After reading through a ton of articles here on this forum I have managed to get Lync 2010 server deployed and working except for 2 remaining issues.

1. external Lync client cannot download address book files

2. external lync phons cannot download address book files, cannot send log files, cannot download firmware updates

All other features of Lync are working perfectly.  External users can make calls, audio/video chat, everything one would expect.

I have run test-csaddressbookservice with the -external switch and it indicates failure.  The output is below (actual domain name replaced with "domain")

 

TargetUri  : https://frontend.domain.com:443/abs/handler

TargetFqdn : frontend.domain.local

Result     : Failure

Latency    : 00:00:00

Error      : ERROR - No response received for Web-Ticket service.

             Inner Exception:An error occurred while making the HTTP request to

              https://frontend.domain.com/WebTicket/WebTicketService.svc. This cou

             ld be due to the fact that the server certificate is not configure

             d properly with HTTP.SYS in the HTTPS case. This could also be cau

             sed by a mismatch of the security binding between the client and t

             he server.

             Inner Exception:The underlying connection was closed: An unexpecte

             d error occurred on a send.

             Inner Exception:Unable to read data from the transport connection:

              An existing connection was forcibly closed by the remote host.

             Inner Exception:An existing connection was forcibly closed by the

             remote host

Our internal domain is structured with .local for internal and .com external.  Our front end is published through Forefront Threat Management Gateway.  The certificate assigned to Forefront is structured as follows:

This certificate was issued by godaddy.

Common Name - frontend.domain.com

Subject alternate names: 

dialin.domain.com , dialin.domain.local , meet.domain.com , meet.domain.local

Using a web browser from the external side of the network I can browse to https://frontend.domain.com/abs/handler BUT the browser informs me that there is an issue with the certificate. Any help would be most welcome and I will certainly mark helpful answers!

Have you deployed the external webaccess to your frontendserver through the proxy to port 4443?

Cam you access your dialin and meeting webservice from outside?

 

x.local domain are not supported as public domain.

You can use this Lync to check

http://microsoftguru.com.au/2011/10/16/deploy-lync-2010-edge-server/

http://blogs.technet.com/b/nexthop/archive/2011/12/07/useful-tips-for-testing-your-lync-edge-server.aspx

 

Hi there,

Any update?

Some suggestions for you.

·          Please try to disable the "Check for Server Certificate Revocation" and "Check for publisher's certificate revocation" in IE - Advanced - Security.

·          It may due to incorrect configuration for Authentication Delegation in TMG publishing rule. Please try to configure Authentication Delegation as "No delegation, but client may authenticate directly".

Hope helps.

I removed the reverse proxy from the network and assigned a second public IP address to my front end and that put paid to the problem.  

• Marked as answer by Noya LauModerator Friday, December 16, 2011 9:47 AM

No response received for Web-Ticket service.

Inner Exception:The HTTP request is unauthorized with client authentication scheme 'Ntlm'. The authentication header received from the server was 'Negotiate,NTLM'.

Inner Exception:The remote server returned an error: (401)Unauthorized.

I am stuck with this problem plz any one help me...........