Recent Discussions
Error : User has insufficient permissions When logging onto MACP
Hi, We are trying to move to using the new MACP in order to remove Silverlight from our Skpe servers. When trying to log on as a member of the CS Administrators group to our enterprise site (https://sfb_ent.corp.ourdomain.com/macp/login) we get an Error : User has insufficient permissions. The user is a member of the CS Administrators group and SIP is enabled. When we try to log onto a SFB Standard server we just get the error box, but instead of an error message it just displays the letter E. Any suggestions on how to troubleshoot this? ThanksSolved4.6KViews0likes8Comments
MS Teams Rooms bug after update KB5004945
Hi, since last Friday (2021/07/09) none of my Teams Rooms systems are working properly! Lenovo Thinksmart 500s no longer start in Skype session! We select the Skype user, the system works hard and then loses the screen (update: not really lost the screen, I connect a mouse and I see it). After 4 minutes approx, we return to the loggin screen (the system has not restarted). Crestron UC-ENGINE-SD systems have a different problem! The touch panel displays the Teams home page but if we press the "new meeting" button, nothing happens! Same thing with "restart device" and "Windows settings". On the other hand, video sharing, Settings and other features work fine! I have uninstalled the KB5004945 on the Crestron and the system seems to be working fine! I will do some more testing and try to uninstall the update on the Lenovo. Other solutions than removing the update? Thanks Lenovo and Crestron systems: Windows 10 Entreprise ver 19042.1083 Teams Rooms ver 4.8.31.0 Thank 🙂Solved1.4KViews0likes1Comment
Skype for Business Server: Announcing the general availability of Modern Admin Control Panel
Hi everyone, We are pleased to announce the general availability of Modern Admin Control Panel (MACP) for Skype for Business Server 2019 Control Panel, SfB Server Modern Admin Control Panel (MACP) is now released and available to all the customers. Please start using new Control Panel and share feedback and questions on this thread. For more details and installation instructions refer 5001617 Thanks. On behalf of the product team, Ravindra Singh Bisht Senior Program Manager, Skype for Business ServerSolved
Add empty value on MobilityPolicy
I try to put empty value for MobilityPolicy for OnlineUser with this method : Grant-CsMobilityPolicy -PolicyName $Null -Identity 'test' But I have this error message This policy must be assigned a value compatible with the user's subscription and location. It cannot be $null. + CategoryInfo : InvalidOperation : (Grant-CsMobilityPolicy:String) [Grant-CsMobilityPolicy], InvalidOperationException + FullyQualifiedErrorId : InvalidOperation,Microsoft.Rtc.Management.Xds.GrantMobilityPolicyCmdlet + PSComputerName : admin2e.online.lync.com I don't know why I have this error because I have user who have this empty value. Some with license and location and some without. Too I can't add an existing MobilityPolicy to an user who have an empty value. If someone have an idea, I will be glad to discuss about this. Thanks youSolved1.2KViews1like5Comments
Skype for Business Online Call Queues
Is it possible to with call queues to route calls to one person at a certain time say in the morning and then route the calls to another person in the afternoon? We are setting SfB online telephony for one of our offices and their Reception want calls into the call queue to go to one receptionist in the morning and another one in the afternoon or is there another way of doing this?Solved972Views0likes2CommentsSkype For Business On-premise Hybrid with existing sub-domain in O365
