[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2468
  • Last Modified:

Lync 2010 Certificate Causing Restricted Calling Ability

Our certificate on our Lync 2010 frontend/backend server expired this weekend.  I got a new certificate issued by GoDaddy and got it installed ok.  We can IM, place calls, and see availability status ok.

Now, however, I get a message on Lync that says 'Server issues are restricting calling ability' and some customers are reporting they can't always call inbound to Lync users.  Also, Lync hosted meetings are inaccessible to outside users.

I did not touch the certificates on our edge or threat management gateway servers as their certificates did not expire.

To apply the cert to the frontend/backend server I used the deployment wizard with the lync installer.  I did not apply the cert in IIS nor on the edge or TMG servers.  It looks like the IIS cert was updated by the Lync deployment wizard since IIS shows the new certificate but I don't know if I can trust it.  Don't I have to install the intermediate cert somewhere in IIS?  Is this the problem?  

I think there is something else I need to do with our edge and gateway servers OR the new certificate to finish this up.  

And yes, I've restarted the server.
0
Field Marshall Bob
Asked:
Field Marshall Bob
  • 2
  • 2
2 Solutions
 
BusbarCommented:
are you sure that you have the certificate with its private key ?!
0
 
Field Marshall BobAuthor Commented:
busbar:  Thanks for the reply.  Yes, the certificate is keyed ok.

It was actually the inward facing certificate on our edge server.  It looks like there are a total of 3 certificates in the chain: External on Edge server, Internal on edge server, and internal on Lync server.  What happened is the one on the Lync server expired which I fixed striaght away.  The next day the one on the internal side of the edge server expired which i missed.  So it was a certificate problem but we had 2 expire in 24 hours.  I changed everything around and put my GoDaddy one on the external edge server side and used self signed certifcates for both edge internal and Lync server certificates.  All is good now.
0
 
Field Marshall BobAuthor Commented:
Certificate on interal side of edge server expired.
0
 
BusbarCommented:
Glad that I helped a little
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now