Lync Client Search - Shows Non Lync Enabled Users

Similar Messages

• Getting Lync enable users who are modified after specified time

  Getting Lync enable users who are modified after specified time
  Hi,
  I need to get all the Lync enabled users from Lync 2010 server who are modified after specified time.
  I have written a client with this below code for my purpose
  string
  dateString = "11/4/2014 11:19:10 PM";
  DateTime
  lastModifiedTime = DateTime.Parse(dateString, System.Globalization.CultureInfo.InvariantCulture);
  PSCommand command = new PSCommand();
  command.AddCommand("Get-CsUser");
  command.AddParameter("Filter",
  "WhenChanged -gt " + lastModifiedTime.ToString());
  powershell.Commands
  = command;
  Collection<PSObject> outPut = powershell.Invoke();
  But on calling Invoke method I am getting the below exception,
  Cannot bind parameter 'Filter' to the target. Exception setting "Filter": "Invalid cast problem for value: "11" type: "System.Nullable`1[System.DateTime]" query: "WhenChanged -gt 11/4/2014 11:19:10 PM" "17""
  Can anyone please point me what am I doing wrong.
  This command
  Get-CsUser -filter {whenchanged -gt
  "11/4/2014 11:19:10 PM"}
  when run directly on Windows Powershell works fine.
  Thanks in advance.
  Sandeep

  It appears you may be casting the date variable wrong. 
  If you have
  command.AddParameter("Filter",
  "WhenChanged -gt 11/4/2014 11:19:10 PM"
  And avoid the lastModifiedTime.ToString() addition, does it work?
  If so, it's just the way you're doing your date manipulation.
  Also, why convert from a string to a datetype and back for the datestring?  Are you trying to correct a timezone issue?
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications
  This forum post is based upon my personal experience and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• Not all contacts showing in lync 2013 client search for most of the users

  Dears
  i have an issue in searching for contacts in Lync client 2013.
  i already set the Global client policy to websearchonly and still not able to see all the contacts.
  what should i do else? 
  we are using:
  - windows 7 ent 64bit
  - microsoft office 2010 plus 32bit
  - microsoft lync basic 32bit
  and on the server side:
  - windows server 2012 64bit
  - lync server 2013
  appreciate your swift response
  Moayad Sewar

  Ok Moayad, thank you for these info.
  It looks ok, I cannot find strange settings.
  Did you do this check?
  %userprofile%\appdata\Local\Microsoft\Office\15.0\Lync
  enter the sip_<usersipuri> folder
  you will find two files
  GalContacts.db
  GalContacts.db.idx
  open the GalContacts.db with notepad, you can find every AD Users and Contacts that Lync consider eligible
  for the GAL.
  Try to find in this file some Contacts that lync users cannot find. If you cannot find here we've to investigate
  more deeply into AD Attributes.
  Regards
  Luca
  Luca Vitali | MCITP Lync/Exchange | snom Certified Engineer | Sonus SBC1000 Engineer

• Machine shows Non compliant in SCCM 2012R2 Configuration Manager

  We are using 2012 sccm R2 and one of our client machine shows non compliant in the reports. When we check the machine , we found that all the required and approved patches are downloaded . So it should be a compliant machine .
  SCCm Clinet is ACtive and we are able to run the cycles from the machine too. Would like to know what all steps that we need to perform for solving the issue.
  Server OS 2008 R2
  Thanks
  Madhu Madhavan

  if client having wmi issues pertaining to configmgr,then it will not (most cases) send the inventory .check the inventoryagent.log .To fix WMI issues.you can try the script http://eskonr.com/2009/03/how-to-troubleshoot-the-systems-which-has-wmi-issues-rebuild-wmi-repository/
  if you are sure that,client is functioning normal and the issue is only with software update compliance,you can try refresh the compliance state using script https://msdn.microsoft.com/en-us/library/cc146437.aspx.
  Eswar Koneti | Configmgr blog:
  www.eskonr.com | Linkedin: Eswar Koneti
  | Twitter: Eskonr

• How do I enable users to attend on Lync 2013 meeting on Windows 2008 R2 Terminal Services/XenApp 6?

