Thursday, April 23, 2015

Lync 2010 server stops - Certificate Expired

The Lync server stop responding for all users. Lo and behold the certificate had expired. The last certificate was installed/updated 2 years ago. Fairly painless to update the certificate (i.e. install a new certificate) on the Server. We use an Internal Windows CA. Lync can use (and by default) a simple SSL cert.

Today, the Lync client bombs for all users. Lync 2010 client reads "there was a problem verifying the certificate from the server...". The login process seems to hang indefinitely.


I open the Lync Control Panel and get a security alert. View certificate yields the following. I should have reminded myself to update the certificate. It is unfortunate that the process isn't automated nor is there a good system of alerting for impending certificate expiration.

Look at the details of the cert. I am noting the SAN entries

The rest is fairly simple. Open the Lync Deployment Wizard. Select "Request, Install or Assign...".
For my installation, I was able to accept all the default of the Certificate generation  since I had previously received (installed) a certificate from the same CA server.

During the cert generation wizard, I am verifying that the auto-generated Subject Alternative Names (SAN) matches what I had previously. Notice the SIP.<domainname>.com SAN was not there. No sweat because it is added on the next screen.
.

Make sure the SIP domain is correct. Again, for me, all I had to do was accept the default.



Next, next, next and the new cert is generated and installed. From the Wizard I select "start services" for good measure.

I will be upgrading to on-prem Lync 2013 very soon. 
Good Luck.

Posted by at 1 comment:
Labels: , , , ,

Monday, April 13, 2015

Outlook not displaying e-mail attachment, attachment not stripped by Exchange

I ask a user to send me an e-mail w/ attachment. I receive the e-mail - no attachment. I call the sender, the sender swears that she sent the attachment. The e-mail with attachment shows in her "sent items".

My first thought is that Exchange stripped the attachment. The problem with this theory is that the attachment type is not banned, i.e. the attachment is a simple PDF not an .exe or a .vbs or anything like that.

Coincidentally, I look down at my smartphone (Driod - Galaxy S5) and sure enough, the e-mail with attachment is looking right at me. Now I am confused.

Additionally, I open OWA and the e-mail with the attachment is there but it looks a little out of the norm.

Take a look:

Outlook - No attachment icon (little paperclip), no attachment in e-mail



OWA - No attachment icon, attachment DOES show in the e-mail when you open it



After through scouring of the Interwebs, I found some suggestions. This was difficult to research because most posts improperly referred to Exchange attachment blocking, virus filtering, etc. I saw a bunch of posts regarding MIME types but the resolution did not apply.

The problem exists w/ Exchange 2007 and 2010. I didn't confirm 2013.
Resolution is:

Exchange 2010:
1.Stop the Exchange Transport service.
2.Locate the EdgeTransport.exe.config file. This file is located in the following path:
<drive> :\Program Files\Microsoft\Exchange Server\Bin\
3.In the EdgeTransport.exe.config file, add the following entry between the <appSettings> element and the </appSettings> element:
<add key="TreatInlineDispositionAsAttachment" value="true" />
4.Restart the Transport service


Exhcnage 2007
[shell]
set-OrganizationConfig -ShowInlineAttachments:$true


Good luck.

Posted by at No comments:
Labels: , , , ,
Subscribe to: Posts (Atom)