MS Skype for Business and Lync. Integration Guide



Similar documents
StarLeaf Connectivity Services. Deployment Guide

Cisco Expressway IP Port Usage for Firewall Traversal. Cisco Expressway X8.1 D December 2013

nexvortex Setup Guide

Cisco Collaboration with Microsoft Interoperability

Cisco TelePresence Video Communication Server (Cisco VCS) IP Port Usage for Firewall Traversal. Cisco VCS X8.5 December 2014

Portal Tutorial. For resellers

Enabling Users for Lync services

Dell One Identity Cloud Access Manager How to Configure Microsoft Office 365

Contents Notice to Users

Configuration Guide. SafeNet Authentication Service. Remote Logging Agent

Web Remote Access. User Guide

Configuring and Monitoring SharePoint Servers

Quick Setup Guide. Integration of Aastra MX-ONE / Aastra 700 and Microsoft Lync Server 2010

Web Security Firewall Setup. Administrator Guide

Using IIS Application Request Routing to Publish Lync Server 2013 Web Services

Enabling Remote Management of SQL Server Integration Services

Module 6. Designing and Deploying External Access. MVA Jump Start

Placing the BlackBerry Enterprise Server for Microsoft Exchange in a demilitarized zone

How To - Configure Virtual Host using FQDN How To Configure Virtual Host using FQDN

eprism Security Suite

StarLeaf Network Guide

Many network and firewall administrators consider the network firewall at the network edge as their primary defense against all network woes.

Acano solution. Third Party Call Control Guide. March E

Dell One Identity Cloud Access Manager How to Configure for High Availability

Grandstream Networks, Inc. How to Integrate UCM6100 with Microsoft Lync Server

Configuring Sonus SBC 1000/2000. with. Rogers Business Solution (RBS) SIP Trunking Service. Application Note

Application Notes for Configuring Microsoft Office Communications Server 2007 R2 and Avaya IP Office PSTN Call Routing - Issue 1.0

F-SECURE MESSAGING SECURITY GATEWAY

Lab 00: Configuring the Microsoft Lync Ignite Environment Cloud Hosted Version

SIP Trunking with Microsoft Office Communication Server 2007 R2

Dell One Identity Cloud Access Manager Installation Guide

LifeSize Transit Deployment Guide June 2011

VoIPon Tel: +44 (0) Fax: +44 (0)

Monitoring Nginx Server

Services Deployment. Administrator Guide

Quick Start The StarLeaf Touch

Installation Guide. Novell Storage Manager for Active Directory. Novell Storage Manager for Active Directory Installation Guide

Configuring an Etherspeak SIP Trunk in Microsoft Lync 2013

Dell One Identity Cloud Access Manager How To Deploy Cloud Access Manager in a Virtual Private Cloud

FreeFlow Core, Version 4.0 August P Xerox FreeFlow Core Security Guide

Configuration Notes 0215

Microsoft Lync Server 2010

OfficeMaster Gate (Virtual) Enterprise Session Border Controller for Microsoft Lync Server. Quick Start Guide

Using Remote Desktop Software with the LAN-Cell 3

Policy Based Encryption Essentials. Administrator Guide

DameWare Server. Administrator Guide

Step-By-Step Guide to Deploying Lync Server 2010 Enterprise Edition

Contents Firewall Monitor Overview Getting Started Setting Up Firewall Monitor Attack Alerts Viewing Firewall Monitor Attack Alerts

Setting up Microsoft Office 365

How To Configure A Microsoft Virtual Server On A Microsoul.Com (Windows) 2005 (Windows 2005) (Windows Vvirtual) (Powerpoint) (Msof) (Evil) (Microsoul) (Amd

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

Setting up Microsoft Office 365

Application Note. Onsight Connect Network Requirements v6.3

MobileStatus Server Installation and Configuration Guide

Deploying EMC Documentum WDK Applications with IBM WebSEAL as a Reverse Proxy

Configuring and Monitoring Event Logs

USER CONFERENCE 2011 SAN FRANCISCO APRIL Running MarkLogic in the Cloud DEVELOPER LOUNGE LAB

nexvortex Setup Template

Configuring Personal Firewalls and Understanding IDS. Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA

Module 4. Planning and Designing Load Balancing

VMware vcloud Air Networking Guide

Microsoft Lync Server Overview

Veeam Task Manager for Hyper-V

FortiAuthenticator Agent for Microsoft IIS/OWA. Install Guide

Deploying the Barracuda Load Balancer with Office Communications Server 2007 R2. Office Communications Server Overview.

