Thanks for your reply
But when generating a new "Certificate Signing Request" within the cluster, would this not affect the certificate that I have already created?
If it does not affect the existing SSL digital certificate, should it be generated as follows?
CPPM1 FQDN:uk.nac01.abc.com (Publisher)
CPPM2 FQDN:uk.nac02.abc.com (Subscriber)
CPPM3 FQDN:uk.nac03.abc.com (Subscriber) (new ClearPass Server)
Common Name (CN): clearpass.abc.com
Subject Alternate Name (SAN): DNS:clearpass.abc.com,DNS:uk.nac01.abc.com,DNS:uk.nac02.abc.com,DNS:uk.nac03.abc.com
Or
Common Name (CN): clearpass.abc.com
Subject Alternate Name (SAN): DNS:uk.nac03.abc.com
Regards,
Carlos Villanueva