Lync Mobile unable to sign in using IIS ARR

Similar Messages

• Lync Office Web App Farm External Access using IIS ARR

  When i try to present a powerpoint app when logged in externally i get an error saying that it could not connect to the office web app server.  I need some help with (maybe screenshots) of what the reverse proxy settings should be. Here is some info
  so maybe someone can fill in the blanks.  
  My Office web app server has a private address and sits on the inside. The DNS name is owasrv.mydomain.com 
  The internal url is https://owasrv.mydomain.com
  The external url is https://wacsrv.mydomain.com
  i have a public A record pointing to wacsrv.mydomain.com and my ssl cert has a SAN entry for wacsrv.mydomain.com
  ***NOTE our public and private domain names are the same...that is not a mistake.
  I mostly need help with the what to put in for the url rewrite rules and what to put in when creating the server farm.  Also is it OK that the name of my server is different than the external url address.
  Gerald Csakany

  Hi Gerald,
  Did you follow this guide here http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  and mainly the section down the bottom which refers to publishing the WAC by matching this pattern ((?:^en-us/|^hosting/|^m/|^o/|^oh/|^op/|^p/|^we/|^wv/|^x/).*)
  and moving the rule to the top?
  What happens when you try to browse to https://wacsrv.mydomain.com/hosting/discovery from external?
  They can be different, I usually make them the same for simplicity, but as long as they're set on the Webfarm it shouldn't be an issue.
  If this helped you please click "Vote As Helpful" if it answered your question please click "Mark As Answer"
  Georg Thomas | Lync MVP
  Blog www.lynced.com.au | Twitter
  @georgathomas
  Lync Edge Port Check (Beta)

• Using IIS ARR with one Leg

  Is it supported to use IIS ARR with server with one network card ?

  This one may help.
  http://www.iis.net/learn/extensions/configuring-application-request-routing-(arr)
  I'd also ask them over here about IIS issues.
  http://forums.iis.net/
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• Unable to sign and use In-browser Editing for Adobe Muse CC 2014?

  I'm unable to sign in and use the in-browser editing feature for my Adobe Muse created website, http://foreseeson.com
  which is not hosted on Adobe Business Catalyst, but hosted on a third-party (TUCOWS) hosting service provider.
  When prompted to enter hosting credentials (which do work -- I've verified this by successfully using the Connect to FTP Host feature within Adobe Muse),
  I'm given this message on the Adobe® Muse™ CC In-Browser Editing website:
  "The FTP server configured for this site doesn't seem to match the URL you entered.
  Make sure that you use the Upload to FTP Host feature in Muse to publish the site directly to the final location and that you are logging on to In-Browser Editing with the same user."
  is anyone else having this problem?
  thank you
  Hui
  The FTP server configured for this site doesn't seem to match the URL you entered. Make sure that you use the Upload to FTP Host feature in Muse to publish the site directly to the final location and that you are logging on to In-Browser Editing with the same user.

  Hi
  I am also unable to access the Inbrowser editing page now for 3 days. It won't open up, either in my clients site https://inbrowserediting.adobe.com/login/www.edc.org.za or another client also: https://inbrowserediting.adobe.com/login/www.calgan.co.za or just as plain https://inbrowserediting.adobe.com
  I have tried it in 3 different browsers: Firefox, Chrome and Safari and it won't open up the site.
  This is becoming a big problem for me as clients need to update remotely.
  I used to be able to access these sites a few weeks ago and have not changed anything since. I don't have any special characters in the password and my IP is not being blocked. I am able to connect with FTP with Muse and with Dreamweaver. The sites are enabled for Inbrowser Editing under properties.
  Any help would be appreciated.
  Lauren

• Created account online, now unable to sign in using mobile.

  I created a new account online using my Google+ account as logi in details and I can't use 'My Xperia'.
  My phone won't let me login as I am unable to log in via my Google+ account on the phone.
  How do I fix the problem?

  Are you using the Gmail account that has already been entered into your device for things like the Playstore etc?
  What are your thoughts about this forum? Let us know by doing this short survey.
   - Official Sony Xperia Support Staff
  If you're new to our forums make sure that you have read our Discussion guidelines.
  If you want to get in touch with the local support team for your country please visit our contact page.

