recently setup certificate services on a windows server 2008 internal network.
I setup certificate services, generated the certificate, put it in the domain's trusted certificate folder and applied the certificate as a group policy for computer > windows settings > security. The certificate manager is setup as standalone root.
The problem is that the domain is setup as one that doesn't correspond to a web domain. So we expose our exchange webmail on an external IP using virtual hosts. An external dns manager resolves A records for related subdomains on these external IPs.
When a user visits our HTTPS exposed webmail, or terminal services, he/she gets a warning about an untrusted certificate as the certificate specifies the internal domain (premiernic.com), not the external (premier.com.cy).
I would like the external domain name to be trusted in the same way, through group policy. How do I go about this?