For EZCA to validate the local domain ownership, we have to install a local agent in your network. This web service will receive all ACME request and validate the domain ownership on behalf of EZCA. In this step we will register the ACME Agent in EZCA to issue certificates for your CA.
Health Checks make sure that the authentication certificate is kept up to date. If you are not using EZCAs integrated health check, make sure you hit the endpoint “https://YOURACMEAgent/api/Health/Overall” every few minutes.
If EZCA will perform the health checks, the Agent URL has to be a valid public facing FQDN with a valid SSL certificate.