Parallels Plesk Panel

Dialogic 4000 Media Gateway Series as a Survivable Branch Appliance for Microsoft Lync Server 2010

RackConnect User Guide

MICROSOFT EXAM QUESTIONS & ANSWERS

MailMarshal SMTP in a Load Balanced Array of Servers Technical White Paper September 29, 2003

Lab 05: Deploying Microsoft Office Web Apps Server

Cisco Expressway Basic Configuration

Optional VBP-E at the Headquarters Location

Telephony System Integrator s Guide for ShoreTel. Citrix EasyCall Gateway 3.0

Omniquad Exchange Archiving

5nine Security for Hyper-V Datacenter Edition. Version 3.0 Plugin for Microsoft System Center 2012 Virtual Machine Manager

High Availability Configuration

Deploying the BIG-IP System with Microsoft Lync Server 2010 and 2013 for Site Resiliency

F-Secure Messaging Security Gateway. Deployment Guide

Meraki MX50 Hardware Installation Guide

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

SIP Trunking Configuration with

simplify monitoring Environment Prerequisites for Installation Simplify Monitoring 11.4 (v11.4) Document Date: January

Security Gateway R75. for Amazon VPC. Getting Started Guide

Technical Brief for Windows Home Server Remote Access

Ports Reference Guide for Cisco Virtualization Experience Media Engine for SUSE Linux Release 9.0

Personal Telepresence

Installing and Configuring vcloud Connector

Microsoft SharePoint

Setting up Sharp MX-Color Imagers for Inbound Fax Routing to or Network Folder

Using Microsoft Windows Authentication for Microsoft SQL Server Connections in Data Archive

Kaseya Server Instal ation User Guide June 6, 2008

Version 0.1 June Xerox WorkCentre 7120 Fax over Internet Protocol (FoIP)

Lab 02: Deploying and Configuring Microsoft Lync Edge Server 2013

Acronis Backup & Recovery 11.5 Quick Start Guide

Boundary Encryption.cloud Deployment Process Overview

Transcription:

MS Skype for Business and Lync Integration Guide June 03, 2016

Contents Introduction 4 How to use StarLeaf with Microsoft Skype for Business 2015 Server 5 Pre-requisites 5 Step One: Federate between the Skype for Business Server and StarLeaf 5 Step two: Configure your firewall 7 Inbound rules 7 Outbound rules 7 Step three: Update SRV record 7 Note: encryption 7 How to use StarLeaf with Microsoft Lync Server 8 Pre-requisites 8 Step One: Federate between the Lync Server and StarLeaf 8 Step two: Configure your firewall 10 Inbound rules 10 Outbound rules 10 Step three: Update SRV record 10 Note: encryption 10 How to use StarLeaf with Microsoft Skype for Business Office 365 11 Step one: Configure Office 365 in the cloud 11 Step two: C onfigure firewall for communication with StarLeaf 11 Addresses 11 Inbound port requirements 11 Outbound port requirements 11 Step three: Configure firewall for communication with 365 server in the cloud 12 Legal information 13 Third party software acknowledgments 13 MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 2 of 13

Disclaimers and notices 13 MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 3 of 13

Introduction Introduction This document describes how to integrate your StarLeaf account with a Microsoft Lync deployment. How you do this will depend on how you have deployed Lync. This document describes: How to use StarLeaf with Microsoft Skype for Business 2015 How to use StarLeaf with Microsoft Lync Server How to use StarLeaf with Microsoft Skype for Business Office 365 MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 4 of 13

