you can create a yourdomain.com zone in your dns create a mail.yourdomain.com a and mx record and then issue a cert to the mail.yourdomain.com name instead of the mail.domain.local. -----Original Message----- From: exchangelist-bounce@xxxxxxxxxxxxx [mailto:exchangelist-bounce@xxxxxxxxxxxxx]On Behalf Of Ara Avvali Sent: Thursday, April 27, 2006 2:32 PM To: exchangelist@xxxxxxxxxxxxx Subject: [ExchangeList] https based oma on .local domains? Good afternoon everyone, Since our internal domain is .local based and certificate is assigned to mail.domain.local, we get warning and click "YES" on OWA which is fine. But this stops rpc/http work so I am wondering if it is going to cause problem for OMA/https. Can I use https for oma in this scenario or have to go with http? Appreciated Exchange 2003 sp2 on 2003 Sp1 -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.385 / Virus Database: 268.5.0/325 - Release Date: 4/26/2006 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.385 / Virus Database: 268.5.0/325 - Release Date: 4/26/2006