Solved

Godaddy Certs don't Support .local anymore - what can I do to fix the certificate errors that pop up in outlook?

Posted on 2014-10-01
2
322 Views
Last Modified: 2014-10-01
I have a few client networks that were setup with the domain .local including exchange on those networks.  In the past I was able to get a cert with servername.domain.local and everyone could connect with outlook inside and outside of the network with no issues.

Now Godaddy is not supporting any local domains.  When one of the certs expired I just put in for mail.domain.com and autodiscover.domain.com.  OWA works with no issues and mail flow was not affected.  The issue now is that when anyone connects outlook to exchange a pop giving a certificate error for servername.domain.local

I don't want to rebuild the ad on these servers so they are all domain.com instead of domain.local - what are the work arrounds?  If I build a cert server on the network and create an exchange cert for servername.domain.local will outlook still give the warnings since it was a self created cert?

Any help would be greatly appreciated

Thanks
0
Comment
Question by:brandywine
2 Comments
 
LVL 22

Accepted Solution

by:
Nick Rhode earned 250 total points
Comment Utility
By default with a .local domain most likely your client access server, web services, and OAB directories are the .local.  You would simply update these to the external DNS name so they match your certificate.  

 You would create an internal DNS zone that matches your external.  Then on exchange you would update those services to reflect the change.

 You can check out this little informative article that has some powershell commands to change the services and what you need to restart in IIS to get them to work with a .local domain.

Redirecting Internal Names to Registered Domain
0
 
LVL 28

Assisted Solution

by:becraig
becraig earned 250 total points
Comment Utility
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
how to add IIS SMTP to handle application/Scanner relays into office 365.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now