Yes, but not by nature of the TVS cert itself being CA-signed. Since the TVS
cert will get into the ITL who signs it doesn't matter.
Why it may help is because TVS will authorize any cert in the local server's
trust store. If the other certs (the ones the endpoint presents to TVS) are
If you used signed certificates by your enterprise CA for TVS, would that allow
TVS to validate across multiple clusters if both clusters TVS certificates were
signed by the same CA?
I am trying to determine if there would ever be an advantage to doing a
non-self signed certificate on the TVS.