Hello, We have a sip-domain "contoso.com" on-premise and our students have "students.contoso.com" sip-domain located in SfB Online only. Just tried to setup Skype For Business On-premise 2015 to a hybrid with Office365. Everything worked except federation/presence status from cloud domain (students.contoso.com) to on-premise domain. After I ran a debug I encountered this error: "ms-diagnostics: 1017; reason="Cannot route From and To domains in this combination"; summary="Domain type analysis indicates that the ms-split-domain-info header in the message is the wrong type”" Which pointed me to the MS article here: https://docs.microsoft.com/en-us/skypeforbusiness/troubleshoot/hybrid-im-presence/sfb-online-users-cant-im So my question to you guys, to get this working from what I understand I need to take "students.contoso.com" in public facing certificates on my on-premise edge and I also need to point federation DNS records to this domain on-premise. But what about other DNS records? Should this domain be a part of my topology? How much work do I need to do internal with simple urls, dns, certificates and so on. All our users in this domain will still contain Online. I struggled to find this scenario exactly online. Any answers would be much appreciated.SolvedLost OWA integration after renewing OAuth certificate
Hello, I have lost my SfB OWA integration ("online meeting" - Icon and presence status) in the on prem environment (SfB 2015, Exchange 2013) after the OAuth Cert on Exchange side was expired. I instantly renewed it via ECP but still no OWA integration. Even creating a new one via powershell and authorizing it did not the trick. Checked OAuth on Skype side: get-CsOAuthConfiguration Identity : Global PartnerApplications : {Name=Exchange;ApplicationIdentifier=0 0000002-0000-0ff1-ce00-000000000000;Re alm=contoso.com;ApplicationTrustLevel =Full;AcceptSecurityIdentifierInformat ion=False;Enabled=True} OAuthServers : {} Realm : ServiceName : 00000004-0000-0ff1-ce00-000000000000 ClientAuthorizationOAuthServerIdentity : ExchangeAutodiscoverUrl : https://autodiscover.contoso.com/Auto discover/Autodiscover.svc ExchangeAutodiscoverAllowedDomains : Checked connectivity on Exchange side: Test-CsExStorageConnectivity -SipUri "sip:jeff@contoso.com" -Verbose and it passes that test. I am wondering that SfB integration in Outlook 2016 on MAC (!) is not broken although this is doing only https as well. (On PC everything is fine, too). Any ideas on this?Solved1.1KViews0likes1Commentmicrophone not working on Skype For Business for Mac
Hi, I need urgent support in relation to the following problem: Mac Book Pro macOS Catalina 10.15.4 does not detect microphone for calls with Skype for business. In the system preferences, the checkbox for Skype for business does not appear under the microphone (it appears for the camera that works regularly). Please let me know how to solve the problem...ThanksSolved41KViews3likes17Comments
Convert Regular Skype to Skype Business
How do I convert a regular account from skype home to skype business? Our accounts were from MSN live (8 years back) and it was converted to Skype Home via Skype Migration (because Microsoft was discontinuing MSN) and then after a few years Skype introduced skype business. How do I convert our Skype Home accounts to Skype Business? We don't want the contacts and chat history to disappear that is why we prefer those usernames under one domain to be converted and we have a lot of accounts to convert. looking for some answers online and I can't really find any. I was referred to by Microsoft Community to ask here. looking forward for your response thanks!Solved2.5KViews0likes4CommentsSFB Webticket Service - wrong tcp port (4443)
Hi A login form external with the SFB Client takes a very long time. Also we can not use the SFB Web App from external. That is caused of a wrong tcp port 4443, which get published via the webticket Service To get a webticket from external we can start with the following url - https://lwsex02.contoso.com/webticket/webticketservice.svc/mex - we get an xml File And then the client tries to reach the webticket Service by tcp port 4443, which obviously does not work. How can I change this tcp port. I have checked the topoloy for the external webservice. The listening ports are 8080 / 4443 and the published ports are 80 / 443 I have checked this behavior with netmon and fiddler and have no idea why port 4443 gets used. <?xml version="1.0" encoding="utf-8"?