Hello,
our users don't have administrator rights. When a lync meeting link comes to them they're trying to install skype web app plugin. But they can't as they don't have admin rights. So we've downloaded the plugin and tried to install for all users (as users connect to a remote desktop server) but the msi is for only current user. Is there anything we can do? Our Microsoft support contact can't find anything about this.
Thank you
I have an issue, where few users are unable to sign-in. This has specifically to do with the users who returned after long leave. And in our company the users who go for longleave the account gets disabled. Once they return, the User account is enabled back again. When they try to sign-in, they get an error incorrect credentials.
We have Lync 2013 and 2010 in environment. All users are in Lync 2013. When we move users to Lync 2010, after some time the users would be able to sign-in. But once they are moved back to 2013, the issue turns up.
I get the following event in Lync FE Server:
Log Name: Lync Server
Source: LS User Replicator
Date: <Date>
Event ID: 30020
Task Category: (1009)
Level: Warning
Keywords: Classic
User: N/A
Computer: <FE SERVER NAME>
Description:
A user URI is already being used by another valid user in the database. Resolve the conflict by using a URI that isn't already taken, or deleting one of the users from AD.
URI:
sip:<User sip address>
The DN of the user whose URI User Replicator tried to replicate is:
<DN of the user>
This update came from domain:
Lync Server Domain name
The source of the replication is LocalRegistrarReplication.
Cause: Typically caused by having multiple user or contact objects in AD with identical msRTCSIP-PrimaryUserAddress attribute values.
Resolution:
Use a URI that isn't already taken, or delete one of the offending users. You may use Dbanalyze to diagnose the problem.
Furher which when I run the command: get-csclientcertificate, I get the following error:
User "SIP Address" is not validly homed on target <Server Pool Name>.
Need Help.
no web services when manually failed over to paired Lync 2013 SE FE
1. we manually failed over to the second SE FE when mocking a failure with the first SE FE in the pair
2. users could register to the 2nd SE FE, but web services no longer worked (i.e. - address book lookup. we are using WebSearchOnly)
what can i do to troubleshoot this?
I found this technet reference but have some questions on it.
If I point the all external DNS record to first site A, the sip federation still work on Site B?
If our user is home on Site B , our user can through Site A reserver proxy to re-directly to Site B login?
If I point the all external DNS record to first site A, Site B user still using Site B pool but both have separate different DNS record for egde pool and different public certificate right ?
https://technet.microsoft.com/en-us/library/gg398797(v=ocs.15).aspx
Thanks.
Hi all,
I'm preparing to start our project to upgrade our 3 pools to SfB using the in-place upgrade method. I've been reading up on the Technet documentation on how this should flow but I'd like to take a different approach....
I have 3 sites. Site 1 contains my CMS and Pchat server, the other 2 sites contain a FE pool, Edge pool, SQL mirror and Reverse Proxy.
I'd like to start of by upgrading Site 2, at the moment its got no-one homed on it so I'd like to upgrade it and then move a pilot group onto it to prove it out and see how it performs.
So my question is, rather than upgrading Site 1 and moving users to Site 2 and then back to Site 1, is it safe to upgrade Site 2 for now? I'm not sure what this does to the CMS so I'd rather not cause a global outage if I were to upgrade Site 2 on its own :)
Cheers
I have downloaded the Test Drive - Lync Server 2013 - Part 1 to 3 from download center.
I have extracted successfully every virtual machine apart from "Lync 2013 FE". While doing with Lync FE I am getting the error as "An error occurred while trying to copy a file: The source file is corrupted.
I have tried so many times extracting and also downloaded files again from download center and still facing same issue.
I have to install and configure this as soon as possible as my deadline are near and I am stuck at this point.
It will be great help for me if anyone come up with some solution.
I was able to get some software to recover corrupted VHD files but this is an EXE file and sad that nobody talk about .exe to VHD scenario.