• My wife has an iPhone with an Appleaddress and password.  I now have an iPad and am unable to sign in using her Apple ID.  I am also unable to create a Free Apple ID as our email address (Apple ID) is being used by her.  Any thoughts - Thanks Colin

  My wife has an iPhone with an Apple address and password.  I now have an iPad and am unable to obtain an Apple ID.  I have tried using her's and am  unable to create a Free Apple ID as our email address (Apple ID) is being used by her.  Any thoughts - Thanks Colin.
  PS Hope ths explains it

  Why can't you use her ID? My wife, my daughter and I all use my Apple ID.
  Go to Settings>Store>Apple ID and try to sign in there with her ID. Make sure that you are entering all of the information (password) correctly.
  If you really want to create a new Apple ID - use your own email address, but I would recommend using only one ID anyway.

• Unable to generate cert using IIS in windows 2012

  I’m on the new CA  on windows 2012 and I’m in IIS and I’m going to generate a Domain Certificate for Https for certsrv. When I click Create Domain Certificate, I get this error.
  If I click OK, it continues and the select button is greyed out so I can’t select a CA to issue the certificate.
  Puneet Singh

  Hi 
  Seems like Cryptographic
  is disable
  The Cryptographic Services that should be running on your computer is for some reason set to Disabled for Startup type... 
  Or
  There is log file or database corruption in the Windows\System32\Catroot2 folder
  try this:
  Click Start menu, and then click the Run icon.
  In the small box that Opens, type the three letters: cmd then click the OK button. 
  In the command prompt window that just opened (a black background and white text), type the following commands, pressing the ENTER key on your keyboard after each line: 
  net stop cryptsvc
  ren %systemroot%\system32\catroot2 oldcatroot2
  net start cryptsvc 
  http://www.santanunayak.com An MVP From Microsoft

• Lync Mobile client signs out - Unknown Error- requires IIS reset on Front End

  My Mobile clients are signing out on their own and do not sign back in until I reset the IIS on my front end server. i have a standard edition front end with IIS ARR as my reverse proxy. 
  Another issue that I have (this is sporadic) is that when a mobile device is connected to internal wifi it fails to sign and and the only way to get it back to work is to turn off wifi , sign in, and then you can turn on wifi and then it can sign in even
  if wifi is on. This will work for sometime until the issue comes back again. 
  I would appreciate if anyone can help me resolve this issue.
  Thanks

  Hi,
  Which version of IIS did you use? If you are deploying mobility, we recommend that you use IIS 7.5. The Lync Server Mobility Service installer sets some ASP.NET flags to improve performance. IIS 7.5 is installed by default on Windows Server 2008
  R2, and the Mobility Service installer automatically changes the ASP.NET settings. If you use IIS 7.0 on Windows Server 2008, you need to manually change these settings.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Issues using IIS 8.5 with ARR 3.0 as Reverse Proxy for Lync 2013

  Dear reader, after searching for a day without finding a solution to my problem I end up here ;-)
  Working Lync 2013 environment (gradually adding functionality) consisting of 2 FE servers, Persistent Chat Server, Web Apps server, Edge Server, Reverse Proxy Server (IIS 8.5/ARR 3.0), SQL Server.
  Set up a fresh Windows 2012 R2 with IIS 8.5, installed ARR 3.0 and followed along this
  TechNet article.
  So far so good, external clients (incl. mobile phone apps) can all connect.
  Now trying to add Web Apps to the reverse proxy, which is slightly different from the others by not forwarding 80/8080 and 443/4443, but just 80 and 443 to internal Web Apps server.
  After creating the server farm/URL rewrite, browsing to the webapps.FQDN/hosting/discovery ends up with a 404 error (instead of XML, which is shown when try from the LAN).
  After moving this rewrite rule to the top, it started working, but now my lyncdiscover.FQDN stops working.
  Ofcourse moving the webapps rule down restores the lyncdiscover.
  Any ideas? (everything setup as described in above mentioned TechNet article, so using wildcards. Tried fiddling around with webext.* and lyncdiscover.* and so, but no luck. (I'm completely new to ARR)
  Thanks,
  Barry