><wsdl:definitions name="WebTicketService" targetNamespace="http://tempuri.org/" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy" xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract" xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:tns="http://tempuri.org/" xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl" xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"><wsp:Policy wsu:Id="WebTicketServiceMachineCert_policy"><wsp:ExactlyOne><wsp:All><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout><sp:IncludeTimestamp/></wsp:Policy></sp:TransportBinding><sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"><wsp:Policy><sp:RequireThumbprintReference/><sp:WssX509V3Token10/></wsp:Policy></sp:X509Token><sp:SignedParts><sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/></sp:SignedParts></wsp:Policy></sp:EndorsingSupportingTokens><sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:MustSupportRefThumbprint/></wsp:Policy></sp:Wss11><sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:MustSupportIssuedTokens/><sp:RequireClientEntropy/><sp:RequireServerEntropy/></wsp:Policy></sp:Trust10><wsaw:UsingAddressing/></wsp:All></wsp:ExactlyOne></wsp:Policy><wsp:Policy wsu:Id="OAuth_policy"><wsp:ExactlyOne><wsp:All><af:OAuth xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><af:Binding xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout></wsp:Policy></sp:TransportBinding></wsp:All></wsp:ExactlyOne></wsp:Policy><wsp:Policy wsu:Id="WebTicketServiceAnon_policy"><wsp:ExactlyOne><wsp:All><af:AnonAuthentication xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><af:Binding xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Lax/></wsp:Policy></sp:Layout></wsp:Policy></sp:TransportBinding><sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"><wsp:Policy><sp:WssUsernameToken10/></wsp:Policy></sp:UsernameToken></wsp:Policy></sp:SignedSupportingTokens><sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy/></sp:Wss10></wsp:All></wsp:ExactlyOne></wsp:Policy><wsp:Policy wsu:Id="WebTicketServiceWinNegotiate_policy"><wsp:ExactlyOne><wsp:All><http:NegotiateAuthentication xmlns:http="http://schemas.microsoft.com/ws/06/2004/policy/http"/><af:Binding xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout></wsp:Policy></sp:TransportBinding></wsp:All></wsp:ExactlyOne></wsp:Policy><wsp:Policy wsu:Id="WebTicketServiceCert_policy"><wsp:ExactlyOne><wsp:All><af:Binding xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout><sp:IncludeTimestamp/></wsp:Policy></sp:TransportBinding><sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"><wsp:Policy><sp:RequireThumbprintReference/><sp:WssX509V3Token10/></wsp:Policy></sp:X509Token><sp:SignedParts><sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/></sp:SignedParts></wsp:Policy></sp:EndorsingSupportingTokens><sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:MustSupportRefThumbprint/></wsp:Policy></sp:Wss11><sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:MustSupportIssuedTokens/><sp:RequireClientEntropy/><sp:RequireServerEntropy/></wsp:Policy></sp:Trust10><wsaw:UsingAddressing/></wsp:All></wsp:ExactlyOne></wsp:Policy><wsp:Policy wsu:Id="WebTicketServiceAuth_policy"><wsp:ExactlyOne><wsp:All><af:FormsAuthentication xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><af:Binding xmlns:af="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:TransportToken><wsp:Policy><sp:HttpsToken RequireClientCertificate="false"/></wsp:Policy></sp:TransportToken><sp:AlgorithmSuite><wsp:Policy><sp:Basic256/></wsp:Policy></sp:AlgorithmSuite><sp:Layout><wsp:Policy><sp:Lax/></wsp:Policy></sp:Layout></wsp:Policy></sp:TransportBinding><sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy><sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"><wsp:Policy><sp:WssUsernameToken10/></wsp:Policy></sp:UsernameToken></wsp:Policy></sp:SignedSupportingTokens><sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"><wsp:Policy/></sp:Wss10></wsp:All></wsp:ExactlyOne></wsp:Policy><wsdl:types><xsd:schema targetNamespace="http://tempuri.org/Imports"><xsd:import schemaLocation="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/mex?xsd=xsd0" namespace="http://schemas.microsoft.com/Message"/><xsd:import schemaLocation="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/mex?xsd=xsd2" namespace="urn:component:Microsoft.Rtc.WebAuthentication.2010"/><xsd:import