  Hi,
  We are not using Lync internally. But some of my users need to attend Lync 2013 meetings. We run a Windows 2008 R2 Terminal Services/XenApp environment. Users are not allowed to install applications.
  In the past, I was able to install administratively a Lync 2010 attendee client.
  How do I enable my users to attend a Lync 2013 meeting?
  Thanks.

  This is not viable. I don't know which user is going to be attending Lync meetings from suppliers or customers ahead of time and have no contacts to request a test meeting. This is a loop. How does Microsoft expect sysadmins to support their products if
  the client software is not easily available.
  At this point if I have a user who needs this, I will only know about it after the meeting has failed. At that point the user is not very receptive to the idea of involving his contact in troubleshooting and setting up test meetings. It's even worse if it's
  an executive.
  Is there any way of pre-installing the pre-requisites for attending Lync 2013 meetings?
  My only choice is to inform my user community that we have no way of supporting Lync and request that they use GotoMeeting or WebEx with their contacts who try to do a Lync meeting.
  I am very disappointed in Microsoft's approach with Lync 2013.
  Thanks for your time.

• Lync 2013 User Presence Unknown in OCS 2007 R2 Client

  Lync 2013 User Presence Unknown in OCS 2007 R2 Client
  OCS users had reported that they can’t view the presence status of some Lync 2013 users in OCS client, presence unknown. I found one of FE01 server that registration for those Lync 2013 users have that effect on OCS client. I shut down FE01 server to force
  Lync 2013 users to register to another FE02 server. After Lync 2013 users signed in again (Connected Lync Server has been changed to: FE02), OCS client can view their presence. However I still don't found the root cause, when I run Test-CsRegistration in both
  FE server. The FE02 passed, but FE01 show the following error. I checked the same certificate was imported to FE01/FE02.
  Target Fqdn   : ###########.com
  Result        : Failure
  Latency       : 00:00:00
  Error Message : Unable to perform authentication of credentials.
                  Inner Exception:NegotiateSecurityAssociation failed, error: -2146893053
  Diagnosis     :
  VERBOSE: Workflow 'Microsoft.Rtc.SyntheticTransactions.Workflows.STRegisterWorkflow' started.
  Workflow 'Microsoft.Rtc.SyntheticTransactions.Workflows.STRegisterWorkflow' completed in '6.26E-05' seconds.
  An exception 'Unable to perform authentication of credentials.' occurred during Workflow Microsoft.Rtc.SyntheticTransactions.Workflows.STRegisterWorkflow execution.
  Exception Call Stack:    at Microsoft.Rtc.Signaling.SipAsyncResult`1.ThrowIfFailed()
     at Microsoft.Rtc.Collaboration.LocalEndpoint.EndEstablish(IAsyncResult result)
     at Microsoft.Rtc.SyntheticTransactions.Activities.RegisterActivity.InternalExecute(ActivityExecutionContext executionContext)
     at Microsoft.Rtc.SyntheticTransactions.Activities.SyntheticTransactionsActivity.Execute(ActivityExecutionContext executionContext)
     at System.Workflow.ComponentModel.ActivityExecutor`1.Execute(T activity, ActivityExecutionContext executionContext)
     at System.Workflow.ComponentModel.ActivityExecutorOperation.Run(IWorkflowCoreRuntime workflowCoreRuntime)
     at System.Workflow.Runtime.Scheduler.Run()
     at Microsoft.Rtc.Internal.Sip.SipAuthenticationHelper.NegotiateSecurityAssociation(SecurityAssociationBase sa, String inputString, ContextFlags inContextAttributes, String& outputString)
     at Microsoft.Rtc.Internal.Sip.ProtocolAuth.DoProtocolOutgoingNegotiation(SecurityAssociation sa, SipMessage message, ChallengeData challengeData)
     at Microsoft.Rtc.Internal.Sip.AuthenticationControlModule.NegotiateSecurityAssociation(SecurityAssociation sa, SipMessage message, NegotiateArgs negotiateArguments)
  'RegisterActivity2' sequence activity started.
  'RegisterActivity2' sequence activity completed in '6.01E-05' seconds.
  'Register' activity started.
  Sending Registration request:
   Target Fqdn      = #######.com
   User Sip Address = sip:#####@####.com
   Registrar Port = 0.
  Authentication Type 'IWA' is selected.
  'UnRegister' activity started.
  'UnRegister' activity completed in '0.0004703' seconds.
  VERBOSE: Workflow Instance ID '4fb4f7ee-de24-432b-b758-c4abd2010794' completed.
  VERBOSE: Workflow run-time (sec): 0.2430276.
  Does anyone know what does the error code 2146893053 means? Many Thanks.

