Supported Reverse Proxy for Lync 2010 & Lync 2013

This lists the server reverse proxy products that have completed solution testing with Lync Server. While any reverse proxy is expected to work with Lync Server, the reverse proxies listed below have completed extensive testing and are posted with detailed deployment white papers to assist in configuration.

Qualified for Lync 2013 & Lync 2010 


Qualified Product

Software Version Tested

Vendor’s Lync Page


Internet Information Services Application Request Routing  (IIS ARR)


IIS ARR Config Guide


Forefront Threat Management Gateway (TMG) **


Setting up Reverse Proxy Servers with TMG

** In November, 2012, Microsoft ceased license sales of Forefront Threat Management Gateway 2010, or TMG. TMG is still a fully supported product, and is still available for sale on appliances sold by third parties.

Z-Hire Active Directory User Creation Tool

I want you to inform about a great tool.

Z-Hire automates the IT user account creation process for Exchange mailbox, and Active Directory and Lync accounts. With just a click of the button, your Exchange mailbox, and Active directory user, Lync account and SalesForce User account will be created simultaneousy. Z-Hire serves as the platform for new hire accounts by allowing auto-creation of major IT accounts with the option for custom scripts. Z-hire will decrease your account deployment time by 600%, without the need for complicated and expensive identity management solutions. This tool makes creating Active Directory users a breeze. Some of the features include:

– Environment Auto discovery (AD/Exchange/Lync/SalesForce)
– Support for Active Directory user, Exchange, Lync 2010 and SalesForce user accounts
– Template based deployment (allows consistency for all user accounts)
– Active Directory user creation with major attributes
– Active Directory group selection
– Active Directory user duplicate SamAccountName detection – Lync 2010 / 2013 user account creation supporting all policies
– SalesForce user account creation supporting all attributes
– Faster performance (compared to previous version)

Supported Environments / IT systems
– Active Directory (all versions)
– Exchange 2007 (all versions)
– Exchange 2010 / 2013 (all versions)
– Lync 2010 / 2013 (both Standard and Enterprise versions)
– Office 365 Cloud
– SalesForce Cloud

Screenshot #1 – Active Directory
Screenshot #2 – Active Directory
Screenshot #3 – Active Directory
Screenshot #4 – Exchange
Screenshot #5 – Lync
Screenshot #6 – Supported Systems

– .NET 3.5 and .NET 4.0
– Domain Joined

– Windows 7 X64
– Windows Server 2008 X64
– Windows Server 2008 R2 X64
– Windows Server 2012

Please download administration guide:1

Download: Z-Hire

Z-Term Active Directory User Termination Tool

I want you to inform a about a great tool Z-Term Active Directory User Termination Tool

This application allows IT administrators to automate common tasks when an employee leaves the company. Usually, IT administrators use multiple consoles and perform variety of tasks to terminate user accounts. This tool allows IT administrator to automate:

Active Directory Tasks
– Disable Active Directory Account
– Reset Active Directory Password
– Move users to dedicated OU
– Remove Active Directory Group membership
– Clear Manager field in AD
– Set Description field
– Set Notes field
– Remove Active Directory Account

Exchange Tasks
– Change Distribution List ownership to
– Set customAttribute5
– Set out of office reply
– Forward Email
– Grant full access permission
– Hide user from Global Adress List
– Remove Calendar items from resources.(remove calendar items where user is an organizer of)
– Cancel meetings from termined user’s mailobx(cancel meetings where user is an organizer of)
– Disable mailbox
– Export mailbox to PST format
– Remove ActiveSync device partnership
– Remote wipe user’s ActiveSync device

– Disable Lync Account

Office 365
– MSOL User – Reset Password
– MSOL User – Remove Office 365 License
– MSOL User – Remove User
– MSOL Exchange – Clear Out of Office Reply
– MSOL Exchange – Hide User from GAL
– MSOL Exchange – Change Distribution List Ownership
– MSOL Exchange – Set CustomAttribute
– MSOL Exchange – Set Out of Office Reply
– MSOL Exchange – Set Grant FullAccess Permission
– MSOL Exchange – Set email forwarding
– MSOL Exchange – Remove calendar items from resource mailboxes

