Smartphone

OWA Integration with Lync Wildcard issues

OWA Integration with Lync Wildcard issues

My apologies for no new Lync Server 2013 Preview posts, my home lab died on me. So I had to move it to my computer for the time being but with 16GB ram trying to run 7-12 servers is a challenge. But this post is regarding a real world issue I was in front of and hope it will resolve another issue out there.

I have seen dozens of Exchange 2010 deployments using wildcard certificates to publish OWA. Which works great, unless your trying to integrate Lync and your wildcard OWA!



The process of getting around this is pretty straight forward, but is not at straight forward coming up with the solution.

When configuring your OWA virtual directory for Instant Messaging you need to assign the certificate thumbprint you will be using




The problem is if you use the wildcard certificate you will not able to sign in to IM in OWA. you will see " Instant Messaging isnt available right now. The Contact List will appear when the service becomes available".

To resolve this we need to request another certificate from our Internal Certificate Authority to use strictly for this integration.

Go to MMC -> Add/Remove Snap-in and select Certificate. Select Computer. Navigate to Certificates -> Personal, right click Personal -> All Tasks and "Request New Certificate..."

Next specify the Trusted Application FQDN of the exchange server you used in your Lync Topology
Also you can add additional SAN names if your users use different FQDN to access OWA (internal and external)


Confirm the thumbprint of your new certificate


Next is to do a iisreset /noforce for the changes to take effect in IIS, once IIS is restarted, check our OWA for success!

And note that the certificate Im using for OWA is still the wildcard! The new certificate is only being used for the integration, and not assigned to any exchange service.




visit link download