#HELP
#Lync-Server-2013
hello,
im facing a problem with publishing our topology.
we had a failure with our Lync server 2013 FE and we had to re-install the OS from scratch after the installation we have configured the Lync FE with same exact configuration of the old one, everything went fine and all users are able to communicate "even with federated users, all sharing and Audio/video calls are working fine".
but now we had to change our Edge public IPs due to change of our Public network.
after all the change from the Topology builder and the IPs of the Edge server (Only the external IPs changed the internal IP is still the same as before), we are getting an error from the Topology Builder says "Enable-cstopology fails".
this is the error.
| └ | Check permissions for CN=RTC Service,CN=Services,CN=Configuration,DC=office365demo,DC=org | 11/6/2013 9:47:20 AM |
| └ | Check permissions for ConfigurationContainer | 11/6/2013 9:47:20 AM |
| └ | Check permissions for RootDomainSystemContainer | 11/6/2013 9:47:20 AM |
| └ | Access permission only applies to the Active Directory System container. | 11/6/2013 9:47:20 AM |
| └ | Result: Check permissions for Configuration deleted objects container | 11/6/2013 9:47:20 AM |
| └ |
| 11/6/2013 9:47:20 AM | Error |
| └ | Error: An error occurred: "Microsoft.Rtc.Management.Deployment.ActiveDirectoryException" "The security descriptor is null. You might not have permissions to read the security descriptor, or the specified target distinguished name (DN) is incorrect." | 11/6/2013 9:47:20 AM | Error |
i tryed the
grant-cssetuppermission -comuterou "CN=the OU of the Lync server,DC=domain,DC=org"
then did the test of the permission using
test-cssetuppermission -computerOU "CN=the OU of the Lync server,DC=domain,DC=org"
and the result is "True"
but after that i run the topology builder as an administrator account try to publish it but the same exact error.
i would relly appreciate your help.
$session = New-PSSession -ConnectionUri "<a href="https:///ocspowershell">https://<server>/ocspowershell" -Credential (Get-Credential) Authentication Negotiate
Import-PSSession -Session $session
Test-CsDatabase not a valid Cmdlet
Hi all, (Very long post…)
I am looking into how I can reduce the number of SAN entries in Skype Front End Pool / Proxy and Edge certificate. The customer has numerous SIP Domains (21) and I want to reduce the number of SAN entries in the certificates.
Customer SIP Domains: (Changing the SIP Domains isNOT an option).
no.customername.com
se.customername.com
dk.customername.com
us.customername.com
fr.customername.com
etc.customername.com …..
This results in aFront-End / Web Service (Proxy) certificate with about66 SAN entries using the certificate wizard.
CN=FEPoolName
SAN=FE01
SAN=FE02
SAN=FE0x
SAN=dialin.no.customername.com
SAN=meet.no.customername.com (this is the common meet URL for all SIP Domains)
SAN=sip.<CountryCode>.customername.com…(one per SIP Domain x21)
SAN=LyncdiscoverInternal…. (one per SIP Domain x21)
SAN=Lyncdiscover…. (one per SIP Domains x21)
SAN=PoolName
This is A LOT of SAN entries and I want to reduce this as much as possible. Microsoft states in a TechNet articles that you can reduce the LyncDiscover entries by using CNAMES. However, Microsoft also states, “This approach is supported, but we do not recommend it.” without really explaining why. That will not do for the customer or me. I need to understand if this could negatively affect a full SfB deployment (all modalities internally and externally).
Next is theEdge External certificate:
CN=ExtEdgePoolName
SAN=sip.<CountryCode>.customername.com…(one per SIP Domain 21x)
SAN=<CountryCode>.customername.com…(one per SIP Domain 21x)
SAN=AccessEdgeFQDN
SAN=WebConferencingEdgeFQDN
SAN=ExtEdgePoolName
Why does the wizard add SAN entries for the <domain name> in addition to sip.<domain name>? It makes perfect sense that you add sip.<domain name> to the cert, but it does not make any sense to add the <domain name> as well. The documentation on Edge certificate requirements for SfB is none existent.
So to summarize:
How can I reduce the number of san entries in Front End Pool / Web Service and Edge Pool External certificates in Skype for Business?
Thanks in advance,
Christer
After migrating a user using force to Skype for business they are being prompted for their Exchange credentials and credentials to a certificate service over and over again.
Anyways ideas how to fix this?
Hi
Has somebody installed the UCWA Runtime on a Lync Frontend Server ? Is it supported to install the Runtime on a Frontend ?
Thanks,
Maeffy
Hi guys.
Two standard front end Lync servers in pool pairing.
Two edge servers in one edge pool.
