Office web Apps server Lync 2013 Certificate

Hi,
 I'll be installing Office web app (OWA) server with Lync 2013 std edition. External users access is disabled but federation is enabled, mean OWA will be exposed to internet as wabweb.contoso.com, the interal host name of OWA server is owa.contoso.local
Does the certificate on the on OWA server need to have owa.contoso.local and certificate principle name and wabweb.contoso.com as SAN? or only owa.contoso.local is enough?

It really depends on how you publish the server to the internet. You have some options. If you are publishing this via a reverse proxy, internally you would have a private cert with .local on it and the public name on the reverse proxy.  If you are
punching a firewall hole/NAT directly to the server your best option is to use a public cert on that server directly.
That all said, personally I like to make both the internal and external farm URL the same, and use a public cert on the server (if no reverse proxy is in play).  So I would actually enter the OWAS Farm as wabweb.contoso.com in topology builder, than
when creating the farm via PowerShell make that both the internal and external URL and get a certificate with a single name on it of wabweb.contoso.com.
Richard
Richard Brynteson, Lync MVP | http://masteringlync.com | http://lyncvalidator.com

Similar Messages

  • Load balancing and HA for office web apps server Lync 2013

    Hi,
        I have 12000 users, 3 FE servers in a pool, 2 edge server in a pool, HA required, IM/presence, A/V, WEb conferencing required. plan to have 2 office web apps server a farm with HA, below are my queries
    1.  which type of load balancing i need....DNS or HLB for office web app servers? if its HLB then is it mandatory?
    2. i have already 2 HLB for FE pool .. one for externa url , one for internal URL...can i use the same HLB for office web app servers ?
    3. one more question regarding EDGE pool load balancing, can i use the same HLB  in EDge pool also that i am using for FE pool?

    Hi,
    1.  which type of load balancing i need....DNS or HLB for office web app servers? if its HLB then is it mandatory?
    WebApps runs on https and you cannot load balance http traffic using DNS load balancing. you need to have a HLB.
    2. i have already 2 HLB for FE pool .. one for externa url , one for internal URL...can i use the same HLB for office web app servers ?
    you can use the same HLB for that
    3. one more question regarding EDGE pool load balancing, can i use the same HLB  in EDge pool also that i am using for FE pool?
    for that one, you probably need a separate HLB.  
    Z-Hire -- Automate Lync User Account creation process ( AD / Exchange / Lync )

  • Office web Apps server Lync 2013

    Hi All,
      I have logged onto my Volume licensing site and could not search Office Web Apps servers for download?? I wonder how do i download it?

    Hi channavera,
    Office Web Apps Server was removed from the Microsoft Download Center.  Now it only was available for
    download under Volume Licensing agreements.  For more information please read the FAQ below or visit the site Volume Licensing
    Service Center.
    FAQ
    Why is Web Apps Server being removed from the Microsoft Download Center?
    VLSC is best suited as the location from which to serve all customers according to their agreements with Microsoft.
    What about existing installations?  Do I need to re-license them?
    No.  Web Apps Server installations and/or downloads that occur before 11/24/14 will continue to be licensed for free viewing.
    Will there be an evaluation version for Developers and IT Pros?
    Evaluation availability will continue on MSDN for subscribers.  Additionally, Volume License agreements allow for product evaluation.
    From
    http://blogs.technet.com/b/office_sustained_engineering/archive/2014/10/22/web-apps-server-removal-from-download-center.aspx
    Best regards,
    Eric

  • Office Web Apps server / Lync server 2013

    Hi I have installed a Lync 2013 Server and Office Web Apps Server. Configured Lync topology, Office Web Apps farm and certificates.
    However when i start the services i get this error message in the log saying Office Web Apps discovery failed.
    Event ID:      41033
    Description:
    Office Web Apps Server (WAC) discovery failed, PowerPoint content is disabled.
    Attempted Office Web Apps Server discovery Url:
    Received error message: Invalid Uri syntax for WAC configuration
    The number of retries: 1,
    Cause: Office Web Apps Server may be unavailable or network connectivity may have been compromised.
    Resolution:
    Check HTTPS connectivity from this box to the Office Web Apps Server deployment using the discovery Url.
    I can access the OWAS server Url from Lync Server
    Connecting to the HTTPS discovery URL is working fine, and brings up the XML-page (after i click "show all content").
    The two servers are located on the same internal network, DNS resolves fine both ways, and no firewall rules blocks any connections between the two. Can anyone please help me figure this out?
    Only identical problem found online is here (Invalid Uri syntax for WAC configuration):
    http://blogs.technet.com/b/dodeitte/archive/2012/09/10/office-web-apps-server-amp-lync-server-2013.aspx
    He resolved the problem by assigning a new OAuthTokenIssuer certificate. This however did not fix the problem in my case.
    Regards
    Sverre A. Veel

