Domain Rename or other options?

Yort
Yort used Ask the Experts™
on
Today, I just took on a new client running SBS2011. The prior IT firm setup their domain as xxx.local. As of 11/01/2015, their UCC SSL certificate will no longer be valid because it will no longer support .local domains. How do I rename the domain to a .com or are there other options available?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Scott CSenior Engineer

Commented:
You don't need to rename the domain.

Just get a new certificate with the correct external url.

mail.domain.com; autodiscover.domain.com; etc....

You then configure your DNS for the external name with the internal IP address.

Renaming a domain would be a nightmare and I believe it is unsupported.

The company I work for just bought another company where they did some Exchange installs with the exact same issue.

I'm just having them buy new certs with the correct SANs and do the proper configuration.

Author

Commented:
@ScottCha - This sounds promising. Can you please provide more detailed instructions on the DNS configuration portion? Do you have a link or step-by-step guide for this?

Thanks!
Scott CSenior Engineer

Commented:
Yes, I'm pulling up my OneNote right now.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Scott CSenior Engineer

Commented:
I think that's about it.  The above information has me gotten 2 servers working with new certificates and the domain is still .local.

Author

Commented:
@ScottCha - Thanks for the info. I will look it over for the next day and respond back. Man, this looks like a ton of work.
Scott CSenior Engineer

Commented:
The reading is the hard work.  After I did my first one, the second was done in less than 30 minutes.  That is after I fixed the autodiscover URL that I missed.

Just take your time and you'll be fine.

Certificates always seemed like black magic, even when I was an Exchange Engineer for MS.  Once I got out in the real world and HAD to figure them out, they aren't so bad.

Author

Commented:
Thanks for the encouraging words, ScottCha.
Cris HannaSr IT Support Engineer

Commented:
To the author.  You DO NOT need to do all this work.  Make sure that the SBS server has UR4 installed. Then from the SBS console, run The trusted third party certificate wizard. Specify that you want to renew.  This will generate the required CSR.  Then get your new cer. And install it using the same wizard.  The CSR  will not have the .local info in it

Author

Commented:
To everyone...I apologize for seemingly abandoning this question. I have had to travel all but one day since posting my original question. I am again heading back on the road for another three weeks. During this travel time, I will try to address the issue based on the suggested solutions. I will post back as soon as I can.

Author

Commented:
Thanks.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial