Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

Thread Info
  • State Suggested Answer
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 17 subscribers
  • Views 697 views
  • Users 0 members are here
Options
Suggested

Changing Domain Names

Dave Goodrich

We are going to be changing our domain name next year due to federal requirements. We must move to a .gov domain name in order to communicate with state and federal agencies. Our AD domain name will change, along with our email server domain. 

In order to do this what changes are required with Sophos Email? I am concerned there are more changes required than the AD sync and domain information in general settings.

Has anyone done this and are there any best practice for making the change?

Thanks,

Dave

Parents
  • 0

    A few questions: Overall it is not a difficult process but depends on your setup.

    1. Are you setting up a completely new tenant, assuming you are M365?

    If setting a completely new tenant then setup AD Sync for the tenant so mailboxes are created 

    Setup MailFlow or Gateway for the new domain. This allows you to keep accepting email for both domains. Remember Sophos doesn't license domains, it licenses mailboxes so you could have multiple domains tied to one tenant.

    2. If not, are you adding just an Authoritative Domain in M365?

    I've setup multiple domains in a single tenant and send/receive for those domains. Secondary domains become alias addresses to the primary domain.

    I would suggest contacting your Sophos SE and maybe engaging our Professional Services org to assist.

    /Tom

  • 0 in reply to Tom Foucha

    We do not use M365. Our current domain is a .org and we are moving to a .gov. Our email is inhouse on Zimbra and we use Sophos email gateway for both incoming and outgoing mail traffic. Currently, our users are sync'd with Sophos via AD Sync. We are still questioning if our internal domain, AD, even needs to change as our users do not require the right side of their email to login to the network.

    How do I find our SE?

    DAve

  • 0 in reply to Dave Goodrich

    OK, so your MX record points to your on-premise Zimbra server probably via a NAT address on your firewall. Simply put then add the .gov to your Zimbra server as an accepted domain and point it to the current MX address. I can't address your internal AD domain question but in order for mailboxes to synch correctly you will need to setup synch for the .gov domain.

    Good question on how to find your SE? Send me your company name, location to my email address tom[.]foucha@sophos[.]com

Reply
  • 0 in reply to Dave Goodrich

    OK, so your MX record points to your on-premise Zimbra server probably via a NAT address on your firewall. Simply put then add the .gov to your Zimbra server as an accepted domain and point it to the current MX address. I can't address your internal AD domain question but in order for mailboxes to synch correctly you will need to setup synch for the .gov domain.

    Good question on how to find your SE? Send me your company name, location to my email address tom[.]foucha@sophos[.]com

Children
Unfiltered HTML