    Hi,
    In addition, please make sure you have restarted front end and office web apps server after reissuing the certificate.
    Kent Huang
    TechNet Community Support

  • Office Web Apps Server June 2013 Cumulative Update Excel Freeze Pane and Hide/Un-hide Feature Missing

    Hi,
    I have recently updated the Office Web Apps Server to the June 2013 Cumulative Update (KB2817350) which was published with the new features that allow rendering of freeze pane, hide/un-hide the excel worksheet and row/columns, Header
    Row Snapping, Sorting, Data Validation and Autocomplete. i have followed the TechNet article (http://technet.microsoft.com/en-us/library/jj966220.aspx)
    to update the office web apps server. Current setup is a SharePoint 2013, SQL 2012 and Office Web Apps server. All server are installed on Windows server 2012.
    3vild3vil

    Hi,
    Sorry to inform you that these new features are specific to cloud Excel Web App in both SkyDrive and Office365. There is no update available for on-premise Excel Web Apps installed locally
    yet. Thank you for your understanding.
    http://blogs.office.com/b/microsoft-excel/archive/2013/06/26/we-ve-updated-excel-web-app-what-s-new-as-of-june-2013.aspx
    Miles LI TechNet Community Support

  • Using Office Web Apps Server 2013 without SharePoint, Lync, or Exchange

    I'm trying to use the Office Web Apps Server 2013 as an online viewer of Office documents (using the Online Viewer). I've set up a New-OfficeWebAppsFarm with editing disabled, no UNC paths, and an external URL with SSL Offloaded to my Load balancer.
    I don't want to use it with SharePoint, Lync or Exchange. Just use it to view documents online (similar to Google Docs Viewer).
    However, when I point the Office Web Apps Server to a remote file online (e.x. a DOC hosted on a website), I get an error opening it.
    I've checked the health statuses of my OWA Servers, and it says Healthy.
    When I check the Event viewer of my OWA Server, I see 501 WOPI errors:
    Could not contact WOPI End Point. Error details - 'NotImplemented url - https://sample-owa-url.com/oh/wopi/files/@/wFileId?wFileId=http%3A%2F%2Fwww%2Eimr%2Esandia%2Egov%2Fimrtemplate%2Edoc&access_token=1&access_token_ttl=0'.
    It seems OWA is trying to connect to the path /oh/wopi/files....  but the server is responding NotImplemented.
    What do I have to get this to work?
    Thanks for any help!

    Did you ever find an answer? I have the exact same Issue.
    I have 2 WAC servers behind a load balancer with SSL offloaded to the LB. Both servers report healthy with Get-OfficeWebAppsMachine
    Works fine with SharePoint 2013.
    When I use it with a remote file, served using HTTP with no authentication (anonymous), I get a generic "Sorry there was a problem and we can't open this document..." error.
    In the ULS and event viewer, I see the WOPI error and 501 which basically says:
    Could not contact WOPI End Point. Error details - 'NotImplemented url - https://sample-owa-url.com/oh/wopi/files/@/wFileId?wFileId=http%3A%2F%2Fwww%2Blah%2Ecom%2FWordDocument%2Edocx&access_token=1&access_token_ttl=0'.
    I also sometimes see this:
    <HealthMessage>WordViewerWfeWatchdog reported status for WebWordViewer in category 'WfeRedirect'. Reported status: /default.aspx returned a 404, which means that we didn't have where to redirect.</HealthMessage> 
    The very interesting part s that I have a dev server, with OWA (WAC) installed, thats not going through a LB and does not use SSL, that works just fine with the same public url word document.

  • High availability for Lync 2013 persistent chat server and office web app server

    I have 1500 users, need HA in primary data center and DR also. looking for HA and DR solution for persistent chat server and office web app server.
    is below correct?
    1. 2 persistent chat server in a pool of primary data center and 1 in DR.  can this be reduced or any changes?
    2. 2 Office web app server in a pool of primary data center and 1 in DR.  can this be reduced or any changes?
     also do i need HLB for both roles?

    1) In Lync Server 2013, there are improvements in both high availability and disaster recovery:
    High availability improvements: SQL Server mirroring is used to provide high availability for the Persistent Chat Server content database and Persistent Chat compliance database within a data center (in-site).
    Disaster recovery improvements: Persistent Chat Server supports a stretched pool architecture that enables a single Persistent Chat Server pool to be stretched across two sites (that is, a single logical pool in the topology, with servers in the pool physically
    located across two sites). SQL Server Log Shipping is used for cross-site disaster recovery.
    For more information about high availability and disaster recovery, see
    Configuring Persistent Chat Server for High Availability and Disaster Recovery in the Deployment documentation.
    2) for HA & DR, you can 2 Office web app server in a pool of primary data center and 1 in DR. and You will need HLB for office web app servers
    http://blogs.technet.com/b/meamcs/archive/2013/03/27/office-web-apps-2013-multi-servers-nlb-installation-and-deployment-for-sharepoint-2013-step-by-step-guide.aspx
    Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
    Mai Ali | My blog: Technical | Twitter:
    Mai Ali

