Managing certificates On Cisco UCM Cluster is complex when you several nodes and you need certificates for each node, using the Multi-SAN certificate concept, It is simpler to obtain a CA-signed certificate. Only one CSR is required to be signed by CA rather than the requirement to obtain a CSR from each server node and then obtain a CA-signed certificate for each CSR and manage them individually. Then this single Multi-SAN certificate is distributed by the publisher to the whole cluster.
See below my lab to learn how To Configure Multi-server (SAN) Tomcat certificate on Cisco Unified CM Cluster.
![TOPO.PNG TOPO.PNG](https://community.cisco.com/t5/image/serverpage/image-id/174956iE509CA59A0D6216A/image-size/medium?v=v2&px=400)