Update certbot readme's with entrust end of support #31
Conversation
There was a problem hiding this comment.
@TimCsaky, Are you able to provide links to the Entrust wording on this subject? Are they planning support for the ACME v2 endpoints? For example, Let Encrypt stopped using ACME v1 back in June of 2020.
There is a hint that Entrust does/may/will support ACME v2 here, https://www.entrust.com/blog/2023/04/googles-90-day-proposal-for-tls-certificates/, and here, https://www.entrust.com/-/media/documentation/datasheets/certificate-enrollment-gateway-ss.pdf?la=en&hash=06208F40D2C9A6E0B9E98CDE8B12C759.
|
The only Entrust docs i see are here: https://www.entrust.com/knowledgebase/ssl/how-to-use-acme-to-install-ssl-tls-certificates-in-entrust-certificate-services-apache |
|
Certbot does work with the ACME v2 endpoints, I'm using Certbot with the Let's Encrypt ACME v2 endpoints on a few of our demo services for the DITP team. |
|
Based on the documentation I found I don't think we can confidently make the statement that Entrust has discontinued support for Certbot. I do recall somewhere some wording around them discontinuing support for ACME v1, but Cerbot supports ACME v2, and the documents seem to indicate Entrust is or will be supporting ACME v2. |
|
Do we know if someone on the BC Gov side is looking into Entrust's support for ACME v2? |
|
Thanks @WadeBarnes . Yes important to get these details clear. If the Entrust service that the gov uses does support V2, i would hope this certbot container gets updated. |
Signed-off-by: Jeremy Ho <[email protected]>
|
Merge overriding as this PR only contains readme documentation changes. |
ghost
merged commit 
Description
with Entrust dropping support for certbot (using the V1 entrust endpoint) we need to let BC users know Entrust is no longer an option for certs in a production environment.
Types of changes
Documentation (non-breaking change with enhancements to documentation)
Checklist
Further comments