Integrating Exchange 2013 & Lync Server 2013: can't use a certificate with Seth-AuthConfig
I'm trying to integrate Exchange and Lyn Server. One of the first steps is to bind a correct certificate to IIS on all of the CAS servers and set it as a main certificate in the global AuthConfig object. The certificate must be the same on all of the
CAS servers because the autodiscover.domain.local DNS record points to all of them, and Lync Server uses this FQDN to access Exchange servers. The thumbprint of this certificate must be specified in Set-AuthConfig command run on an Exchange server.
We have an internal enterprise CA. I generated a certificate on one of the CAS servers and bound it to all of the Exchange services. Then I exported it, imported it on the second CAS server and bound it to all of the services as well. Now Exchange correctly uses
it for OWA, for example, and IE gives no security warnings when I connect to OWA.
However, whenever I run Set-AuthConfig command on any server, it keeps telling me that
The certificate with thumbprint XXXX was found but is not valid for use with Exchange Server (reason: PrivateKeyNotAccessible).
The key IS accessible - I can export the certificate along with its private key. What's wrong?
Here's the answer.
It seems that the -Server switch in the Set-AuthConfig command is only used to specify where you want to look for the certificate with the given thumbprint. However, it's impossible to predict which Exchange server will actually perform the operation
(the Server switch doesn't influence it a bit). It could be ANY server, even a mailbox one with no CAS role at all. And, of course, another Exchange server has no access to the certificate store of the CAS server where the certificate is actually stored. It
was exactly the case in my environment.
So in order to enable this certificate you must import it on ALL of your Exchange servers. You need't (and even shouldn't) enable it for any services on your mailbox servers if you don't want to, just import it.
Similar Messages
-
Deploy Exchange 2013 , Lync server 2013 and shrepoint server 2013
Hi dears ,
I have a deployment requirement in which I have to plan for deploy Exchange 2013 , Lync server 2013 and SharePoint server 2013 on premise for 500 user and for one organization , now I have been asked to provide the software and hardware requirement
for this deployment .
so I wonder , is there any guide or link to find the hardware and software requirements for this deployment ?Hi,
You can refer to the link below about the hardware/system requirements for Lync Server 2013:
https://technet.microsoft.com/en-us/library/gg398438.aspx
Note: it is not supported to install Lync Server in the same computer with DC, Exchange Server and SharePoint Server.
If you want to deploy Lync Server, you’d better read the guide firstly before deploy it:
https://technet.microsoft.com/en-us/library/gg398616.aspx
For the deployment of Exchange 2013 and SharePoint 2013, you can also post case on Exchange and SharePoint forum, and there are more experts will help you:
Exchange 2013:
https://social.technet.microsoft.com/Forums/office/en-US/home?category=exchangeserver
SharePoint 2013:
https://social.technet.microsoft.com/Forums/office/en-US/home?category=sharepoint
Best Regards,
Eason Huang
Eason Huang
TechNet Community Support -
System Center Orchestrator 2012 Integration Pack for Lync Server 2013 release Date?
Hi,
I want to know about System Center Orchestrator 2012 Integration Pack for Lync Server 2013 release Date?
or Microsoft has already released it?
Amit SharmaHi,
I believe it will be around Q4. At the moment there isn't any updates on the release dates yet. So I suggest you to wait patiently.
Guowen Su
Cisco Certified Network Associate
Cisco Certified Internetwork professional - MPLS
Certified Information Systems Security Professional
Microsoft Partner Network 2011
Microsoft Certified Professional
Microsoft Certified Systems Administrator:Security
Microsoft Certified Systems Engineer: Security
Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration
Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
Microsoft Certified Technology Specialist: Windows 7, Configuring
Microsoft Certified IT Professional: Enterprise Administrator
Microsoft Certified IT Professional: Server Administrator
Certified Ethical Hacker
Computer Hacking Forensics Investigator
Certified Sonicwall Security Administrator
Microsoft Geeks -
Configuring Lync Server 2013 to be a partner Application for Exchange 2013
Hello Guys,
I just want to share my experience while configuring Lync server 2013 to be a partner Application for exchange 2013 sever.
