• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 415
  • Last Modified:

Lync2010 Certificate Requirements


I want to know how many  public certiifcates i do require for lync 2010 enterprise for remote access and federation.

please give me more details on this lync 2010 certiifcates parts
Manoj Bojewar
Manoj Bojewar
  • 4
  • 3
3 Solutions
You only need a single SAN certificate with at least six SAN names,


You also need to enter the above entries as HOST 'A' records in external DNS server with at least two public IPs.

lyncpool.domain.com      x.x.x.1
dialin.domain.com                        x.x.x.1
meet.domain.com            x.x.x.1
lyncdiscover.domain.com      x.x.x.1
sip.domain.com            x.x.x.2
lyncadmin.domain.com      x.x.x.1

You also need to enter two SRV records in the external DNS.

_sip._tls.domain.com > point to > sip.domain.com            port 443

_sipfederationtls._tcp.domain.com > point to > sip.domain.com      port 5061
Manoj BojewarAuthor Commented:
what about Webconf and AV service
These DNS records will be enough to provide services to every feature of LYNC. Meet and Dialin is used to webconf and AV.
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Manoj BojewarAuthor Commented:
my Audio and Video Conferencing is not working and also online meeting is not working.. how to fix this issue
Have you setup the certificate correctly with all the Six SAN names I mentioned. Also confirm if the internal DNS is set properly.

You asked for certificate names which I mentioned and this is something else. Anyways Now explain the scenario that how you have setup your lync. The Question is not mentioning any details.
Manoj BojewarAuthor Commented:
its very difficult for me to explain my setup.. but i will give you some brief here...

i have four servers installed for lync 2010 Enterprise

1)Lync Front ent
2)Lync Backend database
3)Lync Monitor and archive server
4)Lync Edge server

i have two Lan card on edge server one with without gateway and DNS (internal edge ) and another with three IP with gateway and public DNS (External)

i have certiifcate installed for internal edge interface goh-lyndedge.hosting.local and external certiifcate with SIP.exchangemails.com and AV.exchangemails.com and webconf.exchangemails.com

it would be greate if we have remote session so that i can show you all the problems.
Drop me an email at abdulalikhan@hotmail.com and we will set a time.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now