Solved

OCS 2007 R2, multiple Domains

Posted on 2009-07-09
7
1,253 Views
Last Modified: 2013-11-29
I have an OCS 2007 R2 implementation running in testing that we are about to move into production. The issue that I have is we have setup the users to SIP with their email addresses. Those with domaina.com work perfect, but those with domainb.com say server is un-available.

I added the SIP domain to the OCS Manager but still no luck. What do I have to do to get it to work? I am using the internal certificate server from my AD versus a 3rd party cert.

Thank You.
0
Comment
Question by:amedexitt
  • 4
  • 3
7 Comments
 
LVL 6

Expert Comment

by:adamg12345
ID: 24816438
Are you using automatic configuration for the Clients?

Adam
0
 

Author Comment

by:amedexitt
ID: 24818143
I believe automatic config is setup. I have a slight workaround which is to change their sip login to the domaina with username@domaina.com but its a bit of a pain to do it that way.
0
 
LVL 6

Expert Comment

by:adamg12345
ID: 24818262
If you use manual configuration and point the clients direct to the OCS Server, does that work for domainb users?

Adam
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:amedexitt
ID: 24822927
adamg12345, I think manual will work, but this is about 60 of 350 employees and I'd like to avoid having to do that for them due to the headache of managing that.
0
 
LVL 6

Accepted Solution

by:
adamg12345 earned 500 total points
ID: 24822987
If it works manually then it is either down to DNS or Certificates.

You need to create the SRV records for both domains, the A records that these points to must be the same domain.

so SRV for Domain A must point to ocs.domaina.com
SRV for Domain B must point to ocs.domainb.com

Then in turn the FQDN of the A record must be in the SAN list of the FrontEnd Cert.

I hope that makes sense.

Adam
0
 

Author Comment

by:amedexitt
ID: 24826091
I decided to standardize and have everyone login with their SAM login acct@domaina.com, because theres 4 or 5 different domains and otherwise will be a mess to setup.
0
 
LVL 6

Expert Comment

by:adamg12345
ID: 24826163
Ok, just one thing that is worth noting is that if you are going to Federate, it is often easier to have the SIP Address matche the email address, plus exposing the account name is never ideal.

Adam
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
DR TECHNOLOGY APART FROM SRM 5 103
Microsoft AD for Secure LDAP 3 62
SYSVOL and NETLOGON affected by crypto virus 7 140
Event ID: 5719 / Source: NETLOGON 9 134
This is my 3rd article on SCCM in recent weeks, the 1st (http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_Server_2008/A_4466-A-beginners-guide-to-installing-SCCM2007-on-Windows-2008-R2-Server.html) dealing with installat…
Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question