Solved

Lync 2010 Certificate Causing Restricted Calling Ability

Posted on 2013-06-10
4
2,354 Views
Last Modified: 2013-06-17
Our certificate on our Lync 2010 frontend/backend server expired this weekend.  I got a new certificate issued by GoDaddy and got it installed ok.  We can IM, place calls, and see availability status ok.

Now, however, I get a message on Lync that says 'Server issues are restricting calling ability' and some customers are reporting they can't always call inbound to Lync users.  Also, Lync hosted meetings are inaccessible to outside users.

I did not touch the certificates on our edge or threat management gateway servers as their certificates did not expire.

To apply the cert to the frontend/backend server I used the deployment wizard with the lync installer.  I did not apply the cert in IIS nor on the edge or TMG servers.  It looks like the IIS cert was updated by the Lync deployment wizard since IIS shows the new certificate but I don't know if I can trust it.  Don't I have to install the intermediate cert somewhere in IIS?  Is this the problem?  

I think there is something else I need to do with our edge and gateway servers OR the new certificate to finish this up.  

And yes, I've restarted the server.
0
Comment
Question by:Field Marshall Bob
  • 2
  • 2
4 Comments
 
LVL 33

Assisted Solution

by:Busbar
Busbar earned 100 total points
ID: 39236972
are you sure that you have the certificate with its private key ?!
0
 
LVL 1

Accepted Solution

by:
Field Marshall Bob earned 0 total points
ID: 39242509
busbar:  Thanks for the reply.  Yes, the certificate is keyed ok.

It was actually the inward facing certificate on our edge server.  It looks like there are a total of 3 certificates in the chain: External on Edge server, Internal on edge server, and internal on Lync server.  What happened is the one on the Lync server expired which I fixed striaght away.  The next day the one on the internal side of the edge server expired which i missed.  So it was a certificate problem but we had 2 expire in 24 hours.  I changed everything around and put my GoDaddy one on the external edge server side and used self signed certifcates for both edge internal and Lync server certificates.  All is good now.
0
 
LVL 1

Author Closing Comment

by:Field Marshall Bob
ID: 39252601
Certificate on interal side of edge server expired.
0
 
LVL 33

Expert Comment

by:Busbar
ID: 39252679
Glad that I helped a little
0

Featured Post

Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

Join & Write a Comment

Today I came across an interesting issue that had me pulling my hair out.  I was troubleshooting a new internal web site which uses integrated security instead of anonymous.  When browsing the site from my laptop, I was able to access it with no iss…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now