Hi Tim
Okay found my initial problem but have a couple of more questions
My full setup is 2x VMM and 2x VMC both layer 2 using VRRP for failover
My problem was that I generated the CSR from the VMM so although the Cert uploaded to the VMC, the VMC still referenced the old securelogin cert, that why I I think the FQDN would not change to the new CN.
So I generated a CSR from the managed network group where both my VMC were added, and when I clicked view current cert is shows me the new cert I generated on both VMC's
I uploaded the signed cert from the CA and came across the following:
On only the primary VMC it shows the FQDN change to my new CN the backup VMC still shows the securelogin CN
I had to add the DNS entry back on my local DNS server otherwise I get an unable to resolve my new CN
So as long as user traffic terminates on the primary VMC and I kept my DNS record in it works
So questions 1
Do I need to generate a CSR and purchase a certificate for each of VMC I have in a cluster ?
questions 2
You mention I should remove the DNS entry, please can explain how this should work if I remove it?
thank you for all the assistance