As mentioned on technet you need to run Configure-EnterprisePartnerApplication.ps1 script that ships with Exchange 2013.
But when I tried to run the script as described on the technet article, I found it always fails with " the accepted domain is not valid"
I have checked my accepted domains many times and i found that there's no issues with my configured accepted domain.
So I started to review the script to find the issue and I found that the script was configured as below
$acceptedDomains = Get-AcceptedDomain ;
if ($acceptedDomains -eq $null)
WriteError ("There is no accepted domain so user can not be created.")
$acceptedDomain = $acceptedDomains[0].Name;
if($UseDomainController -eq $true)
$user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
else
$user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true;
which is totally wrong as below:
firstly it makes $AcceptedDomain variable to equal the Name of the accepted domain.
Not all customers configure the name of the Accepted Domain to be the Domain Name.
Secondly it makes $AcceptedDomain variable to equal the name of the first Accepted Domain.
The first domain may be not the default Accepted Domain.
So I have configured the script as below
$acceptedDomains = Get-AcceptedDomain | ? {$_.Default -eq "True"} ;
if ($acceptedDomains -eq $null)
WriteError ("There is no accepted domain so user can not be created.")
$acceptedDomain = $acceptedDomains.DomainName;
if($UseDomainController -eq $true)
$user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
else
$user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true;
I hope This help.
Thanks
Ahmed FouadHi,
This is helpful, thanks for sharing.
Best regards,
Belinda Ma
TechNet Community Support -
The CompileSPL.exe in the Lync Server 2013 SDK can't compile the application manifest file
My windows server version is 2012 standard, I deployed the lync server 2013 to my environment, and ran the lync server 2013 SDK on the front end pool. Today, I wanted to compile a application manifest file, but I got the warning that this app can't run on
your pc, to find a version for your pc, check with the software publisher.Hi,
The issue is related to Lync Server 2013, I suggest you ask for help from Lync Server 2013 SDK forum for better and accurate answer to the question.:
http://social.msdn.microsoft.com/Forums/lync/en-US/home?forum=communicationsserversdk&filter=alltypes&sort=lastpostdesc
Regards,
Mandy
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
How can I connect the phone network to LYNC Server 2013?
Greetings,
We have a working implementation of Lync Server 2013 (pc to pc), our objective is to connect lync to our phone central, receive and send calls from lync clients (pc, phone, etc), basically enterprise voice services.
I would like to know the following:
Hardware that I need for this beside the server.
Extra configurations that must be done.
If you could recommend me the hardware needed it would be helpful.You'll need a gateway typically. You can find a list of qualified IP gateways here: http://technet.microsoft.com/en-us/office/dn788945.aspx
I typically lean towards the AudioCodes Mediant line, though many here love Sonus as well. You'll need to pick a method to connect to your PBX before you begin, such as via a T1/E1 trunk, FXO ports, or a SIP trunk depending on what your PBX will
support.
You'll need to configure the PBX to route calls through the T1 towards Lync and vice versa. You'll also need to configure the gateway itself, so I'd go with a consultancy with experience here or purchase remote implementation support from the hardware
manufacturer.
On the Lync side, you'll need to configure dial plans, voice policies, usages, and routes:
http://technet.microsoft.com/en-us/library/gg398272.aspx
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
SWC Unified Communications
This forum post is based upon my personal experience and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
I am using LyncServer 2013 And my Question is :-
Export-CsArchivingData -
By using this Command-let Can i get the files or name of files transferred between 2 users
Whether it is stored in "LcsLog" database ?
If not weather Lync server saves the files (which users are sending to another users ) anywhere on file system, or not ?Doug Deitterick has a great blog posting that should answer your question: http://blogs.technet.com/b/dodeitte/archive/2013/04/24/archiving-options-in-lync-server-2013.aspx
The actual File is not archived in Lync, but the file name is and will be have either _p2P or _conf at the end of the name to indicate how it was transferred.
Please mark posts as answers/helpful if it answers your question.