schemaLocation="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/mex?xsd=xsd1" namespace="http://schemas.microsoft.com/2003/10/Serialization/"/><xsd:import schemaLocation="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/mex?xsd=xsd3" namespace="http://schemas.microsoft.com/2003/10/Serialization/Arrays"/></xsd:schema></wsdl:types><wsdl:message name="IWebTicketService_IssueToken_InputMessage"><wsdl:part name="rst" type="q1:MessageBody" xmlns:q1="http://schemas.microsoft.com/Message"/></wsdl:message><wsdl:message name="IWebTicketService_IssueToken_OutputMessage"><wsdl:part name="IssueTokenResult" type="q2:MessageBody" xmlns:q2="http://schemas.microsoft.com/Message"/></wsdl:message><wsdl:message name="IWebTicketService_IssueToken_OCSDiagnosticsFaultFault_FaultMessage"><wsdl:part name="detail" element="q3:OCSDiagnosticsFault" xmlns:q3="urn:component:Microsoft.Rtc.WebAuthentication.2010"/></wsdl:message><wsdl:portType name="IWebTicketService"><wsdl:operation name="IssueToken"><wsdl:input wsaw:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" message="tns:IWebTicketService_IssueToken_InputMessage"/><wsdl:output wsaw:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal" message="tns:IWebTicketService_IssueToken_OutputMessage"/><wsdl:fault wsaw:Action="http://tempuri.org/IWebTicketService/IssueTokenOCSDiagnosticsFaultFault" name="OCSDiagnosticsFaultFault" message="tns:IWebTicketService_IssueToken_OCSDiagnosticsFaultFault_FaultMessage"/></wsdl:operation></wsdl:portType><wsdl:binding name="WebTicketServiceMachineCert" type="tns:IWebTicketService"><wsp:PolicyReference URI="#WebTicketServiceMachineCert_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:binding name="OAuth" type="tns:IWebTicketService"><wsp:PolicyReference URI="#OAuth_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:binding name="WebTicketServiceAnon" type="tns:IWebTicketService"><wsp:PolicyReference URI="#WebTicketServiceAnon_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:binding name="WebTicketServiceWinNegotiate" type="tns:IWebTicketService"><wsp:PolicyReference URI="#WebTicketServiceWinNegotiate_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:binding name="WebTicketServiceCert" type="tns:IWebTicketService"><wsp:PolicyReference URI="#WebTicketServiceCert_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:binding name="WebTicketServiceAuth" type="tns:IWebTicketService"><wsp:PolicyReference URI="#WebTicketServiceAuth_policy"/><soap:binding transport="http://schemas.xmlsoap.org/soap/http"/><wsdl:operation name="IssueToken"><soap:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/><wsdl:input><soap:body use="literal"/></wsdl:input><wsdl:output><soap:body use="literal"/></wsdl:output><wsdl:fault name="OCSDiagnosticsFaultFault"><soap:fault name="OCSDiagnosticsFaultFault" use="literal"/></wsdl:fault></wsdl:operation></wsdl:binding><wsdl:service name="WebTicketService"><wsdl:port name="WebTicketServiceMachineCert" binding="tns:WebTicketServiceMachineCert"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/MachineCert"/><wsa10:EndpointReference><wsa10:Address>https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/MachineCert</wsa10:Address></wsa10:EndpointReference></wsdl:port><wsdl:port name="OAuth" binding="tns:OAuth"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/OAuth"/></wsdl:port><wsdl:port name="WebTicketServiceAnon" binding="tns:WebTicketServiceAnon"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/Anon"/></wsdl:port><wsdl:port name="WebTicketServiceWinNegotiate" binding="tns:WebTicketServiceWinNegotiate"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc"/></wsdl:port><wsdl:port name="WebTicketServiceCert" binding="tns:WebTicketServiceCert"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/cert"/><wsa10:EndpointReference><wsa10:Address>https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/cert</wsa10:Address></wsa10:EndpointReference></wsdl:port><wsdl:port name="WebTicketServiceAuth" binding="tns:WebTicketServiceAuth"><soap:address location="https://lwsex02.contoso.com:4443/WebTicket/WebTicketService.svc/Auth"/></wsdl:port></wsdl:service></wsdl:definitions>Solved2.9KViews0likes3Comments
How long does Skype for Business take to update sign-in? Can't login after AD/O365 user update.