  Hi,
  Please check if all services started on FE01.
  It may cause by the issue of registrar authentication. Please also check if Registrar Setting click all authentication on FE01 Lync Server Control Panel.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Lync phone show failed to obtain user ceetificate

  hd420 show failed to obtian user certificate.
  it happen on remote site. so far one site have this problem.
  how can i import user certificate manually?
  it is on-premise lync 2013 server.
  thanks.

  Hi Jo Tse,
  You cannot manually install certificates on the device.
  The CDP (CRL distribution point) will only appear on certificates created AFTER the CDP is defined. This means that if you have issued certificates, you will need to re-issue certificates
  to have the CDP available to those computers. There is no way around this.
  About how to configure the CDP, you can refer to the following article.
  http://blogs.technet.com/b/nexthop/archive/2012/12/17/creating-a-certificate-revocation-list-distribution-point-for-your-internal-certification-authority.aspx
  Best regards,
  Eric
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Lync 2013 client is showing EWS not deployed.

  Hi,
  I am facing issue with lync 2013 client in the configuration information. it is showing EWS not deployed .
  UCS Connectivity State;      Exchange connection Down;           --;
  MAPI Information;              Status OK;MAPI Status OK;
  EWS Information;;             EWS not deployed;
  I am facing this issue both internally and externally.
  I am using Lync 2010 server and exchange 2010.
  Lync  2010 client is showing all EWS information correct. No issue with lync 2010 client.
  Thanks 

  Had the same issue.  Couple of things you can try:
  1.  Verify EWS virtual directory is configured properly on your Exchange CAS or Front-End servers (Get-WebServicesVirtualDirectory)
  But the thing that fixed it for me was:
  2.  Create SRV records for (_autodiscover, _TCP, 443) pointing to your CAS or Front-End server/array.  This has to be done for the forward zone of your public domain name (i.e. contoso.com, not contoso.local).  I did them both just
  to be on the safe side, but was the public domain that did it.

• Steps to deploy Lync for users who own Office 365 E1/E2 licenses, but don't have Office 365 E3, using Office Deployment tool.

