Access And Login skype for business 2015 in Public Domain

Behzad Najafizad 136 Reputation points
2020-11-23T09:53:56.587+00:00

Hello
my current status is:
1- I initialize SFB 2015 Standard edition in my domain.local and publish topology by one sip local (skype.domain.local or )
2- I do configuration edge server by 3 NIC public and 1 NIC local.
3- prefix suffix in edge server has edge.domain.local
4- my edge topology have 1 sip (same sip local) and just external connection in the web external is webext.domain.com record
5- my dns record in public domain configured

My Question:
1- how user in public zone connect by public domain (domain.com) and login by local username and password?
2- do you need create additional sip domain in local skype or edge server?
3- certificate for local and public domain how create by one sip ?

Skype for Business
Skype for Business
A Microsoft communications service that provides communications capabilities across presence, instant messaging, audio/video calling, and an online meeting experience that includes audio, video, and web conferencing.
602 questions
{count} votes

Accepted answer
  1. Behzad Najafizad 136 Reputation points
    2021-01-01T18:53:56.057+00:00

    @Sharon Zhao-MSFT Tank you for answer my question but !

    • myDomain.local located in private zone and communicate by private dns
    • myDomain.com located in public zone and communicate by private dns

    1- which on Primary DNS suffix in Edge Server? myDomain.local OR myDomain.com ???
    2- In the Topology Builder what is name Edge Server ? SkypeEdge.local OR SkypeEdge.com
    3- why not create addition domain in Skype topology ? if not add additional domain, in certificate step not create for myDomain.com record only webext.myDomain.com


1 additional answer

Sort by: Most helpful
  1. Sharon Zhao-MSFT 25,051 Reputation points Microsoft Vendor
    2020-11-24T03:01:24.767+00:00

    @Behzad Najafizad ,

    Question 1- how user in public zone connect by public domain (domain.com) and login by local username and password?

    External user sign-in process is as below:

    1. Client discovers Edge Server:
      lyncdiscoverinternal.<sip-domain>
      lyncdiscover.<sip-domain>
      _sipinternaltls._tcp.<sip-domain>
      _sipinternal._tcp.<sip-domain>
      _sip._tls.<sip-domain>
      sipinternal.<sip-domain>
      sip.<sip-domain>
      sipexternal.<sip-domain>
      2.Client connects to Edge Server.
    2. Edge Server proxies connection to Director.
    3. Director authenticates user and proxy connection to user’s home pool.

    Question 2- do you need create additional sip domain in local skype or edge server?

    No. It only needs to deploy Edge server properly. For more details, please refer to this article

    Question 3- certificate for local and public domain how create by one sip ?

    About certificate, please refer to this link.


    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.