Nevermind. I figured it out.
In the settings, the field name says “Domain” and I took that perhaps too literal and only defined the DN (which matched the certificate), and defined the FQDN in the URL field but when I added the FQDN to both fields it successfully connected.