locked
SfB desktop client anonymous join - desktop sharing does not work RRS feed

  • Question

  • Hi all,

    we have a problem with SfB desktop client anonymously 
    (see https://realtimeuc.com/2017/09/skype4b-anonymous-join-success-when-meeting-organizer-is-disabled-for-federation/ )
    joining externally hosted meetings.
    Desktop sharing doesn't work.

    Couple of questions.
    1) Can we manage this client behavior? 
    For instance if client receives 403 Forbidden (either due to Organizer or Participant not enabled for federation) it should not attempt anonymous join.

    2) It seems desktop sharing doesn't work as during anonymous join client completely ignores client port ranges defined with Set-CsConferencingConfiguration. We have distinct port ranges for Audio, Video, AppSharing that otherwise work fine and are applied via in-band provisioning.
    I can see in Snooper that anonymous application sharing attempt PortRange=1024:65535 which is default when port ranges are not configured (opening TCP_1024-65535 on firewall cause of this is off the table).
    Thought the reason for such client behaviour might be it's not registered with our organization SfB (=anonymous) but it happily sends LocalMR="Our org external Edge AV IP:50000+" in the SIP communication...
    Is there a way to force port ranges defined in Set-CsConferencingConfiguration also via GPO (I did not find it)?

    thanks,
    Friday, September 21, 2018 9:12 AM

Answers

All replies