Best Practice for Naming Active Directory Forest and Domain

I am curious what naming convention folks are using for their Active Directory Forest and Domains.

I originally chose a Forest/Domain Name that we never registered or purchased, and was later bought by another entity.  Consequently, we need to rename our domain, and I found that using ourdomain.local would result in headaches down the road.  After careful consideration, I believe creating and moving to a child domain of the domain we currently own would be a best practice.  For instance, since we already own ourdomain.org and have public DNS records in place for that domain, I'd like to name the Forest/Domain ad.ourdomain.org and possibly add another domain down the road called do.ad.ourdomain.org for our District Office.

I have already explored the RENDOM utility.  Are there other utilities I will need?  What would be a good reference URL to use and follow for this process?
randaldstowellNetwork EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
At one time MS was suggesting to use .local domains but due to changes with SAN certificates, it is recommended to use an Internet registered domain name.  I would use a child-domain name (i.e. if you own widgets.com then use something link xyz.widgets.com).  You need to do this to ensure you do not have to deal with split-DNS.    It is also a good practice to create least number of domains (use rights delegations).
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.