Guide of Installing Director in Lync Server 2010 Standard Edition

Hi, I am back writing up about the installation of Director in Lync 2010. The presence of Director in either Enterprise or Standard edition make no differerence.

In my understanding, Director is much useful if you have more than 1 Pool especially administrator configure in enterprise edition. Director will try to point which pool that users sitted. In Standard Edition, with presence of Director is optional. In your design planning of Lync Topology, with the presence of Edge server, Director will be used as a middle men authentication before it forward you to the front-end pool. Meaning to say, it is located between your edge server and front-end lync Server.

Now, I will try to guide some installation and configuration for the Director. I suggest you to have a new server separately. Make sure you joined domain the director server.


Configure Director in your Front-End lync Server (Lync.netoverme.info)

1. Create a New Director Pool. Type your director FQDN and choose single computer pool. click Next

2. Define File Share. I use previous define file share store like below. Then Click Next. On Specify Web External Service, just click Next.

3. After Finish, you need to publish the Topology by clicking Publish Topology.

On Your Director (in My example Director.Netoverme.info)

1. You will need .NetF Framework 3.5. SP1 to install Lync Server 2010

2. Install Windows Features of Messaging Queue. Open up Windows Power Shell

type -> Import-Module ServerManager then, copy and paste this command below:

Add-WindowsFeature  MSMQ-Server,  MSMQ-Directory

3. Also, Install Windows Features of IIS. Type Import-Module ServerManager and Press Enter. Then copy and paste this command below:

Add-WindowsFeature Web-Server, Web-Scripting-Tools, Web-Windows-Auth, Web-Asp-Net, Web-Log-Libraries, Web-Http-Tracing, Web-Stat-Compression,Web-Default-Doc, Web-ISAPI-Ext, Web-ISAPI-Filter, Web-Http-Errors, Web-Http-Logging, Web-Net-Ext, Web-Client-Auth, Web-Filtering,Web-Mgmt-Console

4.  Run the Setup.exe from your Media CD. Let’s begin installation.

5. Install the Topology Builder.

6. Install the Front-End Lync 2010 where you need to run all the following below:

  •  Install Local Configuration Store
  •  Install Lync Component
  •  Install Certificate
  •  run the Services

* Please Note that the installation of director is straight forward.

Verify your Lync replication.

  1. Launch Lync Windows PowerShell
  2. type the command Get-CSManagementStoreReplicationStatus
if you see your director at UptoDate is False, try to restart the director server and run the command above.
If still persists, run Invoke-CSManagementStoreReplication

Unable to Modify Policy of Domain Admin Users in Lync Server 2010

Last few days and nights, I am working hard on the Lync Server with Edge and Director because Lync Server is new toy to me and manage to work it all.. I will share this to you all.

I have funny thing done last few hours. I was creating a new policy for External Access policy and applied to users in my lab environment. Then, some users are already applied to the External Access Policy but some are not. I noticed that the failure users are member of domain admin. Here is the image or screenshot of failure below:

Active Directory Operation failed on “dc.yourdomain.com” You cannot retry this operation: “Insufficient access rights to perform the operation 0002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF,ACCESS_RIGHT), data 0.”

You do not have the appropriate permissions to perform this operation in Active Directory. One Possible cause is that the Lyn Server Control Panel and Remote Windows PowerShell cannot modify users who belong to protected security groups (for example,

the Domain Admins groups). To manage users in the Domain Admin group, user the Lync Server Management Shell and log on using Domain Admins account. There are other possible causes. For details, see Lync Server 2010 Help.

Solution to this matter is to enable the “include inheritable permissions from this object’s parent”

Step 1:Open Active Directory for Users and Computers. Click On View Menu and select Advanced Features.

Step 2:          Click a User which are member of domain admin. for example, Administrator. Right-click and click Properties.

Step 3:          Go to Security Tab and click on Advanced button below:

Step 4:         On Permission Tab, on lower below, click on “Include Inheritable Permission to include from this object’s parent

Basic Deployment of Lync Server 2010 Enterprise Edition

Hi… I just want to share my article on how I do the deployment of Lync Server 2010 Enterprise Edition.

Just click on the URL link below:

Lync 2010 Enterprise Basic Deployment Guide

Chapter 1: Installation of Active Directory Domain Service and Certificate Service

Chapter 2: SQL Server 200 R2 Installation

Chapter 3: Installation of Lync Server 2010

Enjoy your Lync… Cheers