How To Manually Validate DCV using ACME certbot

To manually Validate your DCV using ACME, please follow the instructions below.

1. Run the following command:

certbot -d <> --server <ACME_Server_URL> --eab-kid <EAB_KEY_ID> --eab-hmac-key <EAB_HMAC_KEY> --manual --preferred-challenges dns certonly

Note: To obtain the --eab-kid and –eab-hmac-key values as well as the --server value from SCM, please refer to the SCM Admin Guide:

Section 7.2.5 How to Configure ACME Accounts for Organizations and Departments.

2. Certbot will then provide the following instructions to manually update the TXT record for the domain

Please deploy a DNS TXT record under the name
_acme-challenge.<> with the following value: 667drNmQL3vX6bu8YZlgy0wKNBlCny8yrjF1lSaUndc

3. When the DNS TXT has been deployed, click Enter to continue
4. Once you have successfully updated your DNS record, click Enter
5. Certbot will continue, and if Sectigo CA verifies the DNS challenge in the TXT record, Certbot will request the certificate from Sectigo CA