Přihlásit
 
HlavníKnihovnaCertifikaceDownloadPodporaKomunitaFóra
Zdroje informací pro profesionály v oboru IT >
Lync mobility login issue. (Configuration does not include Reverse Proxy. Mobility working fine Internally)

Odpovědět Lync mobility login issue. (Configuration does not include Reverse Proxy. Mobility working fine Internally)

  • 29. února 2012 23:41
     
     
    Přihlásit se a hlasovat
    0

    Hi,

    I have a customer with Lync mobility configured without Reverse proxy. He has setup port forwarding rules on the firewall for 80--8080 and 443--4443 and Push notifications configured.

    Internal wifi access for Mobility clients work  fine. External login does not work. I know that though configuring reverse proxy without mobility is not a recommended scenario, however is there something we can do here to get the lync clients working externally? Any pointers would be appreciated.

    Pasting the logs for your reference.


    2012-02-16 16:18:15.471-5 : Info : 470881326 : LogonSession : UI invoked SignIn
    2012-02-16 16:18:15.471-5 : Info : 470881326 : CredentialManager : Got a new user credential from app layer.
    2012-02-16 16:18:15.472-5 : Info : 470881326 : TrustManager : Adding domain.com to trusted domain list for Autodiscovery.
    2012-02-16 16:18:15.472-5 : Info : 470881326 : DiscoverySession : Uri for request IntDisc_https is https://lyncdiscoverinternal.domain.com/?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:15.473-5 : Info : 470881326 : DiscoverySession : Uri for request IntDisc_http is http://lyncdiscoverinternal.domain.com/?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:15.479-5 : Info : 470881326 : LogonSession : SignInState: SigningIn
    2012-02-16 16:18:15.480-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SigningIn)
    2012-02-16 16:18:15.480-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:15.483-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SigningIn)
    2012-02-16 16:18:15.484-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:15.484-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SigningIn)
    2012-02-16 16:18:15.484-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:15.485-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SigningIn)
    2012-02-16 16:18:15.485-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:15.486-5 : Info : 470881326 : LogonSession : New LogonSession internal state = DiscoveringServer
    2012-02-16 16:18:17.222-5 : Warning : 477571514 : HttpRequestPump : Got a WebException while reading the response for IntDisc_http.
    2012-02-16 16:18:17.223-5 : Error : 477571514 : HttpRequestPump : Request IntDisc_http failed due to an unidentified network error.
    2012-02-16 16:18:17.223-5 : Error : 477571514 : HttpRequestPump : Calling back IntDisc_http with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:17.224-5 : Warning : 495193106 : HttpRequestPump : Got a WebException while reading the response for IntDisc_https.
    2012-02-16 16:18:17.224-5 : Error : 495193106 : HttpRequestPump : Request IntDisc_https failed due to an unidentified network error.
    2012-02-16 16:18:17.225-5 : Error : 495193106 : HttpRequestPump : Calling back IntDisc_https with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:17.230-5 : Info : 470881326 : ConfigurationResolver : A discover request has failed. Waiting for parallel request result.
    2012-02-16 16:18:17.230-5 : Info : 470881326 : ConfigurationResolver : Internal autodiscovery requests failed. Trying external.
    2012-02-16 16:18:17.231-5 : Info : 470881326 : DiscoverySession : Uri for request ExtDisc_https is https://lyncdiscover.domain.com/?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:17.231-5 : Info : 470881326 : DiscoverySession : Uri for request ExtDisc_http is http://lyncdiscover.domain.com/?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:17.842-5 : Info : 495193106 : HttpRequestPump : Completed request ExtDisc_http.
    2012-02-16 16:18:17.853-5 : Info : 470881326 : ConfigurationResolver : Redirect to https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com requires a trust decision.
    2012-02-16 16:18:17.854-5 : Info : 470881326 : TrustManager : Trust of https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com for Autodiscovery is inherited through domain.com.
    2012-02-16 16:18:17.858-5 : Info : 470881326 : TrustManager : Redirection to https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com is trusted for Autodiscovery.
    2012-02-16 16:18:17.858-5 : Info : 470881326 : ConfigurationResolver : Redirecting discovery query for phil.smith@domain.com to https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:17.858-5 : Info : 470881326 : DiscoverySession : Uri for request RedirectDisc is https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:17.859-5 : Info : 470881326 : ConfigurationResolver : Sending unauthenticated discovery request for phil.smith@domain.com to https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?sipuri=phil.smith@domain.com.
    2012-02-16 16:18:18.080-5 : Warning : 495193106 : HttpRequestPump : Got a WebException while reading the response for ExtDisc_https.
    2012-02-16 16:18:18.080-5 : Error : 495193106 : HttpRequestPump : Request ExtDisc_https failed due to an unidentified network error.
    2012-02-16 16:18:18.080-5 : Error : 495193106 : HttpRequestPump : Calling back ExtDisc_https with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:18.096-5 : Warning : 470881326 : ConfigurationResolver : Got an unauthenticated response after state machine moved on.
    2012-02-16 16:18:18.502-5 : Warning : 495193106 : HttpRequestPump : Got a WebException while reading the response for RedirectDisc.
    2012-02-16 16:18:18.503-5 : Error : 495193106 : HttpRequestPump : Request RedirectDisc failed due to an unidentified network error.
    2012-02-16 16:18:18.503-5 : Error : 495193106 : HttpRequestPump : Calling back RedirectDisc with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:18.511-5 : Info : 470881326 : RequestRetryQueue : RedirectDisc ConnectionError [Error, Transport, TransportFramework] retry=True
    2012-02-16 16:18:18.817-5 : Warning : 495193106 : HttpRequestPump : Got a WebException while reading the response for RedirectDisc.
    2012-02-16 16:18:18.818-5 : Error : 495193106 : HttpRequestPump : Request RedirectDisc failed due to an unidentified network error.
    2012-02-16 16:18:18.819-5 : Error : 495193106 : HttpRequestPump : Calling back RedirectDisc with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:18.824-5 : Info : 470881326 : RequestRetryQueue : RedirectDisc ConnectionError [Error, Transport, TransportFramework] retry=True
    2012-02-16 16:18:19.142-5 : Warning : 495193106 : HttpRequestPump : Got a WebException while reading the response for RedirectDisc.
    2012-02-16 16:18:19.143-5 : Error : 495193106 : HttpRequestPump : Request RedirectDisc failed due to an unidentified network error.
    2012-02-16 16:18:19.143-5 : Error : 495193106 : HttpRequestPump : Calling back RedirectDisc with error ConnectionError [Error, Transport, TransportFramework].
    2012-02-16 16:18:19.152-5 : Info : 470881326 : InternalExternalSelector : Checking whether to switch from EXTERNAL because of ConnectionError [Error, Transport, TransportFramework]
    2012-02-16 16:18:19.152-5 : Info : 470881326 : InternalExternalSelector : Not signed in
    2012-02-16 16:18:19.169-5 : Error : 470881326 : ConfigurationResolver : Autodiscovery for phil.smith@domain.com failed with status DiscoveryFailedPastRoot [Error, Application, Discovery].
    2012-02-16 16:18:19.186-5 : Info : 470881326 : LogonSession : SignInState: SignedOut
    2012-02-16 16:18:19.187-5 : Info : 470881326 : ConversationManager : LogonSession signed in or out
    2012-02-16 16:18:19.187-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SignedOut)
    2012-02-16 16:18:19.187-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:19.191-5 : Info : 470881326 : ConversationManager : LogonSession signed in or out
    2012-02-16 16:18:19.191-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SignedOut)
    2012-02-16 16:18:19.192-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:19.192-5 : Info : 470881326 : ConversationManager : LogonSession signed in or out
    2012-02-16 16:18:19.192-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SignedOut)
    2012-02-16 16:18:19.193-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:19.193-5 : Info : 470881326 : ConversationManager : LogonSession signed in or out
    2012-02-16 16:18:19.193-5 : Info : 470881326 : PresenceSubscriptionManager : HandleLogonSessionPropertyChange(SignedOut)
    2012-02-16 16:18:19.193-5 : Info : 470881326 : McxDataSynchronizer : Signed out
    2012-02-16 16:18:19.194-5 : Info : 470881326 : LogonSession : New LogonSession internal state = SignedOut
    2012-02-16 16:18:19.194-5 : Info : 470881326 : LogonSession : Doing UI callback with DiscoveryFailedPastRoot [Error, Application, Discovery]
    2012-02-16 16:18:19.299-5 : Error : 470881326 : AppLayerHelper : Can't connect to the server. It might be unavailable. Also please check your network connection, sign-in address, and server addresses.
    DiscoveryFailedPastRoot [Error, Application, Discovery]
    2012-02-16 16:18:21.257-5 : Info : 470881326 : AppLayerHelper : SignIn completed with DiscoveryFailedPastRoot [Error, Application, Discovery]