  After many hours of debugging with Microsoft support the system to install the Lync Client silently can be done with a SINGLE LINE command.  The steps to take are below. It should be an easy next step to put this as GPO installation since
  it is a simple command.
  Comments appreciated. 
  side question: Why is there no Lync 2013 or Lync Office 365 forum?
  Basic steps to deploy Lync for users who own Office 365 E2 licenses, but don’t have Office 365 E3, using Office Deployment tool.
  This also applies for other Office 365 service types where the full office suite download is not included.  In April 2015 This was impossible to find online and not know by the Lync support team.
  Steps are:
  Download the Office deployment tool from
  http://www.microsoft.com/en-in/download/details.aspx?id=36778 and extract it to a folder. For this
  example we will use the \\server\sharename
  location.
  Extracting it creates a setup.exe file and it show a sample XML file.
  2. Create XML file and give it a name such as LyncEntryRetail.xml
  Note: The key is the productID that has to be the “LyncEntryRetail”. Other product IDs will download a version that needs another office 365 license. The productID “LyncRetail” needs an E3 license of Office 365.
  <Configuration>
    <Add SourcePath="\\server\sharename" OfficeClientEdition="32" >
      <Product ID="LyncEntryRetail">
        <Language ID="en-us" />
      </Product>
    </Add> 
  </Configuration>
  3. From the folder where you extracted the Office deployment tool, run the following command on the command prompt to download the source files and store them on the shared drive:
   (on single line)
  Setup.exe /download LyncEntryRetail.xml  
  (This is the name of the XML file created above)
  One can also run the same on a server share by using UNC path names such as  (on single line)
  \\servername\sharename\Setup.exe /download
  \\servername\sharename\LyncEntryRetail.xml  
  (This is the name of the XML file created above)
  4. Run the following command on the command prompt on a machine where you want to install the software: (on single line)
  \\servername\sharename\Setup.exe /configure
  \\servername\sharename\LyncEntryRetail.xml  
  (This is the name of the XML file created above)
  Once you are comfortable that it all works, you may want to edit the XML file if you want to have silent installation and add the following lines.
    <Display Level="None" AcceptEULA="TRUE" /> 
    <Property Name="AUTOACTIVATE" Value="1" /> 
  Regards
  Bart
  Bart Louwagie

  Hi Chudly，
  For the office365 issue, I also recommend you can post in dedicated forum for more efficient support:
  http://community.office365.com/en-us/f/166.aspx
  If you want to modify the powershell script, please post the current script and the issue, we will notice and continue to follow up.
  If there is anything else regarding this issue, please feel free to post back.
  If you have any feedback on our support, please click here.
  Best Regards,
  Anna Wang
  TechNet Community Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Enabling Silent Auto-update in Java 7.45 as a non-local administrator user, enterprise best practices?

  So I have been looking through forums, java help, and everywhere possible for more insight on java in an enterprise environment. What I have found so
  far is that there is no actual way to enable auto updates to install as a non-local admin user.
  I know you can turn on and off updates My company wants to install java JRE as a silent-autoupdate "always update" kind of installation, but all my users are domain users, without admin rights. When it finds an update - it prompts for credentials and obviously they are denied. Is this even possible?  If it is not possible to "auto-update" non local admins, I can make the case to management that java releases need to be QA'd and controlled releases. My environment is adminstudio/installshield and SCCM. I know auto-installing updates to java without QA per version , in a enterprise environment, is not good practice, but its not my decision right now.
  thank you very much!

  Hi and thank you very much for responding!
  I'd be interested in further answers:
  Our company is developing unsigned applets ...Why?Sufficient functionality. We dont want to e. g. access the customers local file system, we just wanted to use the applet as viewer sending data to and from the server where the applet was loaded from. Nothing else.
  1. What is the idea to show messages for unsigned applets running in a secure sandbox.. why when running in a sandbox, and why not also for potentially more dangerous signed applets?With a signed applet you know who is taking the responsibility.With unsigned applets, I rely on the sandbox responsibility. I actually couldn't do anything dangerous by accident.
  With signed applets, I'm fully responsible that nothing bad happens to the clients data. Preventing this is the main task for the java sandbox, so why not use it?
  Just to clarify: Is it right that each signed applet has full access rights?
  3. Is there any recommended strategy to sign an applet to work across browsers, platforms, JRE versions?Err, sign it?Does the signing scheme matter? According to http://mindprod.com/jgloss/signedapplets.html, there are lots of...
  Could you recommend a good tutorial? I'm an absolute beginner concerning signing of applets.
  4. Are there negative side-effects to sign an applet?Only that it forces you to sign all its components. Not sure what this question means.What about loading time and jar filesize?
  Does JarIndex work with multiple signed modular applet jars?
  Must javascript code also be signed to talk to signed applets?
  Is a client able to see a signed applet a) without see or interact with a confirmation window and b) without doing any prerequisites (like adding certificates or similar)?
  Thanks, Peter

• Using get-aduser to search for enabled users in entire domain filter ..

