Establishing trust between a set of applications? Use a PKI instead of self-signed certificates

Consider you are working in a delivery project where you have a set of hosts talking to each other over TLS and you need to establish trust between them? The customer wants TLS/HTTPS all over, for vertical as well as horizontal traffic!

The documentation reveals, “if you want to enable TLS on this port, here are the instructions to generate a self-signed certificate. Remember to import this certificate into relevant trust stores