Go Premium for a chance to win a PS4. Enter to Win

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 409
  • Last Modified:

Lync2010 Certificate Requirements


I want to know how many  public certiifcates i do require for lync 2010 enterprise for remote access and federation.

please give me more details on this lync 2010 certiifcates parts
Manoj Bojewar
Manoj Bojewar
  • 4
  • 3
3 Solutions
You only need a single SAN certificate with at least six SAN names,


You also need to enter the above entries as HOST 'A' records in external DNS server with at least two public IPs.

lyncpool.domain.com      x.x.x.1
dialin.domain.com                        x.x.x.1
meet.domain.com            x.x.x.1
lyncdiscover.domain.com      x.x.x.1
sip.domain.com            x.x.x.2
lyncadmin.domain.com      x.x.x.1

You also need to enter two SRV records in the external DNS.

_sip._tls.domain.com > point to > sip.domain.com            port 443

_sipfederationtls._tcp.domain.com > point to > sip.domain.com      port 5061
Manoj BojewarAuthor Commented:
what about Webconf and AV service
These DNS records will be enough to provide services to every feature of LYNC. Meet and Dialin is used to webconf and AV.
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Manoj BojewarAuthor Commented:
my Audio and Video Conferencing is not working and also online meeting is not working.. how to fix this issue
Have you setup the certificate correctly with all the Six SAN names I mentioned. Also confirm if the internal DNS is set properly.

You asked for certificate names which I mentioned and this is something else. Anyways Now explain the scenario that how you have setup your lync. The Question is not mentioning any details.
Manoj BojewarAuthor Commented:
its very difficult for me to explain my setup.. but i will give you some brief here...

i have four servers installed for lync 2010 Enterprise

1)Lync Front ent
2)Lync Backend database
3)Lync Monitor and archive server
4)Lync Edge server

i have two Lan card on edge server one with without gateway and DNS (internal edge ) and another with three IP with gateway and public DNS (External)

i have certiifcate installed for internal edge interface goh-lyndedge.hosting.local and external certiifcate with SIP.exchangemails.com and AV.exchangemails.com and webconf.exchangemails.com

it would be greate if we have remote session so that i can show you all the problems.
Drop me an email at abdulalikhan@hotmail.com and we will set a time.

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now