Publishing Lync web services

Applies To: Unified Access Gateway

This topic provides instructions on how to publish Microsoft Lync 2010 via Forefront Unified Access Gateway (UAG).


Forefront UAG does not support Lync Mobility scenarios.

To publish Microsoft Lync 2010

  1. In the Forefront UAG Management console, select the portal in which you want to publish Lync.

  2. In the main portal properties page, in Applications, click Add.

  3. On the Select Application page of the Add Application Wizard, select Web, and then select Microsoft Lync Web App 2010. Then click Next.

  4. On the Configure Application page, specify a name for the application. This name will appear in the portal. Then click Next.

  5. On the Select Endpoint Policies page, select an access policy for accessing the Lync application, download and upload policies, and a policy for accessing the restricted zones of an application if relevant. For more information about editing endpoint policies, see Implementing access policies for endpoint health validation.

  6. On the Deploying an Application page, click Configure an application server. If you want to publish a farm of Lync servers that all share the same configuration, click Configure a farm of application servers. Then click Next.

  7. On the Web Servers page, in the Addresses box, enter the fully qualified domain name (FQDN) of the Lync external web services, and then, in the Public host name box, enter the same FQDN of the Lync external web services. Then click Next.


    The FQDN of the Lync external web services can be found in the Lync Topology Builder. Make sure that the FQDN of Lync external web services belongs to the same domain as the domain of the Forefront UAG trunk.

    If you do not want to expose the internal Lync naming scheme through Forefront UAG, you can change the external web services FQDN to be different from the Lync server’s FQDN. If you change the external web services FQDN, you must also change the meet and dial-in URLs in the Lync topology builder. These URLs must share the same suffix defined in the external web services FQDN because their corresponding applications must be part of the same trunk to which the primary Lync application belongs. For information about changing URLs in the Lync topology builder, see Change the Web Services URL, and Edit Administration Simple URL.

  8. On the Authentication page, clear the Use SSO check box. Then click Next.

  9. On the Portal Link page, click Add a portal and toolbar link to allow users to access the application from the portal toolbar. Then specify the link settings, and click Next.

  10. On the Authorization page, leave the default setting to allow all portal users to access the application. To allow access to the Lync server for specified users and groups only, clear Authorize all users. Then click Add to add users and groups, and click Next. For more information about setting up portal application authorization, see Implementing users and groups for application authorization.

  11. On the completion page of the wizard, click Finish.