This issue occurs due to how the federation Global manager imports new certificates for the local manager and leaves the old thumbprint in place on the Global manager, which causes communications issues between the Global managers and the Local managers.