Welcome 😉
The locked.properties will need change, PortalHost entry needs to be added to get rid of that one error.
The cert could be fine, it could support multiple domains, just make sure the right FQDN of the connection server (bgut I guess they never changes) are in there.