unable to connect to sectigo

[RobWoods-CPG]

Bug Overview

when attempting to connect to sectigo I get this:
2025/12/06 00:39:56 [warn] 1520#1520: directory update failed (cannot deserialize response (expected value at line 1 column 1)) while creating account for acme issuer "Sectigo"

The sectigo uri is https://acme.enterprise.sectigo.com there is no /directory url

We are using the sectigo Certificate Manager solution and have it connected to our AD CA.

I see an access.key file in the cache, but never anything else.

Expected Behavior

I should be able to connect and get certificates.

Steps to Reproduce the Bug

config:

resolver <dns server> ipv6=off valid=5s;
acme_shared_zone zone=ngx_acme_shared:1M;

acme_issuer Sectigo {
    uri https://acme.enterprise.sectigo.com;
    account_key ecdsa:256;   # or rsa:2048

    state_path /var/cache/nginx/acme;
    accept_terms_of_service;
    external_account_key <Account> /etc/nginx/ssl/private/Sectigo_acme.key;#
    challenge  tls-alpn-01;
}

Server{
..
acme_certificate Sectigo;

    ssl_certificate       $acme_certificate;

    ssl_certificate_key   $acme_certificate_key;

Environment Details

runing on ubuntu 24.04
R36.

Additional Context

No response

[bavshin-f5]

Can you try adding a trailing slash: uri https://acme.enterprise.sectigo.com/;?

It appears that we don't handle an empty path correctly. I expected that the URL parser would normalize the path to '/', but that does not happen.

[RobWoods-CPG]

Thanks, that moved me forward, I'm still not getting a certificate, but that may be on sectigo's end.