I have a new Lync 2013 deployment that has an FE server for internal clients, an edge server for external clients, and an IIS ARR server that publishes the URLs. I recently installed a publicly trusted UCC cert on my edge and IIS ARR servers to find that I cannot connect remotely using the thick Lync client. The mobile apps work correctly, as do all of the published URLs (meet, dialin, weblync, etc.). The Lync Web App works as well. I've attached screenshots of my test results at testconnectivity.microsoft
.com. The autodiscover test appears to succeed. The remote connectivity test fails and claims it can't find my cert. I really need my internal users to be able to launch the thick Lync client from their corporate laptops when they are working remotely. What am I missing?