  Hi,
  my first post here.
  I have the following problem. I am trying to figure out to create a powershell command (with get-aduser) that searches for only enabled
  users (in the entire domain),  whose user account login names starts with "b" or "B" (because their user account login names are composed of Bnnnnn, n=numbers). I suppose that a string of "B*" in the command should be sufficient. The query result
  must show the user account login name (Bnnnnn),  first name
  and last name  and the enabled  (yes) status  of those enabled users. I would like to write the entire query result to a file (csv format), saving it to c: for example
  Please help. Thanks in advance

  I use -LDAPFilter mostly because I am used to the LDAP syntax. It can be used in PowerShell, VBScript, dsquery, VB, and many command line utilities (like Joe Richards' free adfind utility). Active Directory is an LDAP compliant database.
  The PowerShell -Filter syntax can do the same things, but the properties it exposes are really aliases. I'm used to the AD attribute names, like sAMAccountName and userAccountControl. PowerShell uses things like "enabled" and "surname", which are aliases
  you need to know or look up. For example, the Get-ADUser default and extended properties, with the actual AD attributes they are based on, are documented here:
  http://social.technet.microsoft.com/wiki/contents/articles/12037.active-directory-get-aduser-default-and-extended-properties.aspx
  Finally, note that the "Name" property refers to the Relative Distinguished Name (RDN) of the object, which for user objects is the value of the cn attribute (the Common Name of the user). This may not uniquely identify the user, as it only needs to be unique
  in the parent OU/container. The user login name (pre-Windows 2000 logon name) is the value of the sAMAccountName attribute, which must be unique in the domain. In the Wiki article I linked, we see that the PowerShell alias for this attribute is "SamAccountName"
  (in this case the name of the property matches the name of the AD attribute). All of this can be confusing.
  Richard Mueller - MVP Directory Services

• Managing Lync Online user traffic

  Hi,
  Trying to understand what is the best way to route the Lync online user traffic from corporate LAN to Lync online server and to users connected on Internet.
  I see that suggested methods are route it via firewall or proxy
  Challenges I see with firewall method are: Routing issue from certain subnets and risk of opening up so many ports for so many subnets.
  In Proxy method I foresee performance issue.
  Is there any other better method to achieve this?
  Can we do something better using dedicated F5 big IP for Lync traffic alone? Is this supported?
  Also is it mandatory to open up 50-60K port to have p2p call? Can’t it happen via Lync online edge server?
  Please share your thoughts.
  We use Lync 2013 on prim with 3 Lync pool in three different sites with total user base of 30k. Each site has dedicated internet connectivity.
  Regards
  Praveen R

  According to your description, I suppose when you mentioned Lync online user you meant the Lync on premises users other than Office 365 account.
  The 50k port ranges are required between internet and Lync A/V service.
  You need to create persistent static routes on the internal interface to all internal networks.
  The Lync Server 2013 scaled consolidated Edge topology is optimized for DNS load balancing for new deployments federating primarily with other organizations using Lync Server. If high availability is required for any of the following scenarios, a hardware
  load balancer must be used on Edge Server pools for the following:
  Federation with organizations using Office Communications Server 2007 R2 or Office Communications Server 2007
  Exchange UM for remote users using Exchange UM prior to Exchange 2010 with SP1
  Connectivity to public IM users
  For details, check
  http://technet.microsoft.com/en-us/library/jj656815.aspx
  You need to open 50k port ranges to have peer-to-peer call.
  Lisa Zheng
  TechNet Community Support

