I assume that you by wildcard SSL root mean if you can use a wildcard SSL certificate for the multi SAN certificate in UCCX? If so the answer to your question is no you can’t. The SAN portion of the certificate for UCCX only supports the FQDN names of your UCCX nodes.
If you have an internal CA recommendation would be to use that to sign your Tomcat certificate as it’s use is as far as I know only internal anyway, so there’s no benefit to get it signed by a public CA and pay good money for it.