Blog
Lync Validator - Used to assist in the validation and documentation of Lync Server 2013. -
SCOM 2012 R2 Integration with Lync Server 2013
Hi,
I am trying to configure SCOM 2012 R2 to work with Lync server 2013 standard edition. I have successfully installed and tested Lync Server 2013. But the problem is, I never worked on SCOM application before and I can not find any easy documents online. So
could you please help me and suggest any step by step guide for the same purpose!
BR,
AjitHi,
Glad to hear that you have solved the issue. For the second question, what did you want to do with the Windows Server (anything to do with Lync Server)? As it is another question, you can also post another case on Technet forum and more engineers will help
you solve the issue.
Best Regards,
Eason Huang
Eason Huang
TechNet Community Support -
Lync HP 4120 Sign in problems with Lync Server 2013
Hi, this is my second request for help, this with more information...
I`ll ready install the follow infrastructure: (I change the name of my organization for contoso)
Lync Server 2013 Installation with Enterprise mode with 1 front end : Pool: lync.contoso.com Front End: lyncfe01.contoso.com Back End: lyncsql01.contoso.com
I`ll ready install a PKI infrastructure with two tiers, the root offline and the subordnate ac.contoso.com
This with the defailt algorithm configuration RSA SHA1
My phones are HP 4120
In the Front End Server i configured the SCHANNEL registers:
EnableSessionTicket in 2
Send..etc in 0
Ok, the installation is ok, services are OK, Client login trough PC its OK, PSTN Configuration... (I can make a phonecall with the lync client of Office 365)
Commnd Checks:
When i run the command Test-CsPhoneBootstrap -PhoneOrExt 12345 -PIN 123456 -TargetFqdn lync.contoso.com
The result is:
Target Fqdn : lync.contoso.com
Target Uri : https://lync.contoso.com:443/CertProv/CertProvisioningService.svc
Result : Success
Latency : 00:00:09.0559615
Error Message :
Diagnosis :
When i run the command Test-CsPhoneBootstrap -PhoneOrExt 12345 -PIN 123456 for
check the DHCP the result is:
Target Fqdn : lync.contoso.com
Target Uri : https://lync.contoso.com:443/CertProv/CertProvisioningService.svc
Result : Success
Latency : 00:00:09.0559615
Error Message :
Diagnosis :
When i run the follow command
PS C:\Users\Administrator> $cred = Get-Credential
cmdlet Get-Credential at command pipeline position 1
Supply values for the following parameters:
Credential
PS C:\Users\Administrator> Test-CsClientAuth -TargetFqdn lync.contoso.com -UserSipAddress "sip:[email protected]" -UserCredential $cred
I got this:
Target Fqdn : lync.contoso.com
Target Uri : https://lync.contoso.com:443/CertProv/CertProvisioningService.svc
Result : Success
Latency : 00:00:00.3431783
Error Message :
Diagnosis :
But.. when i use the same command but i remove the -targetFqdn for check the Dhcp i got this:
VERBOSE: Workflow Instance Id 'bca95636-af7b-4b0a-b43d-dba259294b2d', started.
VERBOSE: Command line executed is 'Test-CsClientAuth -UserSipAddress "sip:[email protected]" -UserCredential $cred
-Verbose'.
Target Fqdn :
Target Uri :
Result : Failure
Latency : 00:00:00
Error Message : 10060, A connection attempt failed because the connected party did not properly respond after a period
of time, or established connection failed because connected host has failed to respond 194.90.8.20:5061
Inner Exception:A connection attempt failed because the connected party did not properly respond after
a period of time, or established connection failed because connected host has failed to respond
194.90.8.20:5061
Diagnosis :
VERBOSE: Workflow 'Microsoft.Rtc.SyntheticTransactions.Workflows.STClientAuthWorkflow' started.
Workflow 'Microsoft.Rtc.SyntheticTransactions.Workflows.STClientAuthWorkflow' completed in '5.62E-05' seconds.
Target web service Url not provided. Will have to extract it from authentication challenge.
An exception 'Unable to establish a connection.' occurred during Workflow
Microsoft.Rtc.SyntheticTransactions.Workflows.STClientAuthWorkflow execution.