Added and verified a second domain in O365. We have an on-prem AD with same suffix of said domain. No skype-on prem -- we just sync via Azure AD Connect to O365. Updated a user's UPN, mail attribute and primary SMTP to the user.name@newdomain.com address. Syncs to O365 just fine. Outlook, OneDrive, etc. all update fine. Skype For Business however, doesn't like it. Even 24 hours later. Apparently we can sign in with @newdomain.com in the "sign-in address" field, but have to put the @olddomain.com in the "user name" field in order to sign-in. It's been about 30 hours since the change I've no idea why it would take this long if it is a syncing issue in O365. It's not a Skype for Business client issue. Tried on another computer and on mobile devices, it just won't sign in straight up with the new sign-in address.Solved983Views0likes1Comment
Skype for Business; conference call confusion
We have Office 365 Business Premium licences for our office workers; we also have a Webex subscription that is not meeting our needs, so I would like to give Skype a whirl. I am getting incredibly confused bouncing around from one MS page to another, trying to figure out what we need to achieve our goal. What I want: I would like a meeting initiator to send out a Skype meeting request to external customers. For the meeting initiator to call into a conference number so that we can use our conference phone in a meeting room. For customers to be able to call into the conference number or use traditional Skype audio. What I have done: Taken out a 'Meeting Room' trial subscription and assigned a licence to the initiator. Logged into the Skype for Business Admin Centre, selected 'Voice', added a geographically appropriate number and assigned it. Logged into the Skype for Business Admin Centre, selected 'Audio Conferencing', and assigned the initiator to the new number. What doesn't work: I ring the conference number and am asked for a conference ID, which I do not possess. I create a new Skype meeting and the e-mail/invite does not include a conference ID. I suspect that I may also need the 'Microsoft 365 Audio Conferencing' add-on and assign a licence to the initiator. As there is a minimum 12-month term I do not wish to subscribe unless I am sure I am correct. I am also struggling to identify the associated costs of the phone number associated with the voice bridge in the Skype for Business Admin Centre. I would very much appreciate some guidance! Russell.Solved1.3KViews0likes4CommentsIssue - Skype Room System external display
Hello, I'm currently having some issues, we have a logitech group system, with the LenovoSmart display, and in the smart display even though it shows the scheduled meetings, it doesn't populate the meeting name, instead it shows the name of the person who created the meeting, twice. Any way to fix this ? Thanks in advanceSolved1.4KViews0likes5CommentsMove-csuser failes to find user in AD
this past weekend I updated to CU10 for skype 2015 so we could move our users directly to Teamsonly. Move-CsUser -DomainController dc.domain.com -Identity $user -Target sipfed.online.lync.com -Credential $cred -HostedMigrationOverrideUrl $url -Confirm:$false -MoveToTeams I'm trying to use the above command to move the users. I get an error 201, can't find user in AD with SIP URI sip:user@domain.com I get use get-csuser with the UPN,SIP, and full name and it will find and display all the information. I've tested with two different accounts and get the same issue. I tried moving one through the GUI and it worked great. So the process itself works, I just need to get powershell working so I can script a larger number of users after training. all the online references to the 201 error seem to point to AD attributes not replicating to Azure AD. But if that was the case I would assume the GUI wouldn't work then. I've tried pointing at a different DC same error. Posting it here because the users are still on Skype 2015. thanks.jbSolved1.5KViews0likes1CommentAudio Conferencing co-existence in Hybrid