File Operations
– Move home folder
– Export user settings to XML (dump all user data to xml as backup)
– Run custom script ( for advanced users only, contact support for more info )

Screenshot #1 – Active Directory
Screenshot #2 – Exchange
Screenshot #3- File Operations

– .NET 3.5 and .NET 4.0
– Domain Joined

– Windows 7 X64
– Windows Server 2008 X64
– Windows Server 2008 R2 X64
– Windows Server 2012

Please download administration guide:

Download: Z-Term

Error while installing WebComponents.msi


When configuring certificates for a lync 2010 environment, I noticed that I made a typo. Failing to correct the problem via the topology builder, I had to uninstall the lync software. After correcting my typo, the installation failed to install. This was the error I got:


After doing some digging I noticed also an event in the eventviewer

Opening the log file as mentioned in the event, it turned out I had something to do with an duplicate entry in the applicationhost.config.


As stated in the error it had something to do with a duplicate entry at line 421. Opening the applicationhost.config learned that line 421 didn’t had anything to do with lync. The trick was to find OCSAuthHelperModule:

<add name=”OCSAuthHelperModule” image=”C:\Windows\Assembly\GAC_64\Microsoft.Rtc.Server.WebInfrastructure\\Microsoft.Rtc.Server.WebInfrastructure.dll” preCondition=”integratedMode,runtimeVersionv2.0,bitness64″ />

After deleting this entry, the installation went good!


Special thnx to Techsps

KEMP LoadMaster v7.0-4 firmware is now available with Edge Security Pack

Kemp announced  Firmware release LoadMaster 7.0-4. Here are the details below. Watch out for more announcements on some of the features in the coming weeks.

New Features and Feature Enhancements:
  • Edge Security Pack – A range of new security features has been added to the LoadMaster.
  • Sub-VS Support – The LoadMaster now supports the creation and management of sub-VSs.
  • Graphical Metrics – There is a new dashboard home screen with the capability to display graphical performance information.
  • New License format – A new license format has been introduced
  • Oracle VirtualBox VLM – A new VLM package, to support VLM installation within an Oracle VirtualBox environment is available
  • MIBS files have been updated
  • SID and revision information included in IPS logging
  • VLAN Separation per Interface
  • Support for larger TCP window sizes
  • ‘Kill switch’ is now supported on all LoadMaster versions
  • LM-R320 has its serial number visible on the WUI
  • The Netconsole Host interface is configurable via the WUI
Issues Resolved:
    • Issue with SMTP STARTTLS when a client sends an EHLO is resolved
    • Issue with ACL whitelist allowing other IPs is resolved
    • Issue with switching VS types under load is resolved
    • Some reboot issues have been resolved
    • An issue with caching on Firefox has been resolved
    • The “-“ character is now allowed in the DNS Search Domain field
    • Issues with the MIBS have been resolved
    • A circular routing problem has been resolved
    • SNMP trap Source IP has been changed to pre 5.1-48 behaviour
    • SSL renegotiation can be toggled on/off
    • SSLv2 is no longer used for LoadMaster initiated SSL connections
    • An issue with Not Available Redirection XSS has been resolved
    • The Default IP is now displayed on the WUI when DHCP fails
    • An issue with VS Specific insert X-Clientside header being overwritten by system default has been resolved
    • The “-“ character is now allowed in the User Login field
    • An issue with the Fail on Match functionality has been resolved
    • An issue with Maximum Cache Size has been resolved
    Known Issues:
      • Quick setup Help appears automatically if no IP address is configured on the LM if a VLAN is configured on eth0 and no IP address is assigned to the underlying interface (eth0)
      LoadMaster version v7.0-4 supports the following hardware:
      • LM-2000
      • LM-2200
      • LM-2500
      • LM-2600
      • LM-3500
      • LM-3600
      • LM-5300
      • LM-5500
      • LM-Exchange
      • LM-R320
      • VLM-100
      • VLM-1000
      • VLM-Exchange
      NOTE – ESP is supported on select LoadMaster models and new VLM installations.