Exception Call Stack: at Microsoft.Rtc.Signaling.SipAsyncResult`1.ThrowIfFailed()
at Microsoft.Rtc.Signaling.Helper.EndAsyncOperation[T](Object owner, IAsyncResult result)
at Microsoft.Rtc.SyntheticTransactions.Activities.GetSTSUriActivity.InternalExecute(ActivityExecutionContext
executionContext)
at Microsoft.Rtc.SyntheticTransactions.Activities.SyntheticTransactionsActivity.Execute(ActivityExecutionContext
executionContext)
at System.Workflow.ComponentModel.ActivityExecutor`1.Execute(T activity, ActivityExecutionContext executionContext)
at System.Workflow.ComponentModel.ActivityExecutorOperation.Run(IWorkflowCoreRuntime workflowCoreRuntime)
at System.Workflow.Runtime.Scheduler.Run()
at System.Net.Sockets.Socket.EndConnect(IAsyncResult asyncResult)
at Microsoft.Rtc.Internal.Sip.TcpTransport.OnConnected(Object arg)
'GetSTSUri' activity started.
Starting STS Uri Discovery...
ERROR getting STS Uri.
'UnRegister' activity started.
'UnRegister' activity completed in '3.12E-05' seconds.
VERBOSE: Workflow Instance ID 'bca95636-af7b-4b0a-b43d-dba259294b2d' completed.
VERBOSE: Workflow run-time (sec): 126.0548512.
The Real Problem is that my Lync HP 4120 Phone can't make a sign in, not from USB cable loging, nor with PIN authentification
When I try to make a login with the USB cable, I set the user and password and the phone says "Connecting to Lync".. "Downloading a certificate" ... "Installing certificate"... "Downloading Certificate"...
"Installing Certificate".. forever
When I try to make a login with PIN Authentification, the phone first displays the following:
Account used is not authorized, Please Contact your support team and then shows this:
An Account matching this phone number cannot be found. Please contact your support team.
The Pin authentification is enable
In the Lync Server Enable Kerberos Authentification, Enable Integrated Windows Authentification and Enable Certificate Authentification are enable
This is the configuration from DHCP
Starting Discovery ...
Sending Packet (Size: 284, Network Adapter: xx.xx.xx.xx, Attempt Type: Broadcast only)
--Begin Packet--
DHCP: INFORM (xid=130EA7FA)
DHCP: Op Code (op) = 1
DHCP: Hardware Type (htype) = 6
DHCP: Hops (hops) = 0
DHCP: Transaction ID (xid) = 319727610
DHCP: Seconds (secs) = 0
DHCP: Flags (flags) = 0000
DHCP: Client IP Address (ciaddr) = Xx.xx.xx.xx
DHCP: Your IP Address (yiaddr) = 0.0.0.0
DHCP: Server IP Address (siaddr) = 0.0.0.0
DHCP: Relay IP Address (giaddr) = 0.0.0.0
DHCP: Client HW Address (chaddr) = FC15B4###--End Packet--
Received Packet
Sender:xx.xx.xx.xx:67, Size:363
--Begin Packet--
DHCP: ACK (xid=130EA7FA)
DHCP: Op Code (op) = 1
DHCP: Hardware Type (htype) = 6
DHCP: Hops (hops) = 0
DHCP: Transaction ID (xid) = 319727610
DHCP: Seconds (secs) = 0
DHCP: Flags (flags) = 0000
DHCP: Client IP Address (ciaddr) = xx.xx.xx.xx
DHCP: Your IP Address (yiaddr) = 0.0.0.0
DHCP: Server IP Address (siaddr) = 0.0.0.0
DHCP: Relay IP Address (giaddr) = 0.0.0.0
DHCP: Client HW Address (chaddr) = FC15B4100289
DHCP: Server Host Name (sname) =
DHCP: Boot File Name (file) =
DHCP: Magic Cookie = 99.130.83.99
DHCP: Option Field
DHCP: DHCP MESSAGE TYPE( 53) = (Length: 1) DHCP ACK
DHCP: Server Identifier( 54) = (Length: 4) XX.XX.XX.XX
DHCP: Client Identifier( 61) = (Length: 0) ()
DHCP: SIP Server( 120) = (Length: 17) enc:0 lync.contoso.com (00046C796E6306756E69736F6E026D7800)
DHCP: Host Name( 12) = (Length: 0)
DHCP: Vendor Identifier( 60) = (Length: 0)
DHCP: Param Req List( 55) = (Length: 0) 0 0
DHCP: Vendor Info( 43) = (Length: 86) MS-UC-Clienthttpslync.contoso.com443%/CertProv/CertProvisioningService.svcÜNAP (010C4D532D55432D436C69656E7402056874747073030E6C796E632E756E69736F6E2E6D78040334343305252F4365727450726F762F4365727450726F766973696F6E696E67536572766963652E737663DC034E4150)
DHCP: End of this option field
--End Packet--
Result: Success
DHCP Server : xx.xx.x.xx.
