I manage the DNS for a few different hosts, and I'm wondering if I have to generate the certs for each domain from the host on which the domain resides.
I use "manual auth" with TXT-record-based authentication, so I'm wondering if I could generate the certs for all the domains on one host, and then just scp the key and pem files to the appropriate machines.
It would be ideal for me if I could do this, because one of my hosts is faster and has more capacity, and it's the one where the DNS server resides.
Is this a possibility? Or does the host on which the certs are requested have to be the same host on which the domain resides?
Thank you very much.