?
Solved

Lync 2013 Certificate Requirement

Posted on 2013-11-17
10
Medium Priority
?
3,289 Views
Last Modified: 2013-11-18
Hello Experts,

I have deployed Lync 2013 Standard Edition. I have only 2 public IP's. I am using for Web external service and edge server.

I need to purchase and request a single certificate that I can use on Lync and Lync Edge service for external access. Is that possible.

I don't want to purchase Wildcard Certificate.
I would highly appreciate any help.

Thanks
0
Comment
Question by:cciedreamer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4
10 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39654410
You can use Public SAN certificate for your scenario

Certificate requirements for Lync 2013
http://technet.microsoft.com/en-us/library/gg398094.aspx

To generate Certificate CSR
http://www.digicert.com/csr-creation-lync-2013.htm

To install Certificate
http://www.digicert.com/ssl-certificate-installation-lync-2013.htm
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655558
Thanks.

How do I request a new certificate from lync that include required URL's

Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655610
Hello,,

I request a single certificate with SN and SAN

SN = sip.domain.com
SAN = meet.domain.com
SAN=  admin.domain.com
SAM= dialin.domain.com

Thanks
0
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

 
LVL 37

Expert Comment

by:Mahesh
ID: 39655615
You can logon to edge server and run Lync "Request, install or assign" setup wizard and select Edge External and follow the on scrren steps
Normally setup will generate required Subject alternative names (SAN) automatically.
you may specify and additional SAN names if required.
The below article explains how to generate Certificate request on Edge Server
http://technet.microsoft.com/en-us/library/gg398409.aspx
http://www.digicert.com/csr-creation-lync-2013.htm with screen shots
Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655624
OK Got it.

Request a new certificate on Edge Server and add the required domain names. Export it to Lync Frond End Server.

I would highly appreciate if you can provide me steps to export add exported the certificate on Lync Front End.
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 2000 total points
ID: 39655685
You have asked question about edge server in original question
For front end server certificate requirements, please check below MS article
http://technet.microsoft.com/en-us/library/gg398094.aspx
I suggest you to collect all required URLs first for Edge Server and fornt end server
U can have public certificates with SAN for all servers

Please review certificate requirements for Lync 2013 entirely before proceeding.
http://technet.microsoft.com/en-us/library/gg398066.aspx
In above URL, you will find cert requirements for Edge external interface, Edge internal interface, front end servers and so on.

You can export certificate from certificate personnel store through MMC with private Key from windows server.Check below articles
http://technet.microsoft.com/en-us/library/cc785830(v=ws.10).aspx
https://www.geocerts.com/support/migrate_iis

please hire any consultant if you need help in identifying lync specific certificate requirements for your organisation for all servers.

Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655689
Hello Mahesh,
Sorry for typo mistakes.

My concern I want to purchase and use only 1 certificate that can be used Lync Simple URL ( web external access) and Lync Edge Server.

So my question how do I generate a certificate request that will required SN and SAN ?

Thanks for your support
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39655724
The certificate request can be generated through Lync Setup which I already mentioned in previous posts.
For required certificate SAN URLs for Edge and Frontend servers, check belwo link
http://technet.microsoft.com/en-us/library/gg398066.aspx
please hire any consultant if you need help in identifying lync specific certificate SAN URL requirements for edge and front end server for your organisation.
Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655738
Actually we are not using for Enterprise Solution, we just to integrate with Polycom HDX Video Conferencing.
0
 
LVL 3

Author Closing Comment

by:cciedreamer
ID: 39657535
Thanks
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
The goal of the tutorial is to teach the user how to instant message and make a video call in Skype.
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question