SIP Server FQDN : lync.contoso.com
Certificate Provisioning Service URL : https://lync.contoso.com:443/CertProv/CertProvisioningService.svc
thanks for all, hope somebody can help me with this problem.. i am going crazy...Hi, i connected the Lync Phone to another switch and i update the firmware to the newest firmware and i got the same problem..
The lync phone download the certificate but cant install it and the still the same error with the SIP login
An Account matching this phone number cannot be found. Please contact your support team. -
Contact Groups in Lync Server 2013
HI,
I have deployed the Lync 2013 server . I can successfully login to Lync client 2013 using lync server 2013. But i wan to create a group list/group on server side and all clients/user i will add in this list/group. After login to Lync client this group
will show on all the user on client side. In office Communicator 2007 R2 i had created the same requirement. But in lync 2013 server i did not find this kind of option.
Help me on this
ThanksI would recommend you combine Exchange Server and PowerShell script.
You can put all AD users enabled for Lync Server to a Distribution Group, then add this group to a reference account. Export the contact information to other Lync users.
You can refer to
http://charlesulrich.blogspot.com/2013/03/lync-server-2013-bulk-updating-contact.html.
Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality,
safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
Lisa Zheng
TechNet Community Support -
Hi,
I am trying to Configure Mirroring in Lync server 2013, when in am selecting Install Database in Topology builder im able to install the Database in Principal but failing while installing the Mirroring following the detail.
▼ Install-CsMirrorDatabase Failed
└ Connection: Data Source=BPDBLSQWMV01.domain.com\IMPRINCIPAL;Failover Partner=BPDBLSQWMV02.domain.com\IMMIRROR;Initial Catalog=xds;Integrated Security=True 23-01-2014 22:53:34
└ ▼ InstallMirrorDatabaseCmdlet.StartMirroring 23-01-2014 22:53:34 Failed
└ Error: The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)
▼ Details
└ Type: COMException
└ ▼ Stack Trace
└ at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode, IntPtr errorInfo)
at System.Management.ManagementScope.InitializeGuts(Object o)
at System.Management.ManagementScope.Initialize()
at Microsoft.Rtc.Management.Deployment.MirrorUtils.GetSqlServerAccount(String server, String instanceName)
at Microsoft.Rtc.Management.Deployment.TopologyParser.PopulateDatabasesForSqlInstance(ISqlInstance sqlInstance)
at Microsoft.Rtc.Management.Deployment.TopologyParser.FindDatabasesForMachine(IMachine machine)
at Microsoft.Rtc.Management.Deployment.TopologyParser.FindDatabasesForFqdn()
at Microsoft.Rtc.Management.Deployment.TopologyParser.GetDbListToMirror()
at Microsoft.Rtc.Management.Deployment.TopologyParser.get_DbInfoList()
at Microsoft.Rtc.Management.Deployment.InstallMirrorDatabaseCmdlet.StartMirroring()
at Microsoft.Rtc.Management.Internal.Utilities.LogWriter.InvokeAndLog(Action action)
23-01-2014 22:54:16 Error
└ Error: An error occurred: "System.Runtime.InteropServices.COMException" "The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)" 23-01-2014 22:54:16 Error
Firewall is turned off and can able to configure Mirroring Manually in SQL Server by creating a test database.
