Local SSL Certificates

We have a few .local SSL certs through GoDaddy. As of November 1st local certificates will be phased out. I replaced the .local certificates with .edu certificates with GoDaddy but now I need to make sure the server name matches the new certificate. I am not able to rename the server from server.domain.local to server.domain.edu because it's telling me that there is no domain controller for domain.edu. Any help with this domain issue or local SSL certificates would be highly appreciated.

Thank you
adlertechAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Cliff GaliherCommented:
In most cases you don't need to change the server name at all, no less the AD domain. The application using the certificate should have its own mechanism for defining its name. That's why your bank can secure its website without naming its server (more often a server farm) "www" ....web servers like apache and IIS don't care what the server name is. They simply present the certificate bound to the listening service so if DNS matches, all works.  So you have to work through whatever application was using the old certificate to fix the issue. Dot.local certificates were always a bad idea and were avoidable going back decades. Only now that is finally being enforced. So there's plenty of knowledge out there.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Dave HoweSoftware and Hardware EngineerCommented:
In cases where you want to use a .local for internal users, you can have a separate listener for internal users, and a non-local listener with a commercial cert for any Internet-facing services; with that true, the .local certs can be generated using the MS CA for free :)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.