Presentation is loading. Please wait.

Presentation is loading. Please wait.

Published byShanon Preston Modified over 8 years ago

Similar presentations

Presentation on theme: ""— Presentation transcript:

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22 1. After DNS resolution, client contacts the Lync Edge Access Server. 5. Client authenticates 4. Edge presents certificate to Client 2. Edge Access Server connects to Director Server (Next Hop) 3. Server presents the certificate to Edge Server 7. Trusted and encrypted connection is established 6. Authentication is processed

23 1. IM sent in SIP connection secured with TLS 4. IM is send to client (SIP/ TLS) 5. IM replies in the opposite direction 2. Edge forwards IM to Director Pool Server (SIP/MTLS) 3. Director Pool forwards IM to Frontend Pool (SIP/MTLS)

24 1. Initiate IM Session via Home Pool (SIP/ TLS) 2.IM Session is forward to second Pool (SIP/MTLS) 3. IM Session is send to Client (SIP/ TLS) Bidirectional Channel 4. Client add A/V to the IM Session (Signaling) via SIP/TLS/MTLS) 5. Signaling is forwarded to second Pool (SIP/ MTLS) 6. Signaling is send to Client (SIP/ TLS) 7. A/V session is established via P2P connection, secured with SRTP protocol Other P2P connections are: Desktop Sharing and File Transfer, both secured with SRTP protocol

25

26

27 Meeting (establ.+ files), ABS, Mobility, Dial-In, to Reverse Proxy HTTPS (443) Meeting (establ.+ files), ABS, Mobility, Dial-In, to Reverse Proxy HTTPS (4443) ext WS Sign-In, contacts, presence, IM Session Setup, … to Edge Server SIP/ TLS Sign-In, contacts, presence, IM Session Setup, … to Edge Server SIP/ MTLS Media (audio, video, appsharing, file transfer) to Edge Server SRTP Media (audio, video, appsharing, file transfer) to Edge Server SRTP

28 web traffic (TCP 443) Incoming web traffic redirect (TCP 4443)

29 Meeting (establ.+ files), ABS, Mobility, Dial-In, to Reverse Proxy HTTPS (4443) ext WS Meeting (establ.+ files), ABS, Mobility, Dial-In, to Reverse Proxy HTTPS (443) ext WS Uni-directional Meeting (establ.+ files), ABS, Mobility, Dial-In, to Reverse Proxy HTTPS (4443) ext WS Sign-In, contacts, presence, IM Session Setup, Call Setup to Frontend Server SIP/ TLS Sign-In, contacts, presence, IM Session Setup, Call Setup to Edge Server SIP/ MTLS Sign-In, contacts, presence, IM Session Setup, Call Setup … Edge Edge in Federation SIP/ MTLS Sign-In, contacts, presence, IM Session Setup, Call Setup … Edge Frontend Server SIP/ MTLS Sign-In, contacts, presence, IM Session Setup, Call Setup, … to Frontend Server SIP/ TLS Media (audio, video, appsharing, file transfer) all clients incl. Mobile Client Edge Server SRTP Media (audio, video, appsharing, file transfer) Edge Server Edge Server SRTP NO Client-to-Client communication Media (audio, video, appsharing, file transfer) all clients incl. Mobile Client Edge Server SRTP

30

31

32

33

34

35

36

37

38

39

40 Planning for security in Lync Server 2013 http://technet.microsoft.com/en- us/library/dn342827.aspx TLS and MTLS for Lync Server 2013 http://technet.microsoft.com/en- us/library/dn481133.aspx

41

42

43 www.microsoft.com/learning http://developer.microsoft.com http://microsoft.com/technet http://channel9.msdn.com/Events/TechEd

44

45

46

Download ppt ""

Similar presentations

SIP, Presence and Instant Messaging

SIP, Presence and Instant Messaging
SIP and Instant Messaging. www.dynamicsoft.com SIP Summit 2001 5.01.01 SIP and Instant Messaging What Does Presence Have to Do With SIP? How to Deliver.

SIP and Instant Messaging. SIP Summit SIP and Instant Messaging What Does Presence Have to Do With SIP? How to Deliver.
www.dynamicsoft.com Fall IM 2000 Introduction to SIP Jonathan Rosenberg Chief Scientist.

Fall IM 2000 Introduction to SIP Jonathan Rosenberg Chief Scientist.
www.dynamicsoft.com Fall VoN 2000 SIP for IP Communications Jonathan Rosenberg Chief Scientist.

Fall VoN 2000 SIP for IP Communications Jonathan Rosenberg Chief Scientist.
Session Initiation Protocol (SIP) Panel Larry Amiot (Northwestern University), Chair Ben Teitelbaum (Internet2) Todd Needham (Microsoft) Orit Levin (Radvision)

Session Initiation Protocol (SIP) Panel Larry Amiot (Northwestern University), Chair Ben Teitelbaum (Internet2) Todd Needham (Microsoft) Orit Levin (Radvision)
Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.

Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.
Unified communications platform Enterprise-ready.

Unified communications platform Enterprise-ready.
Unified. Simplified. Unified Communications Launch 2007.

Unified. Simplified. Unified Communications Launch 2007.
1 What’s Next For SIP Trunking? Carriers Enabling and Bringing WebRTC Features With Their Trunks © 2015 Ingate Systems AB Prepared for:Ingate SIP Trunking,

1 What’s Next For SIP Trunking? Carriers Enabling and Bringing WebRTC Features With Their Trunks © 2015 Ingate Systems AB Prepared for:Ingate SIP Trunking,
Lync 2014 4/11/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.

Lync /11/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.
SECURE SITES. A SECURE CONNECTION TERMS Secure Sockets Layer (SSL) An older Internet protocol that allows for data transmission between server and client.

SECURE SITES. A SECURE CONNECTION TERMS Secure Sockets Layer (SSL) An older Internet protocol that allows for data transmission between server and client.
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
January 23-26, 2007 Ft. Lauderdale, Florida An introduction to SIP Simon Millard Professional Services Manager Aculab.

January 23-26, 2007 Ft. Lauderdale, Florida An introduction to SIP Simon Millard Professional Services Manager Aculab.
externalinternal SIP Proxy a w.

externalinternal SIP Proxy a w.
Enabling SIP to the Enterprise Steve Johnson, Ingate Systems Security: How SIP Improves Telephony.

Enabling SIP to the Enterprise Steve Johnson, Ingate Systems Security: How SIP Improves Telephony.
Voice over IP and IP telephony Network convergence – Telephone and IT – PoE (Power over Ethernet) Mobility and Roaming Telco – Switched -> Packet (IP)

Voice over IP and IP telephony Network convergence – Telephone and IT – PoE (Power over Ethernet) Mobility and Roaming Telco – Switched -> Packet (IP)
Waterfall Traditional method Allows for large projects Extended timelines Multiyear solutions Continuous work force Incremental project flow Scrum Breaks.

Waterfall Traditional method Allows for large projects Extended timelines Multiyear solutions Continuous work force Incremental project flow Scrum Breaks.
High Availability and Web Publishing for UC Deployments Load Balancing & Reverse Proxy October 24, 2013 Bhargav Shukla Director – Product Research and.

High Availability and Web Publishing for UC Deployments Load Balancing & Reverse Proxy October 24, 2013 Bhargav Shukla Director – Product Research and.
Microsoft Lync 2010: Planning for Conferencing Deployments Paul Brombley Senior Consultant Microsoft Corporation EXL315.

Microsoft Lync 2010: Planning for Conferencing Deployments Paul Brombley Senior Consultant Microsoft Corporation EXL315.

Similar presentations

Ads by Google