Lync Server 2013 HLB
Hi all, At first I describe my environnement :
- AD Local domain = internal.ad
- Public domain = SMTP domain = SIP domain = publicdomain.com
- Lync Server Enterprise Pool PoolEE.internal.ad FE01.internal.ad FE02.internal.ad FE03.internal.ad
- Simple URL Meet.publicdomain.com dialin.publicdomain.com
I would like to know if it's possible to use F5 BIG IP LTM in full HLB internal deployement (I mean without DNS Round Robin) using public certificate. The goal is to allow all computer to connect and use Lync services (SIP and Web) without trusted PKI in certificate container. In others words : * TLS/SSL (SIP and HTTPS): connections between client and F5 : public certificate * TLS/SSL (SIP and HTTPS): connections between F5 and Front End : PKI certificate
If it's possible what sort of certificate I neeed on F5 ? Can I use iAPP ?
According to Microsoft deployement guide, the certificates on each Front End must be such below.
Default: * PoolEE.internal.ad * FE01.internal.ad * FE02.internal.ad * FE03.internal.ad * publicdomain.com
Web Internal: * lyncwebinternal.internal.ad * dialin.publicdomain.com * meet.publicdomain.com
Web External: * lyncwebexternal.publicdomain.com * dialin.publicdomain.com * meet.publicdomain.com * lyncdiscover.publicdomain.com
Thanks you for your help
Best regards Gérald