Shulou(Shulou.com)06/02 Report--

Name: OCS, Lync 2010, Lync 2013, Skype for Business Server 2015, Microsoft Teams

Certification: https://www.microsoft.com/zh-cn/learning/mcse-productivity-certification.aspx

Product characteristics:

Easy to install

Instant messaging-Security, Compliance, Monitoring

Enterprise voice: network instant messaging data and voice call

Audio and video data: network

QoS, coding, Network Foundation, Firewall

Integration of AD,DNS and CA

Sql Server services: basic configuration, use, backup and optimization

Exchange integration

Voice integration: PSTN gateway, IP-PBX device

SFB design

SFB server

Basic functions:

High availability

Test environment

Standard Edition (installation Type) SFB Server (ALL in One)

Production environment

Front-end server (FE) and back-end server (Sql Server) (EE)

External access:

Client external connection

× ×: use × × to dial in, and then connect to the SFB server

SFB solution

Edge Server (Edge): must be deployed

For external client data communication

Alliance, integration

Alliance: SFB alliance between organizations and organizations

Integration: SFB online integration with Office 365

Reverse proxy: this reverse proxy service must be used when external clients log in.

Mobile device login must use reverse proxy

Enterprise Voice:

Integration of SFB and voice equipment

SFB solution

Mediation Server (Medication Server) (role)

Juxtaposed with the front-end server (FE) & the standard version server

Separate deployment

Based on the number of calls made to the outside of the organization

Signaling: in the dialing process, the client is required to find the called client (number) through the server.

Media: when two clients dial, the default SFB implements point-to-point direct communication

Media bypass: enable communication between clients, bypass the SFB server, and improve the quality of communication between clients

SIP protocol: a common solution for VoIP. Microsoft's SFB server uses the following SIP protocols and standards and draft RFC3261 based on SFB planning tools. Planning for https://www.microsoft.com/en-us/download/details.aspx?id=50357 SFB installation, deployment, management, and monitoring tool installation: topology Builder must create an installation topology before installing SFB, which is saved in a shared folder (part of central storage), which needs to be defined, the role of the SFB server ready to install, the computer name IP address and other information, and then publish (save to central storage) deployment wizard in the server where you are going to install the SFB role, use this wizard to automatically find the central storage, import the topology, and match the current computer and the computer of the corresponding role in the topology Automatically install services and application management that match the computer role: SFB control panel: graphical interface management SFB command line management tools: Powershell management monitoring tools centralized log viewing tools: SFB client connection failures and other troubleshooting monitoring roles

SFB server startup sequence: network devices, domain controllers, back-end Sql Server,SFB front-end servers

New installation: AD,DNS,CA server is prepared in advance

Confirm: standard version installation: one

Enterprise version installation: at least two (no high availability)

At least six (3 front ends, 3 back ends)

Define Topology

Central storage planning: shared folder

Install Topology Builder: install tools in the SFB server

Design Topology-publish Topology

Install the SFB server in the server-deployment wizard

Https://docs.microsoft.com/zh-cn/skypeforbusiness/deploy/install/install

Additional:

AD port

AD permission

Https://technet.microsoft.com/zh-cn/library/jj204623(v=ocs.15).aspx

Security protection software

Https://docs.microsoft.com/zh-cn/skypeforbusiness/plan-your-deployment/security/antivirus

The relationship between SFB and AD

AD database

SFB user-AD user

SFB and SIP related properties-AD schema partition-AD schema extension

RBAC- Management Group of SFB-AD Group

The relationship between SFB and DNS

Client login, communication between SFB servers

You must plan the SIP domain of the SFB-related DNS

Planning DNS records related to SFB

Records related to internal and external networks

Private network: since all SFB servers are in the AD environment, the DNS name of the SFB server is automatically generated in the DNS integrated with AD by default

Need to add manually

A:

Pool records: based on SFB server highly available DNS records

DNS High availability: Pool name record-this record creates multiple entries, each pointing to the IP address of the same service for the associated SFB

HLB High availability: Pool name record-this record points to HLB's VIP for the same SFB service

Service records: records required for different SFB services

Pool record: log in to the SFB control panel.

A&CANME:meet: create and client login meetings

A&CANME:Dial-in: dial-in conferenc

A&CNAME:SIP: client configuration

SRV:_sipinternaltls: automatic login of client

_ TCP

5061

IP Lync discoverables-the IP address that points to the reverse proxy's DMZ network

Public network DNS record

Reverse proxy: client login

Dialin- dial-in conference-points to the public network IP of the reverse proxy

Meet- external client connects conference and LWA conference data transmission

SFB client login for Lyncdiscovery- mobile devices

Edge servers: data transfer

IM Communication of Access-SFB client

WebCom-SFB meeting Information

AV-SFB audio and video data

The relationship between SFB and Certificate Server

Certification Authority:

Public-wildcard certificates can be supported * .adatum.com

Single domain name-recommended

The internal CA- collects all the DNS information required by the SFB service to add to the certificate

Use

Server communication: SFB server communication, Exchange communication, Office Online Server communication, SharePoint communication

Server and client: when the client accesses the server, the SFB front-end server pushes the server certificate to the client. After verification by the client, the communication is encrypted using the key in the SFB server certificate.

The client must import the root certificate of the CA certificate server

Maintenance: server certificates are updated periodically

When SFB server information changes: regenerate the certificate

The relationship between SFB and Sql Server

User status information of SFB. The default communication record depends on SQL Server.

In a SFB environment, if you use Enterprise Edition deployment (front-end and back-end), the back-end server role is Sql Server,Sql and cannot be downtime

In the SFB front-end server, the Sql Server Express version is installed by default, and the user information is synchronized with the back-end Sql through the Sql replication service.

SFB front-end server-SFB local Sql-SFB back-end SQL service

Integration of SFB and Exchange

Client automatic integration

The client computer will be automatically integrated after opening the SFB client and then Outlook.

Server application integration

UCS Unified contacts: high-definition avatars, contact synchronization, etc.

It needs to be configured on the basis of having an OAUTH certificate in both the Exchange server and the SFB server

Configuration and SFB integration in Exchange's management program

Using SFB's command line management tool Test-CsExStorageConnectivity-SipUri "sip:amr@ adatum.com" Exchange mailbox archiving SFB information in the SFB server configure archiving policy and configure UM voice integration voice gateway using SFB as Exchange's UM role service in the control panel of the SFB server Implement Exchange voicemail in Exchange's command line tool to create a dial plan New-UMDialPlan-Name "RedmondDialPlan"-VoIPSecurity "Secured" NumberOfDigitsInExtension 3-URIType "SipName"-CountryOrRegionCode 1 set dial plan configuration voicemail policy configuration user mailbox enable UM service

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.