  • Office web apps server (2013) certificate issue

    If the name of the farm is different from the name of the individual office web apps server machine is there any way to deploy office web apps server with a single domain SSL certificate? 
    My office web apps server is working, but reporting itself unhealthy, apparently due to the fact that the SSL cert is for the name of the farm and that is different from the name of the machine. 
    Errors are 2004, 1004, 2156, 1156, "could not establish trust relationship for the SSL/TLS secure channel"
    Going to the farm's discovery URL in the browser works fine, but going to the machine name (plus /hosting/discovery) gives an SSL error because the name of the farm is not the same as the name of the machine. 
    Is there any way to make it use the farm's URL instead of the machine's URL in its own internal watchdog operations? Or any way to make it use a self signed certificate on the machine's URL for it's own health checks and still use the legitimate purchased
    SSL cert for user access? Or any other way you can think of to use a $5.99/yr single domain certificate instead of a $89.99/yr multiple domain certificate? 
    Bill Coulter

    I am experiencing this same issue.  The OWA server has sp1 installed.  In the OWA event logs I am getting health fails for 2 events and as best I can tell it seems to be related to this issue.
    We are also using a single godaddy certificate with a non machine name FQDN.  Both internal and external url's of the OWA farm are set to this same name.
    The problem only seems to occur with the 'Proofing Watchdog' (See events below).
    Has anyone got any update on whether this is supposed to be fixed ?
    <?xml version="1.0" encoding="utf-16"?>
    <HealthReport xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
      <HealthMessage>ProofingWatchdog reported status for Proofing in category 'PositiveWeb'. Reported status: Spelling attempt exception for "good": System.Net.WebException: The underlying connection was closed: Could not establish
    trust relationship for the SSL/TLS secure channel. ---&gt; System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
    <?xml version="1.0" encoding="utf-16"?>
    <HealthReport xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
      <HealthMessage>ProofingWatchdog reported status for Proofing in category 'NegativeWeb'. Reported status: Spelling attempt exception for "baad": System.Net.WebException: The underlying connection was closed: Could not establish
    trust relationship for the SSL/TLS secure channel. ---&gt; System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
       at System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken message, AsyncProtocolRequest asyncRequest, Exception 

  • Office Web Apps Server SSL Certificate

    Hi
    I am deploying Office Web App Server for Integration with Lync 2013. I opted for secure communication with SSL Certificate. I want this server available to internal and external users.
    I am little confused over CA for Issuance of SSL Certificate. On most of the forums, I found SSL Certificate to be issued by Internal CA. If so, will this also work for external users?
    If not, then plz guide me for Generating Certificate Request on Office Web App Server to be submitted to External CA for Issuance of Certificate.
    Regards.

    Hi,
    Thanks for your posting in this forum.
    I have moved this thread in Lync Server 2013-Management, Planning, and Deployment forum for more dedicated support.
    Thanks for your understanding.
    Best Regards,
    Wendy
    Wendy Li
    TechNet Community Support

  • Office Web Apps Server Certificate For External

    Hi guys,
    I am requesting a DigiCert certificate for my environment Exchange 2013.
    Can I include the SAN name for Office Web Apps server, such as externalowa.domain.com in to the Exchange generated certificate?
    From theory wise it seems logic, but kind of uncertain.
    Thanks and Regards,
    Low.

    Hi Nithyanandham,
    Thanks for the prompt reply
    I will just list down what I did to be more clear.
    I generated a CSR from Exchange 2013 with the following
    Webmail.domain.com - for Outlook Web Access, Outlook Anywhere, ActiveSync
    Autodiscover.domain.com - for AutoDiscover purposes
    Can I include the externalowa.domain.com, which is for Office Web Apps server
    Reason is because the Exchange server and Office Web Apps server is located differently. Am I doing the correct way?
    Thanks and Regards,
    Low

  • Office Web Apps server for Lync DNS question

    We are going to deploy an Office Web Apps server for our Lync 2013 clients, available internally and externally. We do not have a split-horizon DNS so it is not possible for wac.foo.com to have a different IP for internal vs. external clients. What is the
    best setup for our scenario? It looks like we can only add one address in the Lync topology builder, so would it make sense to send everybody to the external wac.foo.com regardless of whether they are internal vs. external? Or is there a better option?
    Thanks,
    Matt

