Hi everyone,
I am currently deploying Lync 2010 for a client and have run into a problem I'm struggling to find an answer to (that may well be because there isn't a "neat" solution).
The customer currently has Exchange 2007 installed, and is configured with a wildcard cert for their Exchange servers (let's call the domain on this cert publicdomain.com).
Lync 2010 has only been deployed for internal IM & presence, and the customer has stated that the SIP domain cannot match the SMTP domain at this point in time, as they are not in a position to create an internal DNS zone for publicdomain.com. We have therefore used the internal domain name internaldomain.com as the SIP address.
As mentioned above, there is no DNS zone configured internally for publicdomain.com, there is only internaldomain.com.
The issue is:
When a user logs into Lync internally, they are able to log in successfully, however after 1-2 minutes the Lync client throws a certificate warning stating "Lync is attempting to connect to publicdomain.com" and shows the wilcard cert for *.publicdomain.com. If I choose not to connect, Lync is unable to retrieve info from Exchange Web Services.
I'm struggling to think of is a way around this - I know that best practice is to ensure that the SIP address and SMTP address match, however I've suggested this and been told that at this point in time it is not an option, as we are not able to create an internal DNS zone for publicdomain.com. The only thing I could think of would potentially be to create a pin-point DNS zone and configure everyone to then have a primary SIP address of user@publicdomain.com... is there any other way that anyone can see around this?
Cheers,
Cam