Hello Bill Wolohan
Thanks for sharing more details. I checked with internal team to see if there is a way to set this property.
However, with managed clusters the Certificates bound to the endpoints are managed by Microsoft (via the Service Fabric Resource Provider), you really only can manage client certificate[s] to give you admin or readonly access on the management endpoints.
This being the case you cannot bind a custom cert in the same way you have done with standard SF clusters.
You can still setup a DNS A record to point to your management endpoint and use the custom domain, but the browser will not trust it since the cluster cert is different from your domain/client cert you have configured.
So this is currently by design for the management endpoints.
Hope this helps.
If you need further help on this, tag me in a comment.
If the suggested response helped you resolve your issue, please 'Accept as answer', so that it can help others in the community looking for help on similar topics.