Solved

How can I get a certificate for my .local domain.

Posted on 2015-02-24
2
131 Views
Last Modified: 2015-04-23
I have recently migrated my exchange 2003 server to exchange 2010. It is still running on a .local domain with external email going to a .org domain. I purchased an SSL certificate for the .org domain and external email works with no issues. I am still getting certificate mismatch errors for internal outlook clients. I understand I am not able to purchase an SSL certificate for a .local domain. Is there a way to disable SSL for internal email or turn this feature off. I really don't need it for internal email to Outlook clients. I would prefer not to have to rename the domain since that may create other issues.

Thanks in advance for your help.
0
Comment
Question by:P Hurdle
2 Comments
 
LVL 34

Assisted Solution

by:Seth Simmons
Seth Simmons earned 250 total points
ID: 40629159
you need to configure your internal URLs to be the .org domain and not .local; you won't be able to get .local certificates in a few months anymore anyway
also, setup split dns

Configure Exchange Services for the Autodiscover Service
https://technet.microsoft.com/en-us/library/bb201695%28v=exchg.141%29.aspx?f=255&MSPPError=-2147217396

Windows - Setting Up Split DNS
http://www.petenetlive.com/KB/Article/0000830.htm
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 250 total points
ID: 40629418
You cannot get certificates with .local on them that expire after November 2015, so unless someone is selling certificates that have a six month life, then you cannot get one.

SSL isn't really optional for Exchange, you cannot turn it on or off within Exchange. Therefore a split DNS system and modify all of the internal URLs to the external host name is the best option.
http://semb.ee/hostnames2010

Simon.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Resolve DNS query failed errors for Exchange
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
how to add IIS SMTP to handle application/Scanner relays into office 365.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now