We provide a service to manage our customers’ website. We sign-up new customers frequently enough that we are attempting to automate on boarding, so there’s no manual configuration of certs, configs, etc. That is why we chose on-demand.
99% of the time, these are pre-existing sites with traffic and we want to provide a zero downtime experience when migrating their domain to us, which leads us to the DNS challenge.
So our setup is that we automatically migrate their DNS records to our DNS provider, the customer then updates their registrar to point their name servers to our DNS provider, we detect that, then begin cert generation (and other setup). When the customer is ready, they more or less click ‘switch’ and they are done. Automatic setup and zero downtime.