Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying LYNC SERVER COOKBOOK
  • Table Of Contents Toc
  • Feedback & Rating feedback
LYNC SERVER COOKBOOK

LYNC SERVER COOKBOOK

By : Volpe, Giombini, Lasse N Wedo, Antonio Maria Maciel D Vargas
4.7 (3)
Buy this Book
close
close
LYNC SERVER COOKBOOK

LYNC SERVER COOKBOOK

4.7 (3)
By: Volpe, Giombini, Lasse N Wedo, Antonio Maria Maciel D Vargas
Buy this Book

Overview of this book

If you work with Lync on a daily basis or if you have to use a specific feature of Lync for a project, this is the book for you. For solutions architects, technical consultants, and administrators, if you have a Lync deployment and you want to upgrade, integrate, secure, or extend it to the cloud, you can get valuable information from the recipes in this book.
Table of Contents (14 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Sections
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Free Chapter
1
1. Lync 2013 Security
chevron up
Icon
1. Lync 2013 Security
Icon
Introduction
Icon
Controlling administrative rights with RBAC and custom cmdlets
Icon
Hardening Lync Servers
Icon
Hardening Lync databases
Icon
Enhancing conferencing security
Icon
Managing certificates for the authentication of desk-phones
Icon
Deploying a secure Lync Edge
Icon
Applying ethical walls for federation security
Icon
Using Application Request Routing to configure a reverse proxy for Lync Server 2013
2
2. Lync 2013 Authentication
Icon
2. Lync 2013 Authentication
Icon
Introduction
Icon
Configuring passive authentication for Lync
Icon
Enabling two-factor authentication
Icon
Adding the app password for mobile clients
Icon
Authenticating with online services using DirSync
Icon
Managing Windows Azure Directory for Lync Online
Icon
Configuring server-to-server authentication
Icon
Troubleshooting with client authentication logging
3
3. Lync Dial Plans and Voice Routing
Icon
3. Lync Dial Plans and Voice Routing
Icon
Introduction
Icon
Introducing dial plans and voice routing
Icon
Defining dial plans
Icon
Configuring PSTN usage – voice policy
Icon
Configuring PSTN usage – Location-Based Routing
Icon
Enabling routes
Icon
Validating trunks
Icon
Configuring load balancing, failover, and least cost routing
Icon
Controlling call forwarding
4
4. Lync 2013 Integration with Exchange
Icon
4. Lync 2013 Integration with Exchange
Icon
Introduction
Icon
Configuring the Unified Messaging integration
Icon
Configuring OAuth between Lync 2013 and Exchange 2013
Icon
Configuring Lync 2013 and Exchange 2013 as partner applications
Icon
Configuring Lync 2013 to use Exchange 2013 for archiving
Icon
Configuring Lync 2013 to use the Exchange 2013 Unified Contact Store
Icon
Integrating Lync 2013 with the Exchange 2013 Outlook Web App
5
5. Scripts and Tools for Lync
Icon
5. Scripts and Tools for Lync
Icon
Introduction
Icon
Installing Lync prerequisites and more – Set-Cs2013Features
Icon
Creating a fully functional voice configuration – Lync Dialing Rule Optimizer
Icon
Switching between multiple Lync identities with a click – Profiles for Lync (P4L)
Icon
Tracing made easier – Lync 2013 Centralized Logging Tool
Icon
Identifying recurrent issues – Lync Pilot Deployment Health Analysis
Icon
Managing phone numbers – Search-LineURI and Get-UnusedNumbers
Icon
Managing Call Pickup Groups – Lync2013CallPickupManager 1.01
6
6. Designing a Lync Solution – The Overlooked Aspects
Icon
6. Designing a Lync Solution – The Overlooked Aspects
Icon
Introduction
Icon
Meeting your users' expectations
Icon
User training
Icon
Gathering the users' requirements
Icon
Weighing up around Lync virtualization
Icon
Network readiness – introduction
Icon
Defining personas for the network
Icon
Defining sites for the network
Icon
Network readiness – reviewing and analyzing results
7
7. Lync 2013 in a Resource Forest
Icon
7. Lync 2013 in a Resource Forest
Icon
Introduction
Icon
Planning a resource forest
Icon
Using Exchange Online for a Lync resource forest
Icon
Configuring FIM in a Lync resource forest
Icon
Synchronizing forests with FIM
Icon
Deploying Azure Active Directory Synchronization services (AAD Sync) in a Lync resource forest
Icon
AAD Sync synchronization services and rules
8
8. Managing Lync 2013 Hybrid and Lync Online
Icon
8. Managing Lync 2013 Hybrid and Lync Online
Icon
Introducing Lync Online
Icon
Administering with the Lync Admin Center
Icon
Using Lync Online Remote PowerShell
Icon
Using Lync Online cmdlets
Icon
Introducing Lync in a hybrid scenario
Icon
Planning and configuring a hybrid deployment
Icon
Moving users to the cloud
Icon
Moving users back on-premises
Icon
Debugging Lync Online issues
9
9. Lync 2013 Monitoring and Reporting
Icon
9. Lync 2013 Monitoring and Reporting
Icon
Introduction
Icon
Installing Lync 2013 monitoring reports
Icon
Selecting the right kind of report
Icon
Call Diagnostic Reports
Icon
Media Quality Diagnostic Reports
Icon
Call Leg Media Quality Report
Icon
Lync 2013 with System Center 2012 R2 Operations Manager
Icon
Configuring a watcher node and synthetic transactions
10
10. Managing Lync 2013 Backup and Restore
Icon
10. Managing Lync 2013 Backup and Restore
Icon
Introduction
Icon
Topology information
Icon
Configuration information
Icon
User database
Icon
Persistent Chat database
Icon
The Location Information LIS database
Icon
The Response Group Services configuration
Icon
Certificates
Icon
Backend databases
Icon
Voice dial plans, policies, and settings
Icon
File services
Icon
Don't forget the infrastructure – the greater recovery plan
11
11. Controlling Your Network – A Quick Drill into QoS and CAC
Icon
11. Controlling Your Network – A Quick Drill into QoS and CAC
Icon
Introduction
Icon
Gathering data about your network
Icon
Creating network bandwidth policies
Icon
Adding networks to the topology
Icon
Creating region links and routes
Icon
Enabling CAC
Icon
Preparing servers and clients for DSCP tagging
Icon
Controlling/limiting the port ranges for traffic
Icon
Media bypass
12
12. Lync 2013 Debugging
Icon
12. Lync 2013 Debugging
Icon
Introduction
Icon
Using Snooper to examine log files
Icon
Investigating Call Flow with Snooper Flow Chart
Icon
Reviewing Lync information with OCSLogger
Icon
Tracing from a command line with OCSTracer
Icon
Customizing CLS scenarios using CLSController
Icon
Testing our setting with Best Practices Analyzer
Icon
Capturing network traffic with Wireshark
Icon
Troubleshooting clients with the Microsoft Lync Connectivity Analyzer
Icon
Verifying a deployment with the Microsoft Remote Connectivity Analyzer
13
Index
Icon
Index

