We are looking to add Mac clients to our current ConfigMgr 2012 R2 infrastructure. I currently have one HTTP Intranet only MP on the internal network, and one HTTPS Intranet/Internet MP in the DMZ (separate AD forest, and only accessible by DMZ/Internet clients). Since I don't have my internal MP configured for HTTPS or have it configured with an Internet FQDN:
1) Would it be advisable to just stand up an additional internal MP and configure it for HTTPS intranet/internet for the Macs? Would the intranet clients that have a certificate use that as well instead of the HTTP MP?
2) Would I need to use the same Internet FQDN on the internal MP that I have defined on the DMZ MP, or can they be different?