When you deploy a VLA, the appliance contains a single vNIC to which you apply a single IP address and, ideally, FQDN (as part of the deployment). On first boot, the VLA creates a self-signed certificate using the FQDN (or IP address if no FQDN is present).
- Create and Deploy a wild-card certificate that works for all the FQDNs associated with the appliance's vNICs
- Create and Deploy one additional certificate for each of the additional FQDNs associated with the additional vNIC(s)
# vla_cert -c -i <service-name> -f --cn <Alternative_FQDN> # vla_cert_manager --sync
# vla_cert -c -i vla-server -f --cn vla-managed.example.com # vla_cert_manager --sync