Lync Server Standard 2010

Posted on 2011-04-20
Last Modified: 2013-11-29

We are testing Lync Server. Is there anyway to separate the ability for users to add other users from other OUs in this product? as of now, you see everyone in the AD that has a Lync account.

Question by:joebilek
    LVL 56

    Expert Comment

    by:Cliff Galiher
    OUs were never meant to be a security feature, so while MS continues to make great strides in Role Based Access Control in both Exchange and Lync, I wouldn't expect a feature adding that type of restriction any time soon.

    LVL 1

    Author Comment


    Any ideas on how to achieve this, or is there a way to force that a user needs to accept other users adding him/her before they are added and precense information is showed?
    LVL 56

    Accepted Solution

    If controlling presence visibility is your goal then you'd want to do that on tge client, not server. Lync 2010 has a robust enhanced presence engine that can accomplish quite a bit:

    But if that isn't enough, you can do more with the Lync APIs, right up to writing your own custom client if need be. MSDN has dozens of articles on tge subject.

    LVL 8

    Expert Comment

    Lync mainly shows all users who is enabled for Lync. There are no 'Built-in' ways to modify that unfortunately
    LVL 4

    Expert Comment

    Check out the PartitionByOU Setting? That was available in OCS 2007 R2 and can be migrated to Lync, so you should be able to set this.  

    Else, you might want to enable Lync 2010 enhanced presence privacy mode once you have migrated all your users:
    Get-CsPrivacyConfiguration | Set-CsPrivacyConfiguration -EnablePrivacyMode $True

    Lync 2010 privacy settings are not honored by previous versions (Microsoft Office Communicator 2007 R2 or Microsoft Office Communicator 2007). If previous versions of Office Communicator are allowed to sign in, a Lync 2010 user’s status, contact information, or picture could be viewed by someone who has not been authorized to view it. Additionally, a Lync 2010 user’s privacy settings are reset if he or she later signs in with previous version of Communicator.
    For these reasons, in a migration scenario, before you enable Lync 2010 enhanced presence privacy mode:
    * Ensure that every user has Lync 2010 installed.
    * Define a client version policy rule to prevent previous versions of Communicator from signing in.

    LVL 1

    Expert Comment

    You can use Ethical wall API to build rules to prevent users from adding or comunicating with eachothers but this API need some development

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Set OWA language and time zone in Exchange for individuals, all users or per database.
    Use these top 10 tips to master the art of email signature design. Create an email signature design that will easily wow recipients, promote your brand and highlight your professionalism.
    In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
    The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now