I work in a corporate environment which has recently been merged with another like business. There is an ongoing project to take our legacy Windows Servers and migrate them to an entirely new Windows Domain. From a logistics standpoint, I'm thinking we'll have to re-do ALL of our IIS SSL certificates, when the machine is migrated. I'm also assuming all the fully qualified domain names will no longer be route-able.
Would there be any way to migrate these machines to a new domain, but still keep the existing DNS records (and essentially, domain internally) so we wouldn't have to change our SSL certificates?
A consulting company is doing the migration, and I'd MUCH rather offer them a solution that wouldn't have me renewing about 80 SSL certs.
Thank you!
Best Answer
If your old domain is going away, then I think one option would be to create a new DNS zone on the new Active Directory domain controllers with the name of your old domain. Then add the A records to the new zone. After your IIS servers are in the new domain, point their DNS to the new AD DNS servers and lookups to the old domain should resolve properly.