I currently have a single exchange 2013 server. As part of this years upgrades to the domain we are looking to build in failover for all major services.
Currently i am looking at creating a DAG however i had a few questions i wanted to double check to make sure i am understanding the recommended setup properly.
I will be migrating to an exchange 2016 server before looking to create the DAG. I have been reading through this site http://msexchangeguru.com/2015/07/14/e2016allyouneed2/
so most my questions come from here.
Every datacenter should be a separate AD site so DAG should expended to 3 AD Sites - currently we are a single site domain. We were going to install a second Exchange 2016 in Azure with a VPN connection between azure and our head office. There was no plans to use a seperate site for azure, is this something i should do?
Microsoft has recommended to have separate namespace internalurl and externalurl for outlook anywhere and mapi/http so that separate authentication can be used for intranet (Kerberos) and internet (NTLM or Basic) connection. But it is only useful when we have internalurl which in not available on Public DNS. I have explained namespace requirement here. http://msexchangeguru.com/2015/06/09/e2013_2010_2007-casurls/
- My domain has a .local domain name (dont blame me), so i can no longer get a certificate to create both an external and internal domain name. Will i have any issues using mail.domain.co.uk for both internal and external? From reading i presume its just a security issue but i just want to make sure.
As we will only have 2 locations, i was planning on putting the witness on my internal domain so that if we lose internet connectivity the internal server still operates as the primary sever. However if we have a building disaster the Exchange server in Azure will only ever recieve 1 vote. Is there a way for me to "promote" it manually from failover to the main server?
Thanks in advance for any help.