rdefino
asked on
Disable external access for lync 2010
We have a lync setup that has 2 edge servers and some internal lync servers. We need to disable external access so no one in the company can just start the lync client and connect in, but we need to keep federation access working.
How can this be done.
How can this be done.
If a user is licensed for the Lync client then I dont think you can stop them using it externally IF you have federation setup. I may be wrong but I have certainly not come across any way that this could be set in Lync 2013 that we use.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So In the lync admin console, I see under "external user access" there is Federated user access, remote user access and public provider access.
Now if I want just my user that are on our network and federated users to access our lync, do I uncheck remote user access and public provider access? Confused on this one.
Capture.PNG
Now if I want just my user that are on our network and federated users to access our lync, do I uncheck remote user access and public provider access? Confused on this one.
Capture.PNG
Public provider means Office 365, yahoo, skype..etc so if you disable the Public providers then you won't be able to connect with Skype users or Office 365 Lync online users ..etc
If you disable Remote user access, then your users won't be able to access Lync remotely through the edge server.
for your choice you will only have to leave the option "Enable communications with federated users" enabled for your users.
If you don't want to confuse your self I suggest you disable everything on the Global policy except "Enable communications with federated users" and make sure that all users have the global policy set on their settings.
If you disable Remote user access, then your users won't be able to access Lync remotely through the edge server.
for your choice you will only have to leave the option "Enable communications with federated users" enabled for your users.
If you don't want to confuse your self I suggest you disable everything on the Global policy except "Enable communications with federated users" and make sure that all users have the global policy set on their settings.
ASKER
ok, so by unchecking all on global but "federated user access" all my users will have access will on our network and access to who has been federated?
Where do I set "global policy set on their settings"
thanks
Where do I set "global policy set on their settings"
thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.