Manage Access Edge Configuration for your organization in Lync Server 2013

  • Article

 

Topic Last Modified: 2012-11-01

This is preliminary documentation and is subject to change. Blank topics are included as placeholders.

After deploying one or more Edge Servers, you must enable the types of external domain or provider access, remote user access, and anonymous user access to conferences through the Edge Servers that will be supported for your organization.

These options include the following types of access that can be configured through the Access Edge Configuration page:

  • Enable federation and public IM connectivity   Enable this if you want to support user access to federated partner domains. This setting applies to both SIP federation and XMPP federation that are configured for global, site or user scopes on the External Access Policy page. For federation settings to apply, you must configure federation support on both pages.

    Two options exist that are optional settings for how federated partners are discovered, and whether archiving disclaimers (notification to federated contacts that you communicate with that your deployment has archiving enabled and that the communications details will be archived) will be sent to contacts

    • Enable partner domain discovery   Selecting this option enables the automatic discovery of domains that you can federate with. Lync Server 2013 uses Domain Name System (DNS) records to try to discover domains not listed in the allowed domains list, automatically evaluating incoming traffic from discovered federated partners and limiting or blocking that traffic based on trust level, amount of traffic, and administrator settings. If you do not select this option, federated user access is enabled only for users in the domains that you include on the allowed domains list. Whether or not you select this option, you can specify that individual domains to be blocked or allowed, including restricting access to specific servers running the Access Edge service in the federated domain. For details, see Configure support for allowed external domains in Lync Server 2013.

    • Send archiving disclaimer to federated partners   Selecting this option enables the sending of an archiving disclaimer message to federated partners that advises them that communications details are recorded. If you archive external communications with federated partner domains, you should enable the archiving disclaimer notification to warn partners that their messages and communications details are being archived by your deployment. For details on archiving, see Defining your requirements for Archiving in Lync Server 2013.

  • Enable remote user access   Enable this option if you want users in your organization who are outside your firewall, such as telecommuters and users who are traveling, to be able to connect to Lync Server. For details, see Enable or disable remote user access in Lync Server 2013.

  • Enable anonymous users to access conferences   Enable this option if you want internal users to invite external anonymous users to conferences that they organize. Enabling this setting only allows anonymous users for conferences. To configure the conferencing experience and options that will define how and what your users can do with conferences and for the inclusion of anonymous users, see details at Create or Modify Conferencing User Experience for a Site or Users and Conferencing policy settings reference for Lync Server 2013.

Note

In addition to enabling external user access support, you also configure policies to control the use of remote user access in your organization before any type of external user access is available to users. For details about creating, configuring, and applying policies for external user access, see Manage external access policy in Lync Server 2013.

Viewing Access Edge configuration information by using Windows PowerShell cmdlets

  • Access Edge configuration information can be viewed by using Windows PowerShell and the Get-CsAccessEdgeConfiguration cmdlet. This cmdlet can be run either from the Lync Server 2013 Management Shell or from a remote session of Windows PowerShell. For details about using remote Windows PowerShell to connect to Lync Server, see the Lync Server Windows PowerShell blog article "Quick Start: Managing Microsoft Lync Server 2010 Using Remote PowerShell" at https://go.microsoft.com/fwlink/p/?linkId=255876.

    To view information about all your Access Edge configuration settings, type the following command in the Lync Server Management Shell and then press ENTER:

    Get-CsAccessEdgeConfiguration

    That will return information similar to this:

    Identity                               : Global
AllowAnonymousUsers                    : False
AllowFederatedUsers                    : False
AllowOutsideUsers                      : True
BeClearingHouse                        : False
EnablePartnerDiscovery                 : False
EnableArchivingDisclaimer              : False
EnableUserReplicator                   : True
KeepCrlsUpToDateForPeers               : True
MarkSourceVerifiableOnOutgoingMessages : True
OutgoingTlsCountForFederatedPartners   : 4
DiscoveredPartnerStandardRate          : 20
EnableDiscoveredPartnerContactsLimit   : True
MaxContactsPerDiscoveredPartner        : 1000
DiscoveredPartnerReportPeriodMinutes   : 60
MaxAcceptedCertificatesStored          : 1000
MaxRejectedCertificatesStored          : 500
CertificatesDeletedPercentage          : 20
RoutingMethod                          : UseDnsSrvRouting