I've got a design question considering a local domain name.
This question comes up with Exchange 2013 allowing only RPC/HTTPS and .local not being allowed on SSL certs from 2015.
Some of our customers don't have too much $ to spend on their IT infrastructure.
They also don't have an internal PKI/CA.
They don't have a TMG.
Furthermore they host "contoso.local" in their internal DNS and they host "contoso.com" at their ISP
How should the internal and external URLs be configured, one option is to set internal and external urls the same, so poiting to "contoso.com" URLs (without hosting contoso.com internal as domain)
What is best practise, how do other IT architects solve this?
And is in the above setup possible to keep internal urls to contoso.local and external urls to contoso.com (this requires 2 IIS exchange websites and a PKI) ?