  Can you confirm that for each URL Rewrite Rule, you have an {http_host} record that matches something like webext.* as you referenced above and as seen in step 15 here:
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  It might help if you posted a screenshot of your URL rewrite rules.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• IIS ARR Lync Mobility failed

  Hello, in need of help, we're trying to find alternative to TMG, so we are trying to use ARR to publish but seem to be stuck
  when we do a lync we get the following error:
  Testing HTTP authentication methods for URL https://lyncdiscover.itt.com/Autodiscover/AutodiscoverService.svc/root/user.
    HTTP authentication test failed.
    Tell me more about this issue and how to resolve it
  Additional Details
  Initial anonymous HTTP(s) request didn't fail, but Anonymous isn't a supported Authentication Method for this scenario.
  HTTP Response Headers:
  Pragma: no-cache
  X-MS-Server-Fqdn: HS.itt.com
  X-Content-Type-Options: nosniff
  Content-Length: 203
  Cache-Control: no-cache
  Content-Type: application/json
  Expires: -1
  Server: Microsoft-IIS/8.5
  X-AspNet-Version: 4.0.30319
  X-Powered-By: ASP.NET,ARR/2.5
  Date: Tue, 10 Feb 2015 03:58:29 GMT
  Elapsed Time: 2107 ms.
  However when i put TMG back up it passes. The lyncdiscover rule in is identical to my rules , for meet, dial and lyncexternal and those work just fine, so i cant seem to figure out whats goin on. 
  Also if i visit the url .....https://lyncdiscover.itt.com/Autodiscover/AutodiscoverService.svc/root/user...... i get this 
  This XML file does not appear to have any style information associated with it. The document tree is shown below.
  <resource xmlns="http://schemas.microsoft.com/rtc/2012/03/ucwa" rel="user" href="https://lync.itt.com/Autodiscover/AutodiscoverService.svc/root/user">
  <link rel="xframe" href="https://lync.itt.com/Autodiscover/AutodiscoverService.svc/root/user/xframe"/>
  </resource>
  Any one have any ideas?

  Hi jumbi,
  Looks like the URL rewrite rule is incorrect, you can check it.
  And you can also have a look at the following article.
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  Best regards,
  Eric

• Lync 2013 IIS ARR Pattern

  Hi Guys,
  I have the following setup:
  standard edition 2013 FE
  edge server 2013
  reverse proxy with iis 8 with arr 2.5 and patched with the hotfix
  Questions:
  1. with reverse proxy, does the route go something like this
  lync.xxx.com>reverse proxy>internet>fqdn external web services on fe public ip?
  2. I have multiple sip domains and to cut down on costs and forecast for future sip domains I setup the web services as follows: https://lync.xxx.com/sipdomain1/meet/ https://lync.xxx.com/sipdomain2/meetwhatever I try this doesn't proxy to the fe external
  web service fqdn it errors out on the proxy server. I am looking for the proper expression/pattern in iis to make it work. Whats interesting is https://lync.xxx.com/dialin works and is forwarded to the web services fqdn on the fe server, however if I try and
  login it doesn't do anything. This leads me to believe the pattern in iis arr for the url rewrite is somehow dropping the request. logs don't tell me much. this is all driving me insane as I have been working on this for a week.  this is the pattern I
  have been trying: ((?:^dialin|^id|^Abs|^autodiscover|^CertProv|^CollabContent|^Fonts|^GroupExpansion|^HybridConfig|^lwa|^mcx|^PassiveAuth|^PersistentChat|^Reach|^RequestHandlerExt|^RgsClients|^Scheduler|^Storage|^ucwa|^WebTicket).*)  and also * and also
  (.*) with no avail
  3. cant get lync mobility on iPhone to work, lync 2013 client on ios. same situation as #2, on Microsoft test connectivity I get this error and everything passes including the ssl: ://lyncdiscover.xxx.com/?sipuri=[email protected] has token = "user" http
  content isn't verified http error 502 bad gateway. again the reverse proxy isn't forwarding and simply dropping the connectioon
  Thanks for any suggestions on getting this to work...

