/mcpProcedure Step 1 From Cisco Unified OS Administration, choose Security > Certificate Management. The Certificate List window appears. Step 2 Click Reuse Certificate. The Use Tomcat Certificates For Other Services page appears. Step 3 From the Choose Tomcat type drop-down list, choose either tomcat or tomcat-ECDSA. Step 4 From the Replace Certificate for the following purpose pane, check either the CallManager or CallManager-ECDSA check box. Note Before you click the Replace Certificate for the following purpose button, ensure that you manually upload the CA certificate chain (that signed the tomcat identity certificate) to the CallManager trust store. Refer to the Certificate Names and Descriptions, on page 55 section to check what services must be restarted when you upload the tomcat certificate chain to the CallManager trust. Step 5 Click Finish to replace the CallManager certificate with the tomcat multi-server SAN certificate. Note • If you choose tomcat as the certificate type, CallManager is enabled as the replacement. • If you choose tomcat-ECDSA as the certificate type, CallManager-ECDSA is enabled as the replacement. • The CallManager certificate will not be visible in the GUI when you reuse the certificate. Security Guide for Cisco Unified Communications Manager, Release 15 and SUs 69 Basic System Security Reuse Multi-Server Tomcat Certificate for CallManager