locked
Renaming internal Domain name from .local to public domain name RRS feed

  • Question

  • Hello Experts,

    We have an ADDS infra with 4 domain controllers and 200 virtual servers spanning 2 data centres. around 250 users are authenticating from three offices and remotely through Citrix VDI(receiver).

    Our internal domain name is crest1.local which our customer doesn't feel comfortable. They have been told by someone that .local internal domain name would cause serious issues when an apple device is connected to domain and the public certificate authority will refuse a signed certificate for this domain. Is that true? We have already integrated AD with our financial applications, monitoring tool and many. However, customers want us to rename the internal domain name to match with our public purchased domain name crest1.com.au

    Please enlighten me if this is right move. Are we going to screw things up while renaming the domain?

    Regards,

    Auditya N 


    Auditya N

    Monday, April 11, 2016 9:38 PM

Answers

All replies

  • For  the compatibility with Apple, check this: http://www.mdmarra.com/2012/11/why-you-shouldnt-use-local-in-your.html

    To rename your AD domain, see that: https://technet.microsoft.com/en-us/library/cc738208%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

    You mainly need to check the compatibility of your applications like Exchange Server if you use it.

    Remark: Internal domain names are considered to be confidential so you should not shared them on the net.


    This posting is provided AS IS with no warranties or guarantees , and confers no rights.

    Ahmed MALEK

    My Website Link

    My Linkedin Profile

    My MVP Profile

    Tuesday, April 12, 2016 12:21 AM
  • Hello Ahmed,


    Thank you for your response. I have already went through the mdmarra.com link which says .local is not advisable. Our customer even sent this link to us. Is there any official link from Microsoft Technet that .local shouldn't be used?

    We do not have an on-premise exchange server in our infra. We are using Office 365 subscription and planning to integrate with AD sync soon.

    I am trying to convince our customer that using .local is not going to do any harm. I don't want to risk changing the domain name after all application deployment were completed and screw things up.

    Thank you.

    Auditya N

    Tuesday, April 12, 2016 12:30 AM


  • I am trying to convince our customer that using .local is not going to do any harm. I don't want to risk changing the domain name after all application deployment were completed and screw things up.

    Hi

     Then you should configure alternate UPN suffix for "crest1.com.au",check the article for details,

    https://technet.microsoft.com/en-us/library/cc772007.aspx

    Also if you need to rename domain name,you can rename.(already said you don't have Exchange,etc..on your current domain.)

    How Domain Rename Works ; https://technet.microsoft.com/en-us/library/cc738208(v=ws.10).aspx

    How to ; https://www.pluralsight.com/blog/software-development/rename-active-directory-domain


    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    • Proposed as answer by Jay Gu Monday, April 18, 2016 6:10 AM
    • Marked as answer by Amy Wang_ Thursday, April 21, 2016 1:12 AM
    Tuesday, April 12, 2016 5:43 AM
  • Hi Auditya,

    They have been told by someone that .local internal domain name would cause serious issues when an apple device is connected to domain and the public certificate authority will refuse a signed certificate for this domain. Is that true?

    >>>Yes, it is true.

    If the replies above have resolved your confusion, please mark it as answer.

    Thank you,

    Jay


    Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, April 18, 2016 6:10 AM