Hi I am working with a very basic Active Directory setup, which unfortunately is name mydomain.local which means I can't get an SSL cert. I bought one for an external domain mydomain.click. I basically created a DNS zone in AD DNS for mydomain.click and point it at the relevent IP. On my test environment this works. But are there any unintended problems from doing this? Or better solutions?
Asked
Active
Viewed 73 times
1 Answers
1
Yes, the certificate Common Name must match the website name.
You've kind of made this harder for yourself and you've spent money that you didn't need to spend. You could have issued a self-signed certificate for your internal web site and deployed that self-signed certificate to your domain clients with Group Policy.
You could also have set up your own internal Certificate Authority for this purpose.
To answer your question, yes you can create a DNS zone for this.
joeqwerty
- 111,849