Enhancing conferencing security

Conferencing, in Lync Server 2013, has the same default security configuration that we had in Lync Server 2010. Justin Morris, in a post dedicated to Lync Server 2010 conferencing (http://www.justin-morris.net/understanding-conference-security-in-lync-server-2010/), pointed out some of them, including the fact that every Lync user has a meeting URL and a conference ID that never changes by default, and that users invited to a meeting using a PSTN line have the ability to bypass the lobby. If we always use the same conference ID, people outside our company whom we have invited in the past could use it with malicious motivations, or different (unrelated) conferences with different people could merge if our time schedule is not perfect. We will list some steps to improve conferencing security, including a couple of cmdlets from the previously mentioned post.

How to do it...

  1. We can start assessing the security configuration of conferencing for our Lync deployment using Get-CsMeetingConfiguration.
  2. To disable the lobby bypass for PSTN users, use the following cmdlet:
    Set-CsMeetingConfiguration -PstnCallersBypassLobby $false
  3. To force users to schedule private meetings (with unique IDs), use the following cmdlet:
    Set-CsMeetingConfiguration -AssignedConferenceTypeByDefault $false -EnableAssignedConferenceType $true
  4. Then, we have to work on the conferencing policies. The default global policy allows almost any of the available conferencing features. I suggest that you clone it using New-CsClonedPolicy from Pat Richard (http://www.ehloworld.com/2300). This script is useful to create a new user-conferencing policy called, for example, DefaultConferencing, which will have the same parameters we had in the global policy. The cmdlet we will use is the following one:
    .\New-CsClonedPolicy.ps1 -SourcePolicyName global -TargetPolicyName "DefaultConferencing" -PolicyType ConferencingPolicy
  5. Restrict the global conferencing policy to match the minimal level of service we will grant to every Lync-enabled user.
  6. To enhance conferencing security, we can also restrict the number of TCP ports involved in the client communication. Launch the Get-CsConferencingConfiguration cmdlet to look at the applied configuration. If ClientMediaPortRangeEnabled is False, then the clients will use a port between ports 1024 and 65535 when involved in a communication session. We can use the following cmdlet to force port range (default will be starting from TCP port 5350 for all the kind of network traffic):
    Get-CsConferencingConfiguration | Set-CsConferencingConfiguration  -ClientMediaPortRangeEnabled $True

How it works...

As we said, the cmdlet shown in step 6 will use the same TCP port for all the network traffic involved in the clients' communication. We can refer to Chapter 11, Controlling Your Network – A Quick Drill into QoS and CAC to also implement Quality of Service (QoS) and Call Admission Control (CAC).

See also

I suggest that you also read a second post from Justin Morris, which is related to the unique conference IDs, Why You Should and Shouldn't Configure Unique Conference IDs in Lync (http://www.justin-morris.net/why-you-should-and-shouldnt-configure-unique-conference-ids-in-lync/#sthash.W9h9mCzn.dpuf). This post examines the pros and cons of the solution outlined in the previous document in depth.

End of Section 6
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY