none
Cannot synchronize with the corporate address book because the file could not be found

    Question

  • Hi Everyone,

    I am deploying Lync 2010 Server in my environment for internal use only.

    My organization does not have a CA server and we assigned lync certificates with Self-Signed Certificate.

    in addition we are installing the certificate at the client side.

    at the beginning the Lync Client worked well but after a few days there is a "!" sign on the Lync system tray.

    When checking the configuration status I am able to see the following message:

    GALStatus;https://Lync.Orisoft.corp:443/abs/handler;Cannot synchronize with
    the corporate address book because the file could not be found. Contact your
    support team with this information   
     and also

    UCS Connectivity State;Exchange connection Down;--;

    Please advise,

    Thanks, Ori


    אם תשובתי סייע בפתרון לשאלה, אנא הצבע כמועיל, תודה. Best Regards, Ori Husyt - אורי הוסיט

    Saturday, July 07, 2012 12:47 AM

Answers

  • Hi,there,

    For Lync and Exchange integration,you should have them trust the same CA,so if you are using self-signed certificate you need import the root Exchange CA to the trusted root certificate Store or Import the thumbprint from your Exchange server with the method in the link Holger gave to you.However,using a standard CA is the recommended way,and it will make things easier in the future if you would like to expand  Lync features

    Here is an old thread just for your reference ((It maybe not related to Self-signed but related to Lync and Exchange trust and integration))

    http://social.technet.microsoft.com/Forums/en-US/ocsaddressbook/thread/6be313a9-86fd-4746-9b3e-729b59b976d2/ 

    Hope this useful!

    B/R

    Sharon


    Sharon Shen

    TechNet Community Support

    ************************************************************************************************************************

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question.


    Monday, July 09, 2012 6:43 AM
    Moderator

All replies

  • Hi Everyone,

    I am deploying Lync 2010 Server in my environment for internal use only.

    My organization does not have a CA server and we assigned lync certificates with Self-Signed Certificate.

    in addition we are installing the certificate at the client side.

    at the beginning the Lync Client worked well but after a few days there is a "!" sign on the Lync system tray.

    When checking the configuration status I am able to see the following message:

    GALStatus;https://Lync.Orisoft.corp:443/abs/handler;Cannot synchronize with
    the corporate address book because the file could not be found. Contact your
    support team with this information   
     and also

    UCS Connectivity State;Exchange connection Down;--;

    Please advise,

    Thanks, Ori


    אם תשובתי סייע בפתרון לשאלה, אנא הצבע כמועיל, תודה. Best Regards, Ori Husyt - אורי הוסיט

    Saturday, July 07, 2012 12:43 AM
  • Hi Everyone,

    I am deploying Lync 2010 Server in my environment for internal use only.

    My organization does not have a CA server and we assigned lync certificates with Self-Signed Certificate.

    in addition we are installing the certificate at the client side.

    at the beginning the Lync Client worked well but after a few days there is a "!" sign on the Lync system tray.

    When checking the configuration status I am able to see the following message:

    GALStatus;https://Lync.Orisoft.corp:443/abs/handler;Cannot synchronize with
    the corporate address book because the file could not be found. Contact your
    support team with this information   
     and also

    UCS Connectivity State;Exchange connection Down;--;

    Please advise,

    Thanks, Ori


    אם תשובתי סייע בפתרון לשאלה, אנא הצבע כמועיל, תודה. Best Regards, Ori Husyt - אורי הוסיט

    Saturday, July 07, 2012 12:46 AM
  • First I would suggest bringing up a server and installing a standalone CA. This machine can be virtual and creating certificates will be much simpler and much more reliable. With that said this looks like an address book issue so try forcing an update. Please refer to this article for more details:

    http://blog.schertz.name/2010/09/updating-the-lync-2010-address-book/

    Saturday, July 07, 2012 1:01 AM
  • First I would suggest bringing up a server and installing a standalone CA. This machine can be virtual and creating certificates will be much simpler and much more reliable. With that said this looks like an address book issue so try forcing an update. Please refer to this article for more details:

    http://blog.schertz.name/2010/09/updating-the-lync-2010-address-book/

    Saturday, July 07, 2012 1:02 AM
  • Hi,

    Agreed with Alanmad. Part of the Lync Server pre-requisite, you'll need an authorized Certificate Authority, either a Microsoft CA or you can subscribe with 3rd party SSL Certificate providers. For internal only deployment, an internal CA would do as it is must cheaper and cost effective. Secondly, if you have an Exchange server in the environment, you'll need to ensure that the root certificate are installed to the trusted root certificate store. That way, the other workload should work well as well.


