Lync 2013 Apache Reverse Proxy issues

If you are using Apache as the reverse proxy for Lync, you may experience some issues when signing in using the mobile app (I only tested iOS). Things to look for are:

  • 50/50 chance in sign-ins (first fails, second works, as shown below)
  • Calls (audio or video) fail to establish
  • Signing out of the application produces an error as shown below

IMG_0877 IMG_0876

To resolve, look for the DefaultType directive in your httpd.conf. If it’s set to text/plain, change it to None and reload Apache config. The line should read:

DefaultType None

Discovering Internal CAs

If you ever want to query AD for Certification Authorities, skip ADSI Edit… there’s a quick way to do it using certutil. Here’s how:

certutil -config – -ping

Note the extra empty dash between -config and -ping is needed to query the list of CAs.

Credit for the useful command goes to colleague and UC ninja Jeff Carlson.