I have two CSMs and two SSL Modules in seperate chasis. The CSMs are in FT mode and I want to load balance against the two SSL modules. Do I need to purchase a certificate for both SSL modules for every service? If not, how do I install the cert for a given service on both modules??
Depends how you created your key.
If you did it on the SSLM itself, and if you specified the keyword 'exportable', you should be able to dexport the key with the command 'crypto ca export ...'
See more info in the 2 links below.
As a general remark I always recommend to generate keys,certificates and CSR on a separate machine [like a linux server]. It's then easier to import all the info to all your modules.
Thanks for rating this answer.