our site is currently running on Azure. We’re running a production server (VM) on Azure SEA and an identical copy for staging. We’re going to set up production servers for the USA very soon, which would mean we’d have at least 3 servers, which then would be managed via a traffic balancer on Azure to redirect visitor traffic to the closest server.
How would/should/could we set up our TLS certificates for this? Does every server still need to set it’s own certificate or can the certificate somehow be attached to the traffic balancer which would be accessed via a CNAME from our domain pointing to the balancer?
It seems quite complicated having to set up and renew TLS certificates for every server we might run in the future.