I got ahead of myself and regenerated all my certificates at once, which I understand is a huge no-no. The only problem I've been having is the "Host not found" error in the Corporate Directory. I have backups of the old self-signed certificates so is there a way I can restore them and redo the whole procedure properly? If no I'll have to manually delete the ITL files on every single phone will take me days to finish! I haven't restarted any services apart from tomcat.
Well I regenerated my tomcat, Ipsec, call manager, capf and tvs certs all at once. Later I restarted the tomcat and drs services. It fixed our backup problem but the next day a handful of phones couldn't access the corporate directory. Strangely enough it's accessible using the IP communicator.