Problem:
Lync VOIP Works inside LAN, it Works also if the Lync-PC client connects to VPN (so basically similiar as LAN scenario), but Lync VOIP callin not working if client connects to Lync EDGE servers.
We have done some wireshark traces and send them to our SIP-Trunk provider and we have recieved information from them that problem is caused on our side. Provider saids they don't get any RTP from us.
Can anyone please explain where to look for the root of this problem?
bostjanc
We've been in Lync/S4B Hybrid for a few months and have most of our users homed online. We are now beginning to plan how to end the hybrid configuration, move to online only, and retire our on-premise Lync servers. I've found shockingly little information on this and am hoping someone has done it and can lead me through the process.
Thanks in advance!
Recently i deployed skype for business 2015 server in my environment. All features works fine(chatting,Video,Presentation). Only issue is not able to connect exchange ews services. Its keep on prompting for password, not accepting.
My Environment:- Exchange server 2013 Enterprise, skype for business 2013 standard.
Below things i checked for troubleshooting but not worked:-
1) My internal and external domain are different.(created SRV record in internal domain for autodiscover, not worked, afterthat i removed srv record).
2) checked autodiscover link in user machine and client server(Its asking for credentials, after entering it showing xml page).
3) EWS and autodiscover virtual directory authentication checked.
Current authentication settings:-
Autodiscover = Integrated and basic
EWS == Integrated only. (for testing i enabled basic nd integrated but that also not worked.)
please advice on this above issue..
At least with old Lync 2010/2013, it was possible to run a vbs script to add new contact groups to peoples contact lists from an IT admin standpoint.. it now seems as if that script no longer works with 2015.. (i tried it.. it runs, no errors but nothing gets added)..
Is there some trick to getting this done with 2015?
Thanks in advance
Tech, the Universe, Everything: http://tech-stew.com Just Plane Crazy http://flight-stew.com
I have run in to a problem while deploying Edge 2013 server. Edge has two NICs configured and they are in two different subnets. Edge Public IP is NATed to Edge external interface and entry is added in hosts file for front-end server.
As external user tries to sign-in, packet comes in through external firewall and it hits Edge external interface. Here is the exact problem. Edge fails to route the packet to front-end. Static route is configured to internal n/w and i can sign-in on to Lync
client from Edge server though.
However, if there is no NAT in picture (Edge connected to Public interface), traffic gets through and Lync client signs-in.
Anything to do with CU 5.0.8308 that's running ?
Hello All.................I am facing this warning on Enable-CSComputer
Create rewrite rule for Web Scheduler.
Warning: No patterns found. Skipping rewrite rule creation for Web Scheduler.
It is a new deployment. Should I ignore it or I need to configure something to rectify it?
Dear All,
I am trying to install the standard edition 2013.But when I am running set up 2.I am getting an error occurred while applying sql script for the feature backendstore.
Sandeep Kumar
In the Site Resiliency using pool pairing on Lync 2013, do the Archiving data also synchronized across the sites ?
If we are using SQL single instance for archiving.
How we can replicate the archive across the sites ?
Hello All.................I have Consolidated Edge and Reverse Proxy configured for External Access. I am facing issues with External Access.
DNS: All relevant internal and external DNS records are in place.
Ports: All relevant ports are enabled for inbound and outbound connections except for 50000-59999 TCP of Edge.
Certificates: All relevant certificates are installed internally and externally. I am currently using internal CA generated certificate on both Reverse Proxy and Edge external interface. External users have Internal CA Certificate installed.
Microsoft Remote Connectivity Analyzer Results:
1. Lync Autodiscover Web Service Remote Connectivity Test
Result: All Green
2. Lync Server Remote Connectivity Test
Result: Failure at Below Error
Testing remote connectivity for user user1@domain.com to the Microsoft Lync server.
Specified remote connectivity test(s) to Microsoft Lync server failed. See details below for specific failure reasons.
Tell me more about this issue and how to resolve it
Additional Details
Couldn't sign in. Error: Error Message: The certificate chain was issued by an authority that is not trusted.
Error Type: TlsFailureException.
.
Elapsed Time: 4398 ms.
When I try to login, it takes a little time before asking for a password and once I provide the password it remains stuck on the sign in screen with "Contacting server and signing in......" message.
I am not sure how to go about troubleshooting it. Any headway would be appreciated. Thanks.