It sounds like you're actually involved in a mail migration/cutover then from hosted to on-premise, but I think you're on the right track with this. Yes, you do need DNS resolution internally somehow to resolve xxx.ca, which it sounds like you also need to migrate from hosted to on-premise at the same time as your mail migration?
If you're not migrating DNS, then you likely already have resolution from internal, or your machines wouldn't be getting their mail now. In that case, just point your internal autodiscover to the external name via a cname and you should be set for resolution. The rest of it is all in the Exchange configuration of internal/external urls. Check this out: http://blogs.technet.com/b/exchange/archive/2014/02/28/namespace-planning-in-exchange-2013.aspx -Bonnie -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Craig Wardlaw Sent: Wednesday, May 07, 2014 12:12 PM To: [email protected] Subject: RE: [Exchange] new Exchange server I don't think I explained what I see as a problem. Right now all users have [email protected] via hosted email . I have added the xxx.ca to the accepted domains on the exchange, added a rule to the firewall to direct any email sent to the xxx.ca domain to the exchange box but I read that the certificate issuers will no longer allow an xxx.local address on the cert. So I will have devices that will look for the internal autodiscover etc when inside the firewall but will need to look for the external when not on the network( blackberrys etc, not necessarily domain members) . So if I set up a dns zone for the xxx.ca on my internal dns to point to the exchange for autodiscover and OWA etc , then I will be able to use only the external url for both internal and external.So then can I just get a wildcard cert for the external domain name Sorry if this is a bit long winded or if I have the completely wrong end of the stick on how to accomplish this Cheers Craig -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Kennedy, Jim Sent: Wednesday, May 07, 2014 2:10 PM To: [email protected] Subject: RE: [Exchange] new Exchange server This is what I have been trying to figure out how to say since the OP. Just couldn't get the words right. -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Miller Bonnie L. Sent: Wednesday, May 7, 2014 1:58 PM To: [email protected] Subject: RE: [Exchange] new Exchange server Maybe I'm misunderstanding, but are you actually using xxx.local for internal e-mail addresses, or do all of your users have external addresses assigned that have the xxx.ca domain name attached somewhere? If the latter, just use the external name only and publish that name to all internal users and locations--no domain rename required. -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Craig Wardlaw Sent: Wednesday, May 07, 2014 10:11 AM To: [email protected] Subject: [Exchange] new Exchange server I am currently setting up a single exchange server to replace hosted email and after doing some reading it looks like getting the appropriate cert for it may cause more issues. I have the internal domain xxx.local and the external domain xxx.ca. >From Google I see that I will no longer be able to get the internal and >external domains on the cert and there are a couple of ways to mitigate the >problem, I'm not a fan of migrating the domain considering I'm pretty much the >only IT person. Just wondering how some of the list people are or have dealt with this Thanks Craig