  Q1:
  In which scenario you are in?
  Q2:
  Where did you access the simple URL?
  You need to access externally.
  Please check you add DNS A lync.xxx.com recording point to reverse proxy IP.
  Check you have published simple URLs successfully.
  You can refer to the following blog to deploy IIS ARR as a Reverse Proxy for Lync Server 2013
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  Lisa Zheng
  TechNet Community Support

• Lync mobile - server settings have changes please restart

  Hi,
  I have an issue within my current deployment. Mobile clients keep getting the message "Your Server configuration has changed, please restart lync." every 5-15 mins. 
  From my reading so far its suggested that changing the TTL on the IIS reverse proxy from 200 to 600/960 solves the issue. This hasn't worked for me. 
  Has anyone else had a similar issue and know of another fix or change that may be required? 
  Thanks
  Joel
   

  Hi,
  Did this happen for all kind of mobiles?
  Please double check the configuration of IIS ARR with the help of the link below:
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  You can try to enable logging on mobile devices and Front End server for troubleshooting.
  If you get a 502.3 error in the log, please also troubleshooting with the help of the link below:
  http://blogs.iis.net/richma/archive/2010/07/03/502-3-bad-gateway-the-operation-timed-out-with-iis-application-request-routing-arr.aspx
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• IIS Arr - time out

  Hi!
  We have configure our IIS ARR for lync following the technet article:
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  Now we have some problem with mobile devices and time outs and I've seen some articles with instructions to raise the time out.  For with server farm in our Iss arr should I change, the one for lyncdiscover or the one for our external web services?
  -UC

  Hi,
  You need to increase the Proxy timeout on the IIS ARR Server farm.
  More details:
  http://www.lynced.com.au/2013/08/lync-2013-mobility-published-on-iis-arr.html
  Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there.
  Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• IIS ARR reverse proxy..can someone explain how traffic goes?

  I'm building a reverse proxy server from the ground up, and I'm using IIS ARR. 
  I'm following this awesome guide to do it: 
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  I'm having a hard time grasping this IIS stuff and I was wondering if someone could explain something.
  Am I supposed to use the external IP of the reverse proxy in external DNS, or the external IP of the edge server?
  Are my simple URLs (I'm using lws, meet, dialin, and lyncdiscover in IIS ARR) supposed to externally resolve to the reverse proxy, and then my accessedge URLS resolving to the external IP of the edge? 
  I'm trying to figure out what to ask to have added to external DNS, and I was thinking that all these requests would come into the Edge, and then the edge would push it up to the reverse proxy for port translation, and then down to the front end, or something. 
  Thanks!
  Brandon
  Edit: I think I might have figured it out... Is the external IP of the reverse proxy the "Lync Web Services External IP"? If that's the case, I got confused in my validator.

  You beat me to it.  Yes, you'd communicate with the edge directly.  The reverse proxy is for Lync Web Services such as your external web services URL, meet, lyncdiscover, dialin, etc.  It's just a method of publishing your front ends
  to the Internet.
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications

• IIS ARR in DMZ

  We are looking to reverse proxy Exchange 2010 ActiveSync using ARR but the guides I've seen all assume you have one NIC on your internal network and 1 in the DMZ.  What firewall rules would I need to apply if the IIS server with ARR only had 1 NIC in
  the DMZ and no NIC on the internal LAN?
  For reference:
  http://blogs.technet.com/b/exchange/archive/2013/07/19/reverse-proxy-for-exchange-server-2013-using-iis-arr-part-1.aspx
  http://www.msexchange.org/articles-tutorials/exchange-server-2013/mobility-client-access/iis-application-request-routing-part1.html
  Thanks,
  Andy

  Hi Ali,
  Actually, using IIS ARR or TMG, it depends on you. If you configure correctly, both of them are safe. What's more, TMG isn’t actively developed or sold any more. However, it works fine right now, it does what we need (such as publishing Exchange securely).
  Here is a helpful blog for your reference.
  Life in a Post TMG World – Is It As Scary As You Think
  http://blogs.technet.com/b/exchange/archive/2013/07/17/life-in-a-post-tmg-world-is-it-as-scary-as-you-think.aspx
  Hope this can be helpful to you.
  Best regards,
  Amy Wang
  TechNet Community Support