RFVDB
asked on
SKYPE FOR BUSINESS EXTERNAL CLIENTS – Error on connecting due to wrong SSL Cert
I’ve configured a Skype for Business 2015 Front End Standard Server with an Edge Server. No Proxy Server yet.
I have a separate external third party UCC SSL Cert on the FE server for the external web services and a third party UCC SSL Cert for the Edge Server (just for sip.domain.com and domain.com, the default selections).
On the FE Default Server Certificate and Internal Web Services Certificates I used an internal CA for the certificates.
When external clients using Skype for Business 2015 Client attempt to connect using their email address (we only have to put in our email address and it finds the server) it comes up with an SSL Cert error stating “Lync is attempting to connect to domain.internaldomain.loca
See attached image.
And if I connect anyway it doesn’t work because the internal CA is of course not externally trusted.
Anyhow, I can’t figure out why it’s trying to use the internal URLs rather than the external URLs and external SSL certs?
ExternalLyncCertificateIssue---Copy.PNG
I have a separate external third party UCC SSL Cert on the FE server for the external web services and a third party UCC SSL Cert for the Edge Server (just for sip.domain.com and domain.com, the default selections).
On the FE Default Server Certificate and Internal Web Services Certificates I used an internal CA for the certificates.
When external clients using Skype for Business 2015 Client attempt to connect using their email address (we only have to put in our email address and it finds the server) it comes up with an SSL Cert error stating “Lync is attempting to connect to domain.internaldomain.loca
See attached image.
And if I connect anyway it doesn’t work because the internal CA is of course not externally trusted.
Anyhow, I can’t figure out why it’s trying to use the internal URLs rather than the external URLs and external SSL certs?
ExternalLyncCertificateIssue---Copy.PNG
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.