIR__/acme.conf
.Sh DESCRIPTION
The
.Nm
file is used to configure the global behaviour of
.Nm lfacme .
Each option should be configured as a
.Xr sh 1
variable assignment, i.e.
.Dq Ar option Ns = Ns Ar value .
.Pp
Alternatively, options may be set as environment variables prior to running
.Nm lfacme .
If all required options are set in the environment, then the
.Nm
file is not required.
.Pp
The following configuration options are supported:
.Bl -tag -width indent
.It Va LFACME_URL
(Required.)
The URL of the ACME server.
.It Va LFACME_DATADIR
The path to the runtime data directory, where the ACME account key and any
issued certificates will be stored.
The default path is
.Pa /var/db/lfacme .
.It Va LFACME_HOOKDIR
The path to a directory containing hooks to invoke when issuing certificates
(see
.Xr domains.conf 5 ) .
The default path is
.Pa __CONFDIR__/hooks .
.It Va LFACME_OPENSSL
Path to the
.Xr openssl 1
program.
If not specified,
.Ev $PATH
will be searched.
.It Va LFACME_UACME
Path to the
.Xr uacme 1
program.
If not specified,
.Ev $PATH
will be searched.
.El
.Pp
Additional configuration variables may be used by the ACME validation hooks;
refer to the manual page for each hook for more details.
.Sh SEE ALSO
.Xr domains.conf 5 ,
.Xr lfacme 8 ,
.Xr lfacme-dns 7 ,
.Xr lfacme-http 7 ,
.Xr lfacme-kerberos 7 ,
.Xr lfacme-ualpn 7
|
