Active Directory domain same as www. - fixable?

We made the mistake of setting our Windows 2003 Active Directory domain name the same as our www. domain, and now when users are logged in to the domain and want to browse our web site and simply type http://domain - they generally get nowhere. So we have told everyone to go to http://www.domain instead.

This is all well and good, except that management is cranky that it has to be that way.
Is there any way to add an entry to DNS so that if a user types in http://domain it goes to the externally hosted http://www.domain web site?

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

There's only one possibility, which potentially weakens the security of your DCs: install IIS on all DCs, and redirect to your external IP address.
Your AD domain name *has* to resolve to a DC, no ways around that.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
vmwarun - ArunCommented:
You can add an alias entry in the domain controller to redirect requests

For example, if i want to access, I can add an alias stating that should be redirected to
I would create a CNAME "www.domain" in DNS that points to "domain"
The ONLY thing you can do to fix this is to rename your AD domain. I've never actually done this myself, but I hear it's pretty straight forward with win2k3. But do the research and figure out exactly what that will entail and what it will impact.  If management is cranky now, they'll be really cranky later if something gets borked and you have to rejoin all the computer to the domain before they can login.
Chris DentPowerShell DeveloperCommented:

Recommend Split: oBdA (http:#24477225) and jar3817 (http:#24483794)

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.