DId you follow the guide below?
In your case, the CLI part. However i would read this guide fully to understand mixed mode cluster security.
Here's the highlevel overview of what I did
1) CUCM is in non-scure mode
2) Download callmanager CSR and sent to Verisign
3)Received callmanager.CER from verisign
4)Uploaded it by selecting callmanager-trust. If I select callmanager, I get an error about store
5)rebooted the server
6)enabled mixed mode via CLI
7)Rebooted the server
This is the time I tried to go to the IE certifcation path and didnt get that same tree you have
Do I need to download this root and intermediate cert from the OS admin of CUCM or that is from the pic you sent wherein I do it in the IE browser connected to my CUCM?
you have to generate intermediate certificate from Root certificate. After this you have to upload CA to tomcat-trust , the upload the certificate .cer to trust tomcat after you uploaded it CUCM changes the name of the file to <SUBJECT CN>.pem. . Kindly check the below links:-
please rate all useful information