How to use StarLeaf with Microsoft Skype for Business 2015 Server How to use StarLeaf with Microsoft Skype for Business 2015 Server Pre-requisites To be able to call outside of your Skype for Business deployment, the Skype for Business server requires certain ports to be open on the firewall. Your Edge Server will need to conform to the requirements in Microsoft's Port summary for the Edge Server. Step One: Federate between the Skype for Business Server and StarLeaf If your Skype for Business deployment is configured as open federation, skip this step and go directly to Step two: Configure your firewall (p7). If your Skype for Business deployment is not configured as open federation, you will need to add your organization's call.sl subdomain (<your organization name>.call.sl ) among your list of federated partners. You will also need to add the call.sl domain for any other StarLeaf organization that you want to communicate with. This is described here: 1. Log in to the Skype for Business Front End or Standard Edition Server and open the Skype for Business Control Panel. 2. Go to Federation and External Access > External Access Policy and ensure that Federated User Access is checked. If not, enable it by clicking on Edit > Show Details and check Enable Communications with Federated users. 3. To enable federation at a system level, select Access Edge Configuration from the top navigation. MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 5 of 13

How to use StarLeaf with Microsoft Skype for Business 2015 Server 4. Under Edit Access Edge Configuration: Select Enable federation. 5. To add the StarLeaf Skype for Business domain, go to SIP Federated Domains from top navigation. 6. Now add a new domain pointing to <organization name>.call.sl and edge server pointing to <organization name>.call.sl. MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 6 of 13

How to use StarLeaf with Microsoft Skype for Business 2015 Server Step two: Configure your firewall For each StarLeaf domain you wish to call, ensure your firewall allows traffic to/from the organization s <organization name>.call.sl domain on the following in the following tables. This assumes you have a deployment where the ports 50,000-59,999 are used for media. If your firewall requires you to use IP addresses rather than DNS names, contact StarLeaf Support for the IP addresses. Inbound rules Type StarLeaf side (source) Edge server (destination) Reason TCP Ephemeral (1024-65535) 5061 Call signaling UDP 16384-24703* 50000-59999* Audio/video media TCP 16384-24703* 50000-59999* Screen-share media *Recommended for best user experience, but not strictly necessary. Outbound rules Type Edge server (source) StarLeaf side (destination) Reason TCP Ephemeral (1024-65535) 5061 Call signaling UDP 50000-59999 16384-24703 Audio/video media TCP 50000-59999 16384-24703 Screen-share media Step three: Update SRV record Ensure you have an up-to-date federation SRV record for your Skype for Business domain (Skype for Business server domain). For example, where a domain is example.com, the SRV record would be: _sipfederationtls._tcp.example.com Note: encryption StarLeaf supports encrypted media for calls between StarLeaf and Skype for Business using best effort encryption (meaning if encryption can be used, it will be). MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 7 of 13

How to use StarLeaf with Microsoft Lync Server How to use StarLeaf with Microsoft Lync Server Pre-requisites To be able to call outside of your Lync deployment, the Lync server requires certain ports to be open on the firewall. Your Edge Server will need to conform to the requirements in Microsoft's Port summary for the Edge Server. Step One: Federate between the Lync Server and StarLeaf If your Lync deployment is configured as open federation, skip this step and go directly to Step two: Configure your firewall (p10). If your Lync deployment is not configured as open federation, you will need to add your organization's call.sl subdomain (<your organization name>.call.sl ) among your list of federated partners. You will also need to add the call.sl domain for any other StarLeaf organization that you want to communicate with. This is described here: 1. Log in to the Lync Front End or Standard Edition Server and open the Lync Control Panel. 2. Go to Federation and External Access > External Access Policy and ensure that Federated User Access is checked. If not, enable it by clicking on Edit > Show Details and check Enable Communications with Federated users. 3. To enable federation at a system level, select Access Edge Configuration from the top navigation. MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 8 of 13

How to use StarLeaf with Microsoft Lync Server 4. Under Edit Access Edge Configuration: Select Enable federation. 5. To add the StarLeaf Lync domain, go to SIP Federated Domains from top navigation. 6. Now add a new domain pointing to <organization name>.call.sl and edge server pointing to <organization name>.call.sl. MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 9 of 13

