This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 77%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello.
SFB on PCs works great. Problem with mobile Android, iOs.
We have deployed SFB servers in our internal network. 3 Front-end servers. 3 back-end servers. 1 EDGE server in DMZ with proxy. Active directory servers and own CA. Certificates are added. 1 year ago we tryed to deploy EDGE. And we did it, but at that time some users are could sign in from mobile , but some users could not. Tryed to fix that, but could not, so we postponed for later. And now we made enother EDGE. renew topology, added certificate to edge. Users signed in normaly, exept "one user". In a few days internal certificates on internal spool servers are expired. Main certificate, and front-end servers certificates. We renew them using the same attributes, but SAN has 1 record wich is not in old certificate, it has been added automaticaly, and that dns record is exists in DNS pool. And after that some users cannot sign in, who could sign in before. (By the way that "one user" is still cannot sign in). If need more information (log file from client mobile cell, any other information) I will provide all needed information.
Please help!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 24%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Are there any error message in your edge server from the event viewer?
Do you have any error message when users login SFB mobile client?
It recommends you try to renew your certificate via the command:
Request-CsCertificate -New -Type AccessEdgeExternal,DataEdgeExternal,AudioVideoAuthentication -ComputerFqdn "atl-edge-001" -CA "atl-ca-001.litwareinc.com\myca" -FriendlyName "External Edge Certificate" -Template jcila -PrivateKeyExportable $True -DomainName "atl-edge-001.litwareinc.com,ap.litwareinc.com,dp.litwareinc.com,atl-edge-001"
Once the CSR is generated, hand it over to godaddy and once you get the new cert > Import it to the edge server > Then remove the old one.
Error equered in EDGE Server only this:
Failed to process data received from the client
"Over the past 10 minutes Skype for Business Server has disconnected clients 0 time(s) as a result of invalid data being received on client connections. The last such client which was disconnected is "104.152.52.57:44726".
Cause: Failed to process data received from the client
Resolution:
Check and make sure that the connection came from a trustworthy client."
I exported log file form both clients iOS and Android
At this time reading that logs.
If it possible. Where i can send log files from clients to let you see?
The mobile clients SFB messaging: Cannot connect to server. Please Check your connection or server adres... Some user's SFB client messaging: Cannot sing-in. Please check credentials and other changes...
At the same time a lot of users connecting and singing in.
In this case, we firstly recommend you use Microsoft Remote Connectivity Analyzer and see if the autodiscover is correct. I think this issue may happened from it.
Microsoft Remote Connectivity Analyzer passed test successfuly. All marks are green.
There is some message In mobile client logfile: INFO TRANSPORT CHttpRequestProcessor.cpp:155 Received response for request Id: 0000007CB60B5550 and request(UcwaAutoDiscoveryRequest) with status = E_ConnectionError (E2-2-1)
I can send logfile to secured email.
Thanks for your information!
Due to the security compliance, we could only discuss this question in this forum. If you want to provide more information from client logs, you could copy and paste it here. Meanwhile, don't forget to cover your privacy information.
For IOS device, you could try to installed Certificate Authority's Root Certificate on the iOS device.
Email Root Certificate (the same root certificate installed on SFB FE server) to yourself as an attachment without zipping.
Is there any update on this case?
Please feel free to drop us a note if there is any update.
Have a nice day!
Hi. Got it. I'll post logs here, after hide confidential information. Thanks a lot.
No problem. If you have any new update, please feel free to contact with us!