    Abhay Kamath (MSFT)- Global Partner Services

     

Všechny reakce

  • 1. března 2012 1:39
     
     
    Přihlásit se a hlasovat
    1

    Hi Abnay,

    The A record has been created in external DNS?

    From an external client, if you try to access https://lync.domain.com/Autodiscover/AutodiscoverService.svc/root?  from IE, do you get a error message?

    Let us know

    Regards

    If a post is helpful, please take a second to hit the green arrow on the left, or mark as answer, thanks.


    Jean-Philippe Breton | Senior Microsoft Consultant | MCTS, MCITP, MCT, Lync MVP

     
  • 1. března 2012 2:51
     
     Odpovědět
    Přihlásit se a hlasovat
    1

    Hi,

    I guess it's not something about the recomendation but it does not work without a Reverse Proxy server. You clearly need a publising rule to get it to work and also there are some configuration you need to do in that publishing rule which does not provided by a port forward from a Firewall.

    Thamara. MCTS, MCITP Ent Admin, Specialized in U.C Voice OCS 2007 R2 Z-Hire -- Automate IT Account creation process ( AD / Exchange / Lync )

     
  • 27. března 2012 6:25
     
     
    Přihlásit se a hlasovat
    0
    I got here looking for help with using UAG as a reverse proxy, but I can verify that you can do a firewall redirect as described above and it will work.  As noted by my dillema I do not recommend publishing it that way, but for me it was an easy way to tell if the problem was with the reverse proxy or the lync server itself.