    It might be easiest to use pin-point DNS.  Create an internal zone called wac.foo.com with a blank A record that points to the internal IP address of the OWAS/WAC server.  This way, wac.foo.com will resolve to the correct
    internal address, but you're not setting up a split zone for the rest of foo.com.
    This trick can come in handy for publishing other items without recreating the entire zone, it's a nice one to keep in your back pocket.
    Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
    SWC Unified Communications

  • Using Office Web Apps Server with SharePoint Foundation 2013

    I want to know whether I can configure Office Web Apps server to edit Excel documents on a SharePoint Foundation 2013 site.
    I came across a TechNet article that states that "When used together with SharePoint Server 2013, Office Web Apps Server provides updated versions of Word Web App, Excel Web App, PowerPoint Web App, and OneNote Web App".
    However, later in the same article, it states "If your organization licenses Office 2013 through a Volume Licensing program, you can enable Office Web Apps editing for SharePoint 2013 on-premises" (without mentioning Foundation or Server).

    Hi Lemesnil,
    The Office Web App server should support the Edit licenses for SharePoin Foundation 2013, Office Web App is free to
    download, you can also try installing and configuring in a test environment, see more from the below article applied to SharePoint Foundation 2013.
    http://support.microsoft.com/kb/2886404/en-us
    http://blogs.technet.com/b/speschka/archive/2012/12/31/enabling-licensing-and-editing-for-office-web-apps-in-sharepoint-2013.aspx
    Anohter useful article aobut how to license Office Web App server, you can take a look.
    http://blogs.technet.com/b/volume-licensing/archive/2013/05/22/how-to-license-office-web-apps-server.aspx
    Thanks
    Daniel Yang
    TechNet Community Support

  • Installing Office Web Apps Server 2013 fails with app-crash during install.

    Hi Folks,
    I am trying to install Office Web Apps Server 2013 with SP1 on Server 2012 R2.  The installation gets half way through then crashes (it just says a problem has occurred).
    The Event log only contains the message:-
     MsiExec.exe version .5.09....
    Faulting module name: Kernelbase.dll
    Exception Code 0x306d7363, Faulting process id: 0x774.
    Does anyone know how to install this product on Server 2012 R2?

    Hi,
    I’m afraid that this case is off-topic in this forum, About installation of Office Web Apps Server 2013, I suggest you posting your case to
    SharePoint 2013 - Setup, Upgrade, Administration and Operations .
    Regards,
    Marvin
    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
    Click
    HERE to participate the survey.

  • Will Office Web Apps Server 2013 work with SharePoint 2013 sites hosted in SP2010 compatibility mode?

    We are planning a upgrade of a SP2010 farm to 2013. There has been a bit of customization so we wish to run the old sites on the new SP2013 platform in SP2010 compatibility mode.
    So my question is will Office Web Apps Server 2013 work with the old sites hosted in compatibility mode?
    I found a similar query from March 2014 found here 
    http://sharepoint.stackexchange.com/questions/93101/office-web-apps-2010-running-on-sharepoint-2013-for-compatibility-mode-sites/116281#116281 
    Has there been an update released to resolve this
    Cheers D

    Hi  ,
    According to your description, my understanding is that you need to know whether Office Web Apps 2013 is working with SharePoint 2013 sites which is in SharePoint 2010 compatibility mode.
    For my test, Office Web Apps 2013 with SharePoint 2013 sites which is in SharePoint 2010 compatibility mode is working fine.
    Thanks,
    Eric
    Forum Support
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Eric Tao
    TechNet Community Support

  • Office Web Apps Server 2013 issue

    Dear All,
    I am encounter problem when I try to open document from my browser. Prompt message will pop-out when it try to preview a document:
    "sorry, there was a problem and we can't open this document. If this happens again, try opening the document in Microsoft word"
    When I check in Event viewer, there is an error display:
    "Could not contact WOPI End Point. Error details - 'Unauthorized url - http:bla.bla.bla....."
    Kindly advise on how should I resolve this issue.
    Application Note:
    1. Windows OS: Windows Server 2012 R2
    2. Office Web Server 2012 SP1
    3. SharePoint Server 2013
    Thank you.

    Verify if you have configured correctly by checking the following post
    https://technet.microsoft.com/en-us/library/ff431687.aspx
    In case everything is correct, Please check the following post for similar issue
    https://social.technet.microsoft.com/Forums/sharepoint/en-US/f7be5f88-8c98-464e-8596-60956b5e98fd/sharepoint-2013-office-web-apps-problem-unable-to-openviewedit?forum=sharepointgeneral.
    http://blogs.technet.com/b/justin_gao/archive/2014/12/19/troubleshooting-error-event-id-8115-when-you-install-office-web-apps-server-2013-on-windows-server-2012-r2.aspx
    Note:Check with non Farmadmin account
    Please Mark it as answer if this reply helps you in resolving the issue,It will help other users facing similar problem

Maybe you are looking for