Solved

Lync 2010 Certificate Causing Restricted Calling Ability

Posted on 2013-06-10
4
2,402 Views
Last Modified: 2013-06-17
Our certificate on our Lync 2010 frontend/backend server expired this weekend.  I got a new certificate issued by GoDaddy and got it installed ok.  We can IM, place calls, and see availability status ok.

Now, however, I get a message on Lync that says 'Server issues are restricting calling ability' and some customers are reporting they can't always call inbound to Lync users.  Also, Lync hosted meetings are inaccessible to outside users.

I did not touch the certificates on our edge or threat management gateway servers as their certificates did not expire.

To apply the cert to the frontend/backend server I used the deployment wizard with the lync installer.  I did not apply the cert in IIS nor on the edge or TMG servers.  It looks like the IIS cert was updated by the Lync deployment wizard since IIS shows the new certificate but I don't know if I can trust it.  Don't I have to install the intermediate cert somewhere in IIS?  Is this the problem?  

I think there is something else I need to do with our edge and gateway servers OR the new certificate to finish this up.  

And yes, I've restarted the server.
0
Comment
Question by:Field Marshall Bob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 33

Assisted Solution

by:Busbar
Busbar earned 100 total points
ID: 39236972
are you sure that you have the certificate with its private key ?!
0
 
LVL 1

Accepted Solution

by:
Field Marshall Bob earned 0 total points
ID: 39242509
busbar:  Thanks for the reply.  Yes, the certificate is keyed ok.

It was actually the inward facing certificate on our edge server.  It looks like there are a total of 3 certificates in the chain: External on Edge server, Internal on edge server, and internal on Lync server.  What happened is the one on the Lync server expired which I fixed striaght away.  The next day the one on the internal side of the edge server expired which i missed.  So it was a certificate problem but we had 2 expire in 24 hours.  I changed everything around and put my GoDaddy one on the external edge server side and used self signed certifcates for both edge internal and Lync server certificates.  All is good now.
0
 
LVL 1

Author Closing Comment

by:Field Marshall Bob
ID: 39252601
Certificate on interal side of edge server expired.
0
 
LVL 33

Expert Comment

by:Busbar
ID: 39252679
Glad that I helped a little
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question