May 05 2017 02:51 AM
If a users Skype client falls back to HTTP to SIP connect is the connection encrypted?
I GPO you can stop the client from falling back to HTTP to make SIP connections, but I have a client whos users are unable to connect if this GPO option is enabled.. They want confirmation that if they disable this tha the users do fall back to HTTP is the connection secure?
Whilst investigating the problem, we found that there is a GPO which sets “Disable HTTP fallback for SIP connection” parameter for Lync / Skype to “Enabled”.
Based on the MS explanation, looks like clients can’t connect via TLS /TCP, and are unable to fallback to http as it is blocked by policy. Could you please advise why clients are unable to connect via secure channels?
May 05 2017 05:54 AM
Have you verified all things with the SSL certificate and DNS are configured correctly. That's likely the reason. If you can't determine why, please open a case and support should be able to help you find the problem.
May 05 2017 06:54 AM
May 05 2017 08:15 AM
Have you traced it and verified it's using HTTPS during that, and edge based sign in is always SIP TLS based on the 443 port for edge sign in.
May 10 2017 04:01 AM
Thanks Again Aaroin, whilst we are confident that the connection is secure and encrypted, we are just waiting on MS confirmation on the generic wording on the GPO setting :)
May 10 2017 04:52 AM