You can disable ACMEv2 operations for an External Account Binding credential. Disabling ACMEv2 operations for an External Account Binding credential will disable the credential. When you disable ACMEv2 operations for an External Account Binding credential, new ACMEv2 clients cannot use the credential to create an account, and ACMEv2 clients with an existing account cannot perform any ACMEv2 operations with the credential.
You should disable ACMEv2 operations for an External Account Binding credential if you want to temporarily prevent any ACMEv2 clients from using the External Account Binding credential. If you want to permanently prevent ACMEv2 clients from using an External Account Binding credential, delete the HMAC key for the credential (see Deleting HMAC keys for External Account Binding credentials).
To disable ACMEv2 operations for an External Account Binding credential
- On the Entrust Deployment Manager or Cryptographic Security Platform node hosting the EAB Utility, log in as sysadmin.
- Enter the following command to launch the EAB Utility:
sudo eab-util - The main menu appears:
- Select Manage EAB credentials, and then press Enter.
A list of External Account Binding credentials appears. For example:
The ACMEv2 Status column displays the status of ACMEv2 operations for each External Account Binding credential, either Enabled or Disabled. - Select the credential you want to disable, and then press Enter.
A Manage EAB Credentials page appears. For example:
- Select Disable ACMEv2 and press Enter.
The Disable ACMEv2 operations for this EAB Credential page appears.
- Select Disable ACMEv2 and press Enter.
The External Account Binding credential is disabled. The Manage EAB Credentials page reappears