Hi,
I am in the process of creating a new Multi-Server (SAN) certificate for our Collaboration Cluster.
This automatically includes my Publisher, 2 Subscribers as well as my 2 Presence Nodes.
My question is, as I need to renew my 2 * Unity Connection and 2 * UCCX as well, could I add there FQDN's (using other domains) in this CSR and create one certificate that would contain all of them for tomcat and tomcat-trust off course. Is this a good or bad idea ??
I suppose I would need to upload the same certificate once for the Unity Connection Cluster as well for the UCCX cluster.
If this is ok, this would seriously reduce the number/complexity of certificates needed.
Also my Internal Signing CA is a Sub CA. Off course I need to add it everywhere in tomcat-trust. But what about it's root. Do I need to add this one as well to tomcat-trust. It seems logic to me, but the previous consultant, didn't do it. And all is still working.