HA+MT+TLS, certificates and keys on both servers
Setup:
I setuped KEA for our internal network, in place of isc-dhcp and wanted to go with https for High Availability. Its a simple setup with 2 servers with mt, ha, tls, one subnet and one host-reservation.
Problem:
After I created Certs and Keys with our internal CA and Kea worked. But it only works when I have both certs and keys on both machines. So I need to send my certificate private key over network to the other server. And since certs are running out it needs to send them regularly.
Question:
Why do all servers need the certs and keys of all the other servers? Is there a way to automate that process via kea directly or am I missing something?