I am building a micro-services project that uses node’s tls for inter-service / droplet communication between the various micro services of the overall application. My issue is that I am unsure as to how the various ssl certs / keys need to be created & distributed so that any micro service within the application can communicate with any other micro service within the application using the node tls module.
E.G:
Do I have one private key for each micro service & distribute its public key counterpart to each of the other micro services?
Can I create one ‘master’ private key & distribute this & its public key counterpart to other micro services?

From what I have learned so far I will be creating a certificate authority (CA) using openssl on one droplet/service. All other certificates will be created/signed from this CA.

Any help or suggestions would be gratefully appreciated.

Thanks in advance, Jonathan