    James Ooi MCITP Lync Server 2010 | Blog: http://jamesosw.wordpress.com | Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread

    Saturday, July 07, 2012 1:12 AM
  • Hi, Thank you both for your answer.<o:p></o:p>

    I agree as well that it will be for the best to configure CA Server but
    right now we can't due to technical issues in our environment.<o:p></o:p>

    I have questions regarding your proposals:<o:p></o:p>

    Alanmad, I didn't understand what step I need to do from that article...<o:p></o:p>

    James, do I need to import the Exchange certificate into the Lync Server's
    Trusted root?<o:p></o:p>

    sorry if my questions are stupid :)<o:p></o:p>

    Thank you Thank you Thank you!<o:p></o:p>



    אם תשובתי סייע בפתרון לשאלה, אנא הצבע כמועיל, תודה. Best Regards, Ori Husyt - אורי הוסיט

    Saturday, July 07, 2012 1:19 AM
  • Hi,

    here is a good link how to Import the thumbprint from your Exchange server

    http://ocsguy.com/2012/05/19/lync-phone-edition-connection-to-microsoft-exchange-is-unavailable/

    be sure, that all Clients trust the cert from the Exchange and Lync server.

    You can check this, if you try to reach the Exchange EWS with https://FQDN Cas/ews and for Lync https://Lync.Orisoft.corp:443/abs/handler

    You should not get a certificate error in your IE.


    regards Holger Technical Specialist UC

    Saturday, July 07, 2012 11:23 AM
  • Hi,there,

    For Lync and Exchange integration,you should have them trust the same CA,so if you are using self-signed certificate you need import the root Exchange CA to the trusted root certificate Store or Import the thumbprint from your Exchange server with the method in the link Holger gave to you.However,using a standard CA is the recommended way,and it will make things easier in the future if you would like to expand  Lync features

    Here is an old thread just for your reference ((It maybe not related to Self-signed but related to Lync and Exchange trust and integration))

    http://social.technet.microsoft.com/Forums/en-US/ocsaddressbook/thread/6be313a9-86fd-4746-9b3e-729b59b976d2/ 

    Hope this useful!

    B/R

    Sharon


    Sharon Shen

    TechNet Community Support

    ************************************************************************************************************************

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question.


    Monday, July 09, 2012 6:43 AM
    Moderator
  • Hi Everyone,

    I am deploying Lync 2010 Server in my environment for internal use only.

    My organization does not have a CA server and we assigned lync certificates with Self-Signed Certificate.

    in addition we are installing the certificate at the client side.

    at the beginning the Lync Client worked well but after a few days there is a "!" sign on the Lync system tray.

    When checking the configuration status I am able to see the following message:

    GALStatus;https://Lync.Orisoft.corp:443/abs/handler;Cannot synchronize with
    the corporate address book because the file could not be found. Contact your
    support team with this information   
     and also

    UCS Connectivity State;Exchange connection Down;--;

    Please advise,

    Thanks, Ori


    אם תשובתי סייע בפתרון לשאלה, אנא הצבע כמועיל, תודה. Best Regards, Ori Husyt - אורי הוסיט

    Hi Ori,

    As mentioned above, a CA is needed to be secure. Too much headache if you go around twittering to get it working without the CA.


    • Edited by Michael Vi Thursday, July 12, 2012 5:33 AM additional info
    Thursday, July 12, 2012 5:30 AM
  • Hi,

    At least you must use internal or external CA for this process. If you don’t like to manage internal CA in your organization you can request this certificate from any Public CA from outside, but the internal CA is the best choice for lync Deployment.

    Thanks/Hirantha

    Friday, July 13, 2012 3:01 PM