      Learn more about LoadMaster 7.0:


      Full Release Notes

      Full Documentation

      Lync Jump Start Series

      If you are studying like me for the 70-664 & 70-665 Lync exams. The Lync Jump Start series are a good point for beginning Knipogende emoticon

      Microsoft Lync Server 2010 Capacity Calculator


      A handy spreadsheet for calculating a user’s hardware requirements based on information that the administrator supplies about number of users, types of communication and expected traffic has been made available by Microsoft. The download available by clicking here and the corresponding Microsoft Word document explains the tool and how to use it.


      Microsoft Lync Server 2010 Protocol Workloads Poster

      This poster shows each workload in Lync Server 2010, describing relationships, dependencies, the servers that initiate connections, and certificate requirements. Relationships between Microsoft Lync 2010 communications software, Microsoft Lync 2010 Phone Edition, Microsoft Office Live Meeting 2007, Microsoft Lync Web App, and other communications software are also described. SIP and XMPP connection patterns are shown for Yahoo!, MSN, AOL, Gmail, and Jabber

      To download: Click on the Picture


      GAL Photos in Exchange 2010 and Outlook 2010

      With Microsoft Exchange 2010 and Outlook 2010 & Lync & Sharepoint 2010 you can finally get photos into your global address list (GAL) and see just who’s who on your emails. You can do this on 2 way’s

      1. Using Powershell Smile

        A minor schema change

        First stop, the AD Schema. A minor schema modification is required to flip the thumbnailPhoto attribute to make it replicate to the Global Catalog.

        1. If you haven’t registered the Schema MMC snap-in on the server you want to make this change on, go ahead and do so using the following command:

          Regsvr32 schmmgmt.dll

        2. Fire up a MMC console (Start -> Run -> MMC) and add the Schema snap-in

        3. In the Active Directory Schema snap-in, expand the Attributes node, and then locate the thumbnailPhoto attribute. (The Schema snap-in lists attributes by its ldapDisplayName).

        4. In the Properties page, select Replicate this attribute to the Global Catalog, and click OK.

          Figure 1: Modifying the thumbnailPhoto attribute to replicate it to Global Catalog

          Loading pictures into Active Directory

          Now you can start uploading pictures to Active Directory using the Import-RecipientDataProperty cmdlet, as shown in this example:

          Import-RecipientDataProperty -Identity "Ward VIssers" -Picture -FileData ([Byte[]]$(Get-Content -Path "C:\pictures\wardvissers.jpg" -Encoding Byte -ReadCount 0))

          To perform a bulk operation you can use the Get-Mailbox cmdlet with your choice of filter (or use the Get-DistributionGroupMember cmdlet if you want to do this for members of a distribution group), and pipe the mailboxes to a foreach loop. You can also retrieve the user name and path to the thumbnail picture from a CSV/TXT file.

          2. Using a Free tool like Outlook Photos from Exclaimer

          Download the Tool HERE

          The tool is easy to use Smile.


          User Preferences

            Domain user – The logged in user’ account is required to be an Active Directory account.

            Domain computer – The computer the user is logged into needs to be joined to an Active
            Directory domain.

            Active Directory permissions – The logged in user must have permission to upload photos to the required Active Directory accounts. (Alternate credentials can be supplied or control of the thumbnailPhoto field can be delegated to the logged in user.)

          Operating System

          • Windows Server 2003 x86 (including all service pack levels).
          • Windows Server 2003 R2 x86 and x64 (including all service pack levels).
          • Windows Server 2008 x86 and x64 (including all service pack levels).
          • Windows Server 2008 R2 x86 and x64 (including all service pack levels).
          • Windows Small Business Server 2003 (including all service pack levels).
          • Windows Small Business Server 2008.
          • Windows Small Business Server 2011.
          • Windows XP x86 and x64 (including all service pack levels).
          • Windows Vista x86 and x64 (including all service pack levels).
          • Windows 7 x86 and x64 (including all service pack levels).

          Other Software

          Microsoft Outlook 2010 x86 and x64

          Microsoft .NET Framework 3.5 SP1

          Microsoft Exchange 2010 RTM and above

          Active Directory

          You must be logged into an Active Directory domain to run the application.

          Active Directory Forest
          Domain and Forest functional level of Windows Server 2008 and above.
          For Domain or Forest functional level of Windows Server 2003, the Windows Server 2008 Forest preparation must first be complete.


            image image