Yeah you'll have to set up a new Forest alright as if you created another domain within the law library.local it is still part of the same forest and therefore falls within the same security boundaries. If you are only going to have the forest internally used i.e. Nobody connecting to it etc from the outside world then you don't need to register a DNS name but when you are creating the new forest it will ask you for the name of the forest, it will need to be unique on your network.
Building a separate forest for internal use. Nobody will be connecting to it from outside. I want the naming to be separate and also different security boundaries. Just want to make sure I don't need to register a DNS name for this.
As far as I'm aware I just need to create a unique name (within the network for the forest, is this correct?)
I have the 2012R2 server deployed from template. I'll go through creating it and then adding it to a new forest anything else I need to take into account
A smaller question:Is it worth doing this through Azure instead looking to create a new internal forest with a new domain for 60 pcs thanks 👍👍