Improve company productivity with a Business Account.Sign Up

x
?
Solved

Additional domain alias

Posted on 2013-01-22
2
Medium Priority
?
470 Views
Last Modified: 2013-01-28
We have a Win2k8 r2 domain named domain.local (domain1). Recently we partner with another company who uses domain.tld (domain2) as their ad domain name. Their wireless users use their AD radius server with ssl cert doman.tld to authenticate to the wireless network. We are migrating partners ad into our, but since it's not possible to purchase SSL certificates for internal AD domain names (.local) any more we would like to re-use their radius server with the existing ssl certificate, so my questions are:

1. Is it possible to add additional AD alias (domain.tld) to domain.local so that ssl could be used once users from partner company log on with their new username username@domain.local?

2. Would users log on using existing domain alias domain1\username or using the UPN?
0
Comment
Question by:cphs
2 Comments
 
LVL 35

Accepted Solution

by:
Paul MacDonald earned 225 total points
ID: 38807415
I don't see why you couldn't create a zone in DNS of domain.tld and have it point to domain.local.
0
 
LVL 37

Assisted Solution

by:ArneLovius
ArneLovius earned 225 total points
ID: 38807744
I usually use internal CA (the Windows one works just fine) for requirements such as 802.1x and internal only web sites/services as you can push the CA root certificate to all domain joined clients through GPO, in your case you could also push the CA rot certificate out to the other domain computers as well.

Using a private certificate has the advantage of not costing anything (bar the maintenance of a CA server) and allows you to use private certificates for anything else that you need internally, this could be for web interfaces on copiers/printers/wireless access points etc.
0

Featured Post

What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
Seizing the Operation Master Roles in Windows Server 2016 in case of FSMO holder failure.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question