Using public certs for the API listener works great.
I’m a little confused by this configuration in the reference implementation boundary-reference-architecture/controller.hcl.tpl at main · hashicorp/boundary-reference-architecture · GitHub
When I tried using these here, the worker could never establish a session.
[ERROR] worker: error making status request to controller: error="rpc error: code = Unavailable desc
Reading through the documentation it appears that the TLS between controller and worker isn’t based on public KPI at all.
Is this a mistake in the reference implementation, or am I otherwise doing something wrong?