Back to Integrating With Office 365

Not supported by SBC SWe Lite in this release.

This section describes how to configure your SBC Edge for use with an external CCE server. Cloud Connector Edition is a hybrid offering that consists of a set of packaged Virtual Machines (VMs) that implement on-premises PSTN connectivity with Cloud PBX. 

 

Prerequisites

Setup CCE

During the configuration of your CCE, you will need to enter SBC Edge-related data into the CCE configuration file (CloudConnector.ini).

Take note of the values you assigned to:

  • The corporate DNS
  • The internal Virtual Machine domain
  • The Mediation pool FQDN

 

;DNS IP address in Corpnet 
;It must be configured for Convert-CcIsoToVhdx to convert windows ISO file to VHDX file
;Corpnet DNS will allow BaseVM to connect to internet and install window update packs
CorpnetDNSIPAddress=10.56.2.27
 
;Domain DNS suffix for the Skype for Business Cloud Connector Edition itself.
;Virtual machines CMS, Mediation server join this domain.
;Can be local (e.g. does not need to be in public DNS)
;MUST be different with domain(s) registered on O365
VirtualMachineDomain=sfbhybridtest.local
 
;Pool name which will be used to generate pool fqdn. It can NOT contain .<DomainName>
PoolName=mspool

 

When configuring the CCE, configure the gateway as follows (Ribbon recommends using TCP while working on a solution to sign the SBC certificate with the internal Certificate Authority hosted into the Active Directory VM in order to support TLS usage):
  • If you plan to use only one SBC Edge with this CCE:
[Gateway1]
FQDN=sbc1.sfbhybridtest.local
IP=192.168.210.113
Port=5060
Protocol=TCP
VoiceRoutes=LocalRoute

 

  • If you plan to use two SBC Edge units with this CCE for redundancy:

 

[Gateway1]
FQDN=sbc1.sfbhybridtest.local
IP=192.168.210.113
Port=5060
Protocol=TCP
VoiceRoutes=LocalRoute
[Gateway2]
FQDN=sbc2.sfbhybridtest.local
IP=192.168.210.114
Port=5060
Protocol=TCP
VoiceRoutes=LocalRoute

 

Proceed With the SBC initial setup

See Running Initial Setup.

SBC Edge Configuration

General Settings

The SBC Edge must use the corporate Domain Name Server (DNS) as its Primary DNS Server. Assign the DNS in Settings / System / Node-Level Settings.

Assign the Primary DNS

Add a Host Entry for the Mediation Pool

Create a host entry to resolve the Mediation Pool FQDN. Create the new entry in Settings > Protocols > DNS > Hosts.

 

Create the Host Entry
 

Configuring the SBC Edge Using the Easy Config Wizard.

  1. Access Tasks > SBC Easy setup > Easy Config Wizard.
  2. Select your application: xxx <-> Skype for Business/Lync.

  3. Select Skype for Business as UC version.

  4. Use the Mediation Pool FQDN as Server Pool Host, select TCP and port 5060.

  5. Complete the wizard.

Validating Your Configuration

To ensure that your configuration is working properly:

  1. Access Settings > Signaling Groups and select the UC Mediation signaling group.

  2. Select Counters. The Option in and out, as well as 2xx answer should be listed.

Known Issue

SBC Edge Services Not Starting


LS Audio/Video Authentication Server: 19008

 

Private key for server certificate not found by the LS Audio/Video Authentication service or the service does not have sufficient permissions to access the certificate. 
Certificate Serial Number: '29572BEF993D13EF7B2BDE10A887540E' Issuer:'CN=COMODO RSA Organization Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB'
Resolution: Install a certificate with the private key in the local machine store, check if the configuration parameters have the correct server certificate serial number. Check if the service has sufficient permissions to access the certificate.

 

LS Audio/Video Authentication Server: 19005

 

LS Audio/Video Authentication service could not be started.
Exception: Microsoft.Rtc.MRAS.MRASException: PrivateKey not accessible
   at Microsoft.Rtc.MRAS.Crypto.GetValidCertificate(String issuerName, String serialNumber, Boolean isBankCert)
   at Microsoft.Rtc.MRAS.Crypto..ctor(Byte[] bankCertSN, String bankCertIssuer)
   at Microsoft.Rtc.MRAS.CredentialsGenerator.InitializeCrypto()
   at Microsoft.Rtc.MRAS.CredentialsGenerator..ctor(Configuration config)
   at Microsoft.Rtc.MRAS.Core.Initialize()
   at Microsoft.Rtc.MRAS.Core..ctor(ServiceStopHandler serviceStop, RoleName roleName)
   at Microsoft.Rtc.MRAS.Server.OnStart(RoleName roleName)
Cause: Internal error.
Resolution:
Examine the details in the associated event log entry to determine the potential cause and report to Product Support Services.

Resolution

 

set-cscertificate -Type AudioVideoAuthentication  -Thumbprint ABCBCA58465465421684654321DEFDDFE