Hi Community, One of our customer raised the below query. Currently they have Lync 2013 and SfB online hybrid. Questions: Can they have Office 365 Audio conferencing co-existence in Hybrid? How on-prem users can join the meeting scheduled by migrated users? Similarly how online users can join the meeting scheduled by on-prem users? Any pointers would be of great help. Many thanks!!Solved1.2KViews0likes2CommentsImport contacts to Skype for Business online
Hi, I am planning a migration from my current domain to a new one where the users will be migrated from the current domain then synchronized withe Azure AD Connect. I have an existing Skype for Business Server 2015 on-premises and an Office 365 tenant with some test users that I migrated and applied E3 licences. The goal is to retrieve users SfB contacts once they start using Skype for Business online (O365), if possible avoiding having to add them manually one by one. Is there a way to "export a csv" of one's contactsl list then import it to another account on Skype for Business online ? PS: This is not an hybrid deployment.Solved2.6KViews0likes2CommentsSIP 2.0 error 503 incoming from cisco CUCM
Hello Team, i have a trunk CUCM to SFB 2015 where skype can call Cisco extension but Cisco cannot call Skype extensions, i get the error 503 service unavailable on the skype server. So far i downloaded and installed the latest SFB update that did not fix the issue. here are some logs of Cisco to SFB fetch from Skype: TL_INFO(TF_PROTOCOL) [SFB\PR-VM-SFB-01]1594.3D3C::07/01/2019-11:43:13.941.00002000 (S4,SipMessage.DataLoggingHelper:sipmessage.cs(801)) [431143657] <<<<<<<<<<<<Incoming SipMessage c=[<SipTcpConnection_5291CE>], 10.10.30.23:5068<-10.10.60.250:35810 INVITE sip:820993@10.10.30.23:5068 SIP/2.0 FROM: "AMBOZOO" <sip:25006@10.10.60.250>;tag=40478~bb16990c-bb8d-474d-e339-4cb6bd7d93e7-23478979 TO: <sip:820993@10.10.30.23> CSEQ: 101 INVITE CALL-ID: ff535980-d191edc8-41b-fa3c0a0a@10.10.60.250 MAX-FORWARDS: 69 VIA: SIP/2.0/TCP 10.10.60.250:5060;branch=z9hG4bK41e3a437828 ALLOW-EVENTS: presence CONTACT: <sip:25006@10.10.60.250:5060;transport=tcp>;+u.sip!devicename.ccm.cisco.com="CSFAMBOZOO";bfcp CONTENT-LENGTH: 202 DATE: Mon, 01 Jul 2019 11:26:00 GMT EXPIRES: 180 SUPPORTED: timer,resource-priority,replaces SUPPORTED: X-cisco-srtp-fallback,X-cisco-original-called USER-AGENT: Cisco-CUCM11.0 CONTENT-TYPE: application/sdp ALLOW: INVITE, OPTIONS, INFO, BYE, CANCEL, ACK, PRACK, UPDATE, REFER, SUBSCRIBE, NOTIFY P-ASSERTED-IDENTITY: "AMBOZOO" <sip:25006@10.10.60.250> Min-SE: 1800 Session-ID: 00001cc400105000a0001002b529e1f4;remote=00000000000000000000000000000000 Cisco-Guid: 4283652480-0000065536-0000000002-4198238730 Session-Expires: 1800 Remote-Party-ID: "AMBOZOO" <sip:25006@10.10.60.250>;party=calling;screen=yes;privacy=off v=0 o=CiscoSystemsCCM-SIP 40478 1 IN IP4 10.10.60.250 s=SIP Call c=IN IP4 10.123.123.10 t=0 0 m=audio 16386 RTP/AVP 0 101 a=rtpmap:0 PCMU/8000 a=rtpmap:101 telephone-event/8000 a=fmtp:101 0-15 ------------EndOfIncoming SipMessage TL_INFO(TF_PROTOCOL) [SFB\PR-VM-SFB-01]1594.2FE8::07/01/2019-11:43:13.942.00002001 (S4,SipMessage.DataLoggingHelper:sipmessage.cs(801)) [431143657] >>>>>>>>>>>>Outgoing