@NetworkMonkey101 how many certificates did you have before? Did multiple applicances share certificates, i.e., wildcard or multi-domain etc?.
If you do already have a wildcard you wish to import to another FTD you don't need to create a CSR, navigat...
@NetworkMonkey101 refer to the manual enrollment section in the Cisco guide when generating the CSR.
https://www.cisco.com/c/en/us/support/docs/security-vpn/public-key-infrastructure-pki/215849-certificate-installation-and-renewal-on.html#toc-hId--28...
@samehmalik10 did this work before? what has changed?
Are your ISE policies/policy sets configured correctly?
Does the ISE live logs provide an indication on where the problem is?
Please provide the information from the ISE live logs.