▼ Install-CsMirrorDatabase Failed
└ Connection: Data Source=BPDBLSQWMV01.domain.com\IMPRINCIPAL;Failover Partner=BPDBLSQWMV02.domain.com\IMMIRROR;Initial Catalog=xds;Integrated Security=True 23-01-2014 22:53:34
└ ▼ InstallMirrorDatabaseCmdlet.StartMirroring 23-01-2014 22:53:34 Failed
└ Error: The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)
▼ Details
└ Type: COMException
└ ▼ Stack Trace
└ at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode, IntPtr errorInfo)
at System.Management.ManagementScope.InitializeGuts(Object o)
at System.Management.ManagementScope.Initialize()
at Microsoft.Rtc.Management.Deployment.MirrorUtils.GetSqlServerAccount(String server, String instanceName)
at Microsoft.Rtc.Management.Deployment.TopologyParser.PopulateDatabasesForSqlInstance(ISqlInstance sqlInstance)
at Microsoft.Rtc.Management.Deployment.TopologyParser.FindDatabasesForMachine(IMachine machine)
at Microsoft.Rtc.Management.Deployment.TopologyParser.FindDatabasesForFqdn()
at Microsoft.Rtc.Management.Deployment.TopologyParser.GetDbListToMirror()
at Microsoft.Rtc.Management.Deployment.TopologyParser.get_DbInfoList()
at Microsoft.Rtc.Management.Deployment.InstallMirrorDatabaseCmdlet.StartMirroring()
at Microsoft.Rtc.Management.Internal.Utilities.LogWriter.InvokeAndLog(Action action)
23-01-2014 22:54:16 Error
└ Error: An error occurred: "System.Runtime.InteropServices.COMException" "The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)" 23-01-2014 22:54:16 Error"The RPC server is unavailable. (Exception from HRESULT: 0x800706BA)" error may occurs.There can be a few reasons for this error:
It was an issue with RPC ports, verify Firewall opened the full range and Try to run setup completed.
The remote computer is blocked by the firewall.
Solution: Open the Group Policy Object Editor snap-in (gpedit.msc) to edit the Group Policy object (GPO) that is used to manage Windows Firewall settings in your organization. Open
Computer Configuration, open Administrative Templates, open
Network, open Network Connections, open Windows Firewall, and then open either
Domain Profile or Standard Profile, depending on which profile you want to configure. Enable the following exception: "Allow Remote Administration Exception" and "Allow File and Printer Sharing Exception".
Host name or IP address is wrong or the remote computer is shutdown.
Solution: Verify correct host name or IP address.
The "TCP/IP NetBIOS Helper" service isn't running.
Solution: Verity that "TCP/IP NetBIOS Helper" is running and set to auto start after restart.
The "Remote Procedure Call (RPC)" service is not running on the remote computer.
Solution: Verity that "Remote Procedure Call (RPC)" is running and set to auto start after restart and.
The "Windows Management Instrumentation" service is not running on the remote computer.
Solution: Verity that "Windows Management Instrumentation" is running and set to auto start after restart.
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer" -
Establishing Lync Server 2013 on a Child Domain
Hi,
We want to establish Lync Server 2013 Enterprise Edition on a child-domain. I finished the installation. Now, if i add to users to child domain and enable from Lync Server Control Panel for test, users can be signed in. However, we use child domain for only
domain computers. We want to keep users on parent domain, not child domain.
I can enable users which are on parent domain, but users can not sign in. When i look Lync troobleshooting program, i got this error: "user is not sip enabled"
How can i solve this problem not adding users to child domain?Check whether the SIP address is enabled for the user
Get-CSUser -Identity <Alias>
SipAddress : sip:[email protected]
Enable-CsUser –Identity "Raji" –RegistrarPool Pool01.Lync.com –SipAddress "sip:[email protected]" –SipDomain Lync.com
Verify the output
Get-CsAdUser | Select-Object DisplayName, SipAddress, UserPrincipalName
Or
Construct a SIP address using the user’s SamAccountName and domain name
The SamAccountName is the user’s logon name: it’s the kenmyer portion of litwareinc\kenmyer. To use the SamAccountName as the SIP address use the –SipAddressType parameter followed by the parameter value SamAccountName:
Enable-CsUser –Identity "Ken Myer" –RegistrarPool atl-cs-001.litwareinc.com –SipAddressType SamAccountName –SipDomain litwareinc.com
Note that you also need to include the –SipDomain parameter followed by the appropriate SIP domain. With both FirstLastName and SamAccountName you must explicitly indicate the SIP domain; Enable-CsUser won’t try to make a “best guess” at determining the domain
name for you.
