Hi
I am using Lync 2013 Ent, Edge Servers and TMG as my Reverse Proxy.
I publish meeting url (meet.mydomain.ru), webext.mydomain.ru, lyncdiscover.mydomain.ru in TMG.
When External Users without Lync clients try connect to the meeting (https://meet.mydomain.ru/name/ABCDEF) In TMG logs i noticed a strange thing.
Users send GET http://meet.mydomain.ru/meet via HTTPS and then user try to send
GET http://webext.mydomain.ru/lwa/WebPages/LwaClient.aspx?legacy= via HTTP. TMG Block this request.
To make it work I turned on the "Allow Client Authentication over HTTP" option on Listener in TMG. Users browser really don't like authentication over HTTP and meet urlmust be added to zone with minimal restrictions.
While Internal users when they connect to meet url send GET http://webint.mydomain.ru/lwa/WebPages/LwaClient.aspx?legacy= via HTTS
Its normal? Any ideas how can fix this issue?
Any help is appreciated.
Thank you!