Any help on mounting internal CA on vault

[ENate]

Hi @samrocketman thanks for your repo and based on the discussion we had on the vault+consul repo on deploying etc. I looked at your internal_CA repo and have the following questions:

1. Do you think mounting the self generated CA to 'cold' vault + consul (which will be offline after) is advisable? Then generate intermediates, and then leaf certs for many services?
2. I am hoping this will give me a central way to manage certs for many services. My root key etc will be offline for sure. What do you think? Thanks