Use the user’s email address as his or her SIP address
This is kind of a nice option: it simply grabs the user’s email address and uses that same value for his SIP address. (That way, users have just one address to remember.) To use this option, simply include the –SipAddressType parameter followed by the parameter
value EmailAddress:
Enable-CsUser –Identity "Ken Myer" –RegistrarPool atl-cs-001.litwareinc.com –SipAddressType EmailAddress
Reference: https://blogs.technet.com/b/csps/archive/2010/06/06/howtoenableusers.aspx
Exchange Queries -
Persistent Chat (Lync Server 2013) with Lync 2010 Group Chat
I have successfully deployed Lync Server 2013 and both 2013 and 2010 desktop clients connect and function as expected.
The problem is with Persistent Chat. It works perfectly with the 2013 desktop client but - whilst 2010 Group Chat connects - I receive the error message "The [LOGON_DOMAIN] is not available". No chat rooms are available and I am unable to search.
I have been unable to locate anything on the web which discusses the problem.
I do not know whether this makes a difference but the 2010 clients use terminals rather than dedicated workstations.
Can anyone shed any light on what the problem may be?Have you created a CsPersistentChatEndpoint to allow the Group Chat client (2010) to connect to Persistent
Chat server? Please take a look at: http://technet.microsoft.com/en-us/library/jj204901.aspx
Please mark posts as answers/helpful if it answers your question.
Blog
Lync Validator - Used to assist in the validation and documentation of Lync Server 2013. -
Office Web Apps server / Lync server 2013
Hi I have installed a Lync 2013 Server and Office Web Apps Server. Configured Lync topology, Office Web Apps farm and certificates.
However when i start the services i get this error message in the log saying Office Web Apps discovery failed.
Event ID: 41033
Description:
Office Web Apps Server (WAC) discovery failed, PowerPoint content is disabled.
Attempted Office Web Apps Server discovery Url:
Received error message: Invalid Uri syntax for WAC configuration
The number of retries: 1,
Cause: Office Web Apps Server may be unavailable or network connectivity may have been compromised.
Resolution:
Check HTTPS connectivity from this box to the Office Web Apps Server deployment using the discovery Url.
I can access the OWAS server Url from Lync Server
Connecting to the HTTPS discovery URL is working fine, and brings up the XML-page (after i click "show all content").
The two servers are located on the same internal network, DNS resolves fine both ways, and no firewall rules blocks any connections between the two. Can anyone please help me figure this out?
Only identical problem found online is here (Invalid Uri syntax for WAC configuration):
http://blogs.technet.com/b/dodeitte/archive/2012/09/10/office-web-apps-server-amp-lync-server-2013.aspx
He resolved the problem by assigning a new OAuthTokenIssuer certificate. This however did not fix the problem in my case.
Regards
Sverre A. VeelHi,
In addition, please make sure you have restarted front end and office web apps server after reissuing the certificate.
Kent Huang
TechNet Community Support -
Team,
Unable to start FE service on one of the FE server, 2 Enterprise lync 2013 pool one FE in each pool, only following error in event vrw,
Log Name: Lync Server
Source: LS Server
Date: 12/30/2013 12:10:55 PM
Event ID: 12290
Task Category: (1000)
Level: Error
Keywords: Classic
User: N/A
Computer: ACS465-BH102.me.ykgw.net
Description:
The evaluation period has expired.
The evaluation period for Microsoft Lync Server 2013 has expired. Please upgrade from the evaluation version to the fully licensed version of the product. Look at help for Setup.exe to learn how to upgrade from evaluation version to the licensed version.
Cause: The evaluation period for Microsoft Lync Server 2013 has expired.
