The system administrator can replace a self-signed certificate with another self-signed certificate or a domain certificate. You can use Subject Alternative Name (SAN) certificates, wildcard certificates, or any other method of multi-use certification appropriate for your environment as long as you satisfy the trust requirements.