Solved

Lync 2013 Certificate Requirement

Posted on 2013-11-17
10
3,271 Views
Last Modified: 2013-11-18
Hello Experts,

I have deployed Lync 2013 Standard Edition. I have only 2 public IP's. I am using for Web external service and edge server.

I need to purchase and request a single certificate that I can use on Lync and Lync Edge service for external access. Is that possible.

I don't want to purchase Wildcard Certificate.
I would highly appreciate any help.

Thanks
0
Comment
Question by:cciedreamer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4
10 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39654410
You can use Public SAN certificate for your scenario

Certificate requirements for Lync 2013
http://technet.microsoft.com/en-us/library/gg398094.aspx

To generate Certificate CSR
http://www.digicert.com/csr-creation-lync-2013.htm

To install Certificate
http://www.digicert.com/ssl-certificate-installation-lync-2013.htm
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655558
Thanks.

How do I request a new certificate from lync that include required URL's

Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655610
Hello,,

I request a single certificate with SN and SAN

SN = sip.domain.com
SAN = meet.domain.com
SAN=  admin.domain.com
SAM= dialin.domain.com

Thanks
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 37

Expert Comment

by:Mahesh
ID: 39655615
You can logon to edge server and run Lync "Request, install or assign" setup wizard and select Edge External and follow the on scrren steps
Normally setup will generate required Subject alternative names (SAN) automatically.
you may specify and additional SAN names if required.
The below article explains how to generate Certificate request on Edge Server
http://technet.microsoft.com/en-us/library/gg398409.aspx
http://www.digicert.com/csr-creation-lync-2013.htm with screen shots
Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655624
OK Got it.

Request a new certificate on Edge Server and add the required domain names. Export it to Lync Frond End Server.

I would highly appreciate if you can provide me steps to export add exported the certificate on Lync Front End.
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39655685
You have asked question about edge server in original question
For front end server certificate requirements, please check below MS article
http://technet.microsoft.com/en-us/library/gg398094.aspx
I suggest you to collect all required URLs first for Edge Server and fornt end server
U can have public certificates with SAN for all servers

Please review certificate requirements for Lync 2013 entirely before proceeding.
http://technet.microsoft.com/en-us/library/gg398066.aspx
In above URL, you will find cert requirements for Edge external interface, Edge internal interface, front end servers and so on.

You can export certificate from certificate personnel store through MMC with private Key from windows server.Check below articles
http://technet.microsoft.com/en-us/library/cc785830(v=ws.10).aspx
https://www.geocerts.com/support/migrate_iis

please hire any consultant if you need help in identifying lync specific certificate requirements for your organisation for all servers.

Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655689
Hello Mahesh,
Sorry for typo mistakes.

My concern I want to purchase and use only 1 certificate that can be used Lync Simple URL ( web external access) and Lync Edge Server.

So my question how do I generate a certificate request that will required SN and SAN ?

Thanks for your support
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39655724
The certificate request can be generated through Lync Setup which I already mentioned in previous posts.
For required certificate SAN URLs for Edge and Frontend servers, check belwo link
http://technet.microsoft.com/en-us/library/gg398066.aspx
please hire any consultant if you need help in identifying lync specific certificate SAN URL requirements for edge and front end server for your organisation.
Thanks
0
 
LVL 3

Author Comment

by:cciedreamer
ID: 39655738
Actually we are not using for Enterprise Solution, we just to integrate with Polycom HDX Video Conferencing.
0
 
LVL 3

Author Closing Comment

by:cciedreamer
ID: 39657535
Thanks
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
The viewer will learn how to use a discrete random variable to simulate the return on an investment over a period of years, create a Monte Carlo simulation using the discrete random variable, and create a graph to represent the possible returns over…
The viewer will learn how to create two correlated normally distributed random variables in Excel, use a normal distribution to simulate the return on different levels of investment in each of the two funds over a period of ten years, and, create a …

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question