Resolution:
Please upgrade from the evaluation version to the licensed version of the product. Look at help for Setup.exe to learn how to upgrade from evaluation version to the licensed version.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="LS Server" />
<EventID Qualifiers="50152">12290</EventID>
<Level>2</Level>
<Task>1000</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2013-12-30T09:10:55.000000000Z" />
<EventRecordID>73953</EventRecordID>
<Channel>Lync Server</Channel>
<Computer>ACS465-BH102.me.ykgw.net</Computer>
<Security />
</System>
<EventData>
</EventData>
</Event>
Log Name: System
Source: Schannel
Date: 12/30/2013 12:13:36 PM
Event ID: 36888
Task Category: None
Level: Error
Keywords:
User: SYSTEM
Computer: ACS465-BH102.me.ykgw.net
Description:
The following fatal alert was generated: 10. The internal error state is 1203.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Schannel" Guid="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
<EventID>36888</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2013-12-30T09:13:36.779033200Z" />
<EventRecordID>83985</EventRecordID>
<Correlation />
<Execution ProcessID="556" ThreadID="3668" />
<Channel>System</Channel>
<Computer>ACS465-BH102.me.ykgw.net</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="AlertDesc">10</Data>
<Data Name="ErrorState">1203</Data>
</EventData>
</Event>
Server is already on Full version, ran Reset-CsPoolRegistrarState
for fillrest as wel as serviceret
Followed below as well,
http://social.technet.microsoft.com/Forums/lync/en-US/2a7e27ce-2dea-4e37-91ea-1ed42e110198/issue-updating-from-eval-to-volume-licenses?forum=ocsplanningdeployment
Currently done failover to another pool and users can login,
however i cant get the front end service on this server.Any pointers would be appreciated.
Praveen | MCSE Messaging 2003rit, the command is not doing the trick since its already full version,
PS C:\Users\lyncadmin> Get-CsServerVersion
Microsoft Lync Server 2013 (5.0.8308.0): Volume license key installed.
only one server in one pool, total two pools.
Lync 2013 is on Win 2008 R2, and the event in system im inclining to since i have tried all,
Log Name: System
Source: Schannel
Date: 12/30/2013 9:26:34 AM
Event ID: 36888
Task Category: None
Level: Error
Keywords:
User: SYSTEM
Computer: ACS465-BH102.me.ykgw.net
Description:
The following fatal alert was generated: 10. The internal error state is 1203.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Schannel" Guid="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
<EventID>36888</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2013-12-30T06:26:34.877077500Z" />
<EventRecordID>64911</EventRecordID>
<Correlation />
<Execution ProcessID="556" ThreadID="620" />
<Channel>System</Channel>
<Computer>ACS465-BH102.me.ykgw.net</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="AlertDesc">10</Data>
<Data Name="ErrorState">1203</Data>
</EventData>
</Event>
Praveen | MCSE Messaging 2003
Maybe you are looking for
-
I Don't know what to do!? Can anyone PLEASE help me!?
My iPod mini, 4gb is hard to get serviced obviously because they dont make them anymore. Lately ive noticed that my bettery life has decreased so much that i dont even bother taking it out of the ac adapter that is in my outlet. instead of the sugges
-
Calendar Year View is Incorrect
For most years before 2005, "year view" is empty on my iPad. No yellow/orange boxes. But I do have entries in earlier years. They only show up in Month/Week/Day views. Even stranger: there is at least one case (in 1986) where there is an entry in ye
-
Table Maintenance(SM30) not working for a custom View..
Hi, I have the below case which is not working at the moment. we have standard table T024 and the requirement is to update the table directly in production. To update the standard table i have created a custom maintenance view on this table and creat
-
How to use ICC based colorspace
hello, The question is how to define a color in ICC based colorspace ? I tried with gState.strokeColorSpec.value.color array and it work fine when my CIE based colorspace is CMYK but how to do it when colorspace can be CMYKOG or RGB ... ? Regards, Wi
-
would anyone mind helping me figure out how to print an 8 x 11 document as "full bleed"? i have some documents that have colorful backgrounds and i only seem to be able to print to 8 x 11 with some amount of vertical white space on either side and pe