SipMessage c=[<SipTcpConnection_5291CE>], 10.10.30.23:5068->10.10.60.250:35810 SIP/2.0 100 Trying FROM: "AMBOZOO"<sip:25006@10.10.60.250>;tag=40478~bb16990c-bb8d-474d-e339-4cb6bd7d93e7-23478979 TO: <sip:820993@10.10.30.23> CSEQ: 101 INVITE CALL-ID: ff535980-d191edc8-41b-fa3c0a0a@10.10.60.250 VIA: SIP/2.0/TCP 10.10.60.250:5060;branch=z9hG4bK41e3a437828 CONTENT-LENGTH: 0 ------------EndOfOutgoing SipMessage TL_INFO(TF_PROTOCOL) [SFB\PR-VM-SFB-01]1594.36B0::07/01/2019-11:43:13.953.00002005 (S4,SipMessage.DataLoggingHelper:sipmessage.cs(801)) [431143657] >>>>>>>>>>>>Outgoing SipMessage c=[<SipTcpConnection_5291CE>], 10.10.30.23:5068->10.10.60.250:35810 SIP/2.0 503 Service Unavailable FROM: "AMBOZOO"<sip:25006@10.10.60.250>;tag=40478~bb16990c-bb8d-474d-e339-4cb6bd7d93e7-23478979 TO: <sip:820993@10.10.30.23>;epid=4A4C146B07;tag=707bec76e1 CSEQ: 101 INVITE CALL-ID: ff535980-d191edc8-41b-fa3c0a0a@10.10.60.250 VIA: SIP/2.0/TCP 10.10.60.250:5060;branch=z9hG4bK41e3a437828 CONTENT-LENGTH: 0 SERVER: RTCC/6.0.0.0 MediationServer ------------EndOfOutgoing SipMessage TL_INFO(TF_PROTOCOL) [SFB\PR-VM-SFB-01]1594.3D3C::07/01/2019-11:43:14.063.0000200C (S4,SipMessage.DataLoggingHelper:sipmessage.cs(801)) [546807437] <<<<<<<<<<<<Incoming SipMessage c=[<SipTcpConnection_5291CE>], 10.10.30.23:5068<-10.10.60.250:35810 ACK sip:820993@10.10.30.23:5068 SIP/2.0 FROM: "AMBOZOO" <sip:25006@10.10.60.250>;tag=40478~bb16990c-bb8d-474d-e339-4cb6bd7d93e7-23478979 TO: <sip:820993@10.10.30.23>;epid=4A4C146B07;tag=707bec76e1 CSEQ: 101 ACK CALL-ID: ff535980-d191edc8-41b-fa3c0a0a@10.10.60.250 MAX-FORWARDS: 70 VIA: SIP/2.0/TCP 10.10.60.250:5060;branch=z9hG4bK41e3a437828 ALLOW-EVENTS: presence CONTENT-LENGTH: 0 DATE: Mon, 01 Jul 2019 11:26:00 GMT USER-AGENT: Cisco-CUCM11.0 ------------EndOfIncoming SipMessage Any help will be appreciated. thank youSolved7.1KViews0likes1Comment
SFB office web app link (cipher suite)
Hi everyone, I am experiencing problem with powerpoint sharing, other function is ok, so i went to to front-end server and try to access https://serverwac.domain.com/hosting/discovery and found i am not able to browse the page with tls error. gpreult /h show the following cipher suite order TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, -------------- TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, -------------- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, ---------------- TLS_DHE_DSS_WITH_AES_256_CBC_SHA256,----------- TLS_DHE_DSS_WITH_AES_128_CBC_SHA256,----------------- TLS_DHE_DSS_WITH_AES_256_CBC_SHA,--------------- TLS_DHE_DSS_WITH_AES_128_CBC_SHA,-------------------- TLS_RSA_WITH_NULL_SHA256, TLS_RSA_WITH_NULL_SHA, TLS_PSK_WITH_AES_256_GCM_SHA384, TLS_PSK_WITH_AES_128_GCM_SHA256, TLS_PSK_WITH_AES_256_CBC_SHA384, TLS_PSK_WITH_AES_128_CBC_SHA256, TLS_PSK_WITH_NULL_SHA384, TLS_PSK_WITH_NULL_SHA256 Using wireshark, the hello shows version: TLS 1.2 (0X0303) Cipher Suites Length: 14 Cipher Suites (7 suites) TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLS_RSA_WITH_AES_256_CBC_SHA TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_DHE_DSS_WITH_AES_128_CBC_SHA The cipher order in the packet does not list everything in the group policy. I have tried to unlink the cipher hardening in group policy and it was advertising more cipher (windows default cipher) and i was able to browse the office web app link. the sfb server is running sfb 2015 cu7 and windows 2012 R2. the following update was applied https://docs.microsoft.com/en-us/windows/desktop/secauthn/tls-cipher-suites-in-windows-8-1 although some update was saying not applicable for the