# ACME Response Headers Configuration

This health check ensures that all necessary ACME-specific response headers are properly configured. Without these headers, the ACME protocol will fail, as they are required for proper client-server communication during certificate issuance.

**Health Check Name:** `c`

#### **Accessed APIs**

| Method | Endpoint                  | Description                            |
| ------ | ------------------------- | -------------------------------------- |
| READ   | `/sys/internal/ui/mounts` | Verifies configured headers for mounts |

####  **Configuration Parameters**

| Parameter | Description                                          |
| --------- | ---------------------------------------------------- |
| *(None)*  | This check does not require configurable parameters. |

#### **Health Check Results**

| Condition                                                         | Status Level |
| ----------------------------------------------------------------- | ------------ |
| Required headers (`Replay-Nonce`, `Link`, `Location`) are missing | **Warning**  |
| All required headers are configured                               | **Pass**     |

#### **Recommended Actions**

1. Tune the secrets engine mount to include the required ACME headers:

```shell
vhsm secrets tune \
  -allowed-response-headers="Last-Modified" \
  -allowed-response-headers="Replay-Nonce" \
  -allowed-response-headers="Link" \
  -allowed-response-headers="Location" \
  <mount>
```

2. Verify ACME functionality by testing with an ACME client such as Certbot to confirm headers are returned as expected.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.enclaive.cloud/virtual-hsm/troubleshooting/acme-response-headers-configuration.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.