Have you brought a Lync phone that does not have USB to configure it, like the Polycom CX500? Does it not let you sign in using a PIN? If so read on as I paraphrase an
article from the Lync guru Jeff Shertz.In the DHCP scope that you are going to service your Lync phones from you need to ensure that you are setting DHCP option
004 – Time Server and
042 – NTP Servers to the IP of a suitable time server for example your DC running the PDC Emulator role.To further support the time synchronistaion requirements you are best to create a DNS record of
time.yourFQDN pointing to a suiable time server. Then you will need to create a SRV record of
_ntp with a protocol of
_upd within your internal domain. The port should be defined as
123 and the host offering the service should be defined as
time.yourFQDN created earlier.The DNS Search List is not always necessary but it is best to define it just incase (its not going to cause any harm) using the DHCP Option 119 which will need to be created. Within DHCP Manager highlight
IPv4 and select
Set Predefined Options then click
Add. Enter a
Name of
DNS Search List, select a
Data Type of
String, and enter a
Code of
119. The
Description field is optional for you to configure. Once the option is defined you can add it to your scope and assign it a semi-colon seperated list that contains your internal domain and any other SIP domains you are using.Now we get into the magic of DHCP Option 43 and its various sub-options that allow Lync Phones to connect to the Lync server Certificate Provisioning Service. The various sub-options are defined below:
001
|
002
|
UCIdentifier
|
URLScheme
|
MS-UC-Client
|
https
|
003
|
UCIdentifier
|
WebServerFQDN
|
MS-UC-Client
|
YourLyncFrontEndServerFQDN
|
004
|
UCIdentifier
|
WebServerPort
|
MS-UC-Client
|
443
|
005
|
UCIdentifier
|
CertProvRelPath
|
MS-UC-Client
|
/CertProv/CertProvisioningService.svc
|
120
|
UCIdentifier
|
UCSipServer
|
MS-UC-Client
|
YourLyncFrontEndServerFQDN
|
001
|
UCIdentifier
|
MS-UC-Client
|
002
|
URLScheme
|
https
|
003
|
WebServerFQDN
|
YourLyncFrontEndServerFQDN
|
004
|
WebServerPort
|
443
|
005
|
CertProvRelPath
|
/CertProv/CertProvisioningService.svc
|
120
|
UCSipServer
|
YourLyncFrontEndServerFQDN
|
Thankfully we do not need to create all of these manually because within the Lync install directory we have a useful utility that will create them for us.%ProgramFiles%\Common Files\Microsoft Lync Server 2010\DHCPUtil.exeRunning the following on your DHCP Server will do a test run and output what will be created.DHCPUtil.exe -SipServer yourlyncfrontendserverFQDNIf what your are getting displayed is what you need run the following command to commit your changes into DHCP.DHCPUtil.exe -SipServer yourlyncfrontendserverFQDN -RunConfigScriptYou should now see option 43 and its various sub-options listed in DHCP.