How to use StarLeaf with Microsoft Lync Server Step two: Configure your firewall For each StarLeaf domain you wish to call, ensure your firewall allows traffic to/from the organization s <organization name>.call.sl domain on the following in the following tables. This assumes you have a deployment where the ports 50,000-59,999 are used for media. Inbound rules Type StarLeaf side (source) Edge server (destination) Reason TCP Ephemeral (1024-65535) 5061 Call signaling UDP 16384-24703* 50000-59999* Audio/video media TCP 16384-24703* 50000-59999* Screen-share media *Recommended for best user experience, but not strictly necessary. Outbound rules Type Edge server (source) StarLeaf side (destination) Reason TCP Ephemeral (1024-65535) 5061 Call signaling UDP 50000-59999 16384-24703 Audio/video media TCP 50000-59999 16384-24703 Screen-share media Step three: Update SRV record Ensure you have an up-to-date federation SRV record for your Lync domain (Lync server domain). For example, where a domain is example.com, the SRV record would be: _sipfederationtls._tcp.example.com Note: encryption StarLeaf supports encrypted media for calls between StarLeaf and Skype for Business using best effort encryption (meaning if encryption can be used, it will be). MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 10 of 13

How to use StarLeaf with Microsoft Skype for Business Office 365 How to use StarLeaf with Microsoft Skype for Business Office 365 Step one: Configure Office 365 in the cloud For your own StarLeaf organization, and for all other StarLeaf organizations with which you want to communicate, you need to ensure that Office 365 will allow communication as follows: 1. Log in to portal.microsoftonline.com as an administrator for the Skype for Business org. 2. Select Lync from the Admin drop-down-menu in the top right corner. 3. Under Organization > External Communications, either: a. Configure external access to On except for blocked domains and ensure <organization name>.call.sl is NOT present in the blocked or allowed domains table. or b. Configure external access to On only for allowed domains and ensure <organization name>.call.sl IS present in the blocked or allowed domains table. or c. Configure external access to Allow all domains. However, StarLeaf does not recommend this option as it is a security risk. Note:You must allow up to 24 hours for the changes to the External Communications setting to take effect and before you contact Technical Support. Step two: C onfigure firewall for communication with StarLeaf Addresses Use <your organization>.call.sl as the destination address. Inbound port requirements These are optional but recommended: Connection from StarLeaf Cloud To 365 Client Reason UDP 16384-24703 UDP 50000-50059 Audio/video media TCP 16384-24703 TCP 50000-50059 Screen-share media Outbound port requirements From 365 Client To StarLeaf Cloud Reason UDP 50000-50059 UDP 16384-24703 Audio/video media TCP 50000-50059 TCP 16384-24703 Screen-share media MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 11 of 13

How to use StarLeaf with Microsoft Skype for Business Office 365 Step three: Configure firewall for communication with 365 server in the cloud Successful communication between your Office 365 clients and the Starleaf Cloud also relies on your firewall being correctly configured for communication between the clients and the 365 server in the cloud. This is extensively documented at: https://support.office.com/en-gb/article/office-365-urls-and-ip-address-ranges- 8548a211-3fe7-47cb-abb1-355ea5aa88a2?ui=en-US&rs=en-GB&ad=GB#BKMK_LYO MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 12 of 13

Legal information Legal information Third party software acknowledgments Acknowledgments of third-party software are available at: www.starleaf.com/support/legal Disclaimers and notices Copyright StarLeaf 2016. All rights reserved. This guide may not be copied, photocopied, translated, reproduced, or converted into any electronic or machine-readable form in whole or in part without prior written approval of StarLeaf Limited. StarLeaf Limited reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of StarLeaf Limited to provide notification of such revision or change. StarLeaf Limited provides this documentation without warranty, term, or condition of any kind, either implied or expressed, including, but not limited to, the implied warranties, terms or conditions of merchantability, satisfactory quality, and fitness for a particular purpose. StarLeaf Limited may make improvements or changes to the product(s) and/or the program(s) described in this documentation at any time. All other product and company names herein may be trademarks of their respective owners. MS Skype for Business and Lync Integration Guide, June 03, 2016 Page 13 of 13

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information