• Lync 2010 users presence is not coming in lync 2013

  Hi,
  I have lync 2013 with coxiestenc lync 2010. We are facing IM presence issue with lync 2013 server users. They are able to see the lync 2010 users presence (Unkown Presence).
  Thanks.
  Deepak

  Are there any errors or warnings in the Event Viewer of either front-end server either in the Lync or Application log?
  If this helped you please click "Vote As Helpful" if it answered your question please click "Mark As Answer" | Blog
  www.lynced.com.au | Twitter
  @imlynced

• Client sometimes shows 'In a Meeting' and other times just 'Busy'

  Client sometimes shows 'In a Meeting' and other times just 'Busy'.
  Any ideas what might be causing this?

  Lync user can get calendar data from Microsoft Exchange Server.
  If you schedule a meeting or accept the meeting, the presence can change to “In a meeting” when the meeting starts.
  The busy presence can be displayed when you use keyboard or mouse frequently.
  For the details, you can check the document Chapter_06_Enhanced_Presence.doc at
  http://www.microsoft.com/en-in/download/details.aspx?id=22644
  Lisa Zheng
  TechNet Community Support

• Disabling user through API call -process task-followed by an Enable User...

  Hi,
  I am running on OIM 9.1 BP11. I implemented a process task to disable the user based on a URS form field change.
  I can confirm from the log file and the resource that the Disable user (xellerate user) happened. But the user got enabled back right away. The log file showed that a scheduled task named "Enable User After Start Date" ran and enable the user. So, I disabled that scheduled task.
  Then I repeated the test again. I observed the same behavior of user being disabled and enabled again but this time, OIM called an adapter. This is what I observed in the log file:
  20988 INFO,20 Oct 2010 12:21:56,519,[XELLERATE.DATABASE],DB read: select evt.ev t_key, evt.evt_name, evt.evt_package, mil.mil_name from mil mil, evt evt w here evt.evt_key = mil.evt_key and mil.mil_key=10
  20989 DEBUG,20 Oct 2010 12:21:56,519,[XELLERATE.DATABASE],select evt.evt_key, ev t.evt_name, evt.evt_package, mil.mil_name from mil mil, evt evt where evt. evt_key = mil.evt_key and mil.mil_key=10
  20990 INFO,20 Oct 2010 12:21:56,519,[XELLERATE.PERFORMANCE],Query: DB: 0, LOAD: 0, TOTAL: 0
  20991 DEBUG,20 Oct 2010 12:21:56,519,[XELLERATE.SERVER],Class/Method: tcBusiness Obj/getSqlOperationFromMembers entered.
  20992 DEBUG,20 Oct 2010 12:21:56,519,[XELLERATE.SERVER],Class/Method: tcBusiness Obj/getSqlOperationFromMembers left.
  20993 DEBUG,20 Oct 2010 12:21:56,519,[XELLERATE.ADAPTERS],Class/Method: tcADPCla ssLoader/getClassLoader entered.
  20994 DEBUG,20 Oct 2010 12:21:56,519,[XELLERATE.ADAPTERS],Class/Method: tcADPCla ssLoader/getClassLoader left.
  20995 DEBUG,20 Oct 2010 12:21:56,520,[XELLERATE.ADAPTERS],Class/Method: tcADPCla ssLoader/findClass entered.
  20996 INFO,20 Oct 2010 12:21:56,530,[XELLERATE.ADAPTERS],Adapter: Enabling the User was initiated for the task: Enable User.
  20997 INFO,20 Oct 2010 12:21:56,531,[XELLERATE.JAVACLIENT],System Event Handler : Enabling the User
  I did exactly the same disabling user process at another client and it worked fine. I don't understand what causes OIM to call this system Event handler to re-enable the user.
  Please help.
  Thanks
  Khanh

  Do you have any Entity Adapter or Event Handler or Trigger which enables user for some condition ?
  Check your environment. If you have please remove that and try.
  Does this user has and provisioned resource ? If yes, try for some other user which doesn't have resource provisioned.