machine when i tried to install again. I was able to see the cipher suite listed in the microsoft link (https://docs.microsoft.com/en-us/windows/desktop/secauthn/tls-cipher-suites-in-windows-8-1) using wireshark after removing the cipher hardening policy. does anyone knows why the cipher suite in the group policy does not take effect? or what might have conflicting it? I have to get the hardened cipher suite to work with the load balanced office web app link. Thanks! Edit: I have further tried to create a new policy as in following table "Match". The idea is to get hardened cipher suites and apply it only to Windows 2012 R2. The table "Wireshark" refers to cipher suites gather from the machine without any group policy/or cipher order with Wireshark "Hello". The table "Manual cipher order" refers to the cipher order from the group policy. The table "Match" derives from "Wireshark" matches "Manual cipher order" Wireshark Manual cipher order Match TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 #N/A TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 #N/A TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 TLS_DHE_RSA_WITH_AES_128_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 TLS_RSA_WITH_AES_256_GCM_SHA384 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA TLS_RSA_WITH_AES_256_CBC_SHA256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA256 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 TLS_DHE_DSS_WITH_AES_128_CBC_SHA TLS_DHE_DSS_WITH_AES_128_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 TLS_RSA_WITH_NULL_SHA256 #N/A TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_NULL_SHA #N/A TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA TLS_PSK_WITH_AES_256_GCM_SHA384 #N/A TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 TLS_PSK_WITH_AES_128_GCM_SHA256 #N/A TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 TLS_PSK_WITH_AES_256_CBC_SHA384 #N/A TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_PSK_WITH_AES_128_CBC_SHA256 #N/A TLS_DHE_DSS_WITH_AES_128_CBC_SHA TLS_PSK_WITH_NULL_SHA384 #N/A TLS_RSA_WITH_3DES_EDE_CBC_SHA TLS_PSK_WITH_NULL_SHA256 #N/A TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA #N/A However with the newly created group policy from the above table "Match", wireshark shows only 3 cipher suites and the gpresult /h shows the "match" values has applied.Solved1.2KViews0likes1CommentSfB online migration with contacts
Hi Community, One of our customer raised the below query. They have migration plan for a cross forest Lync 2013 to Skype Online migration, Environment: -Forest A has the Lync 2013 users with their SIP address set to xyz.com -All users are being moved to a new forest, which will have Office 365 with AADC -New forest will have their SIP changed to a different domain i.e. abc.com Questions: How the Lync accounts can be migrated to Skype online and preserve the contacts and chats? Does the migration require an export of the users contacts etc via Lync PowerShell and then an import into Skype online? Any pointers would be of great help. Many thanks.Solved2.1KViews0likes5Comments
Events
Recent Blogs
- Hotfix for Skype for Business Server (7.0.2046.548 CU8HF1) has been released to address an issue introduced by Cumulative Update 8 for Skype for Business Server 2019. This issue caused failure in joi...Mar 11, 2025140Views0likes0Comments
- 4 MIN READOn October 14, 2025, 9 months from today, Skype for Business Server 2015, Skype for Business Server 2019, Skype for Business 2016 (client) and Skype for Business 2019 (client) reach end of support. ...Jan 15, 20251KViews0likes0Comments
