在 Lync Server 2013 中配置对阻止的外部域的支持Configure support for blocked external domains in Lync Server 2013

 

上次修改的主题: 2012-09-08Topic Last Modified: 2012-09-08

如果您配置了对联盟伙伴的支持,则可通过与您的组织联盟来管理将阻止的域。If you have configured support for federated partners, you can manage which domains will be blocked from federating with your organization. 被阻止的域的列表将充当阻止名单(不允许使用的显式条目的列表)并将在联盟域发现中应用(如果您启用了此选项)。The list of blocked domains will act as a block list (listing of explicit entries that are not to be allowed) and will apply in federated domain discovery, if you have this option enabled. 有关详细信息,请参阅 在 Lync Server 2013 中启用或禁用联合合作伙伴发现For details, see Enable or disable discovery of federation partners in Lync Server 2013.

阻止一个或多个外部域连接到您的组织。要执行此操作,请将相应的域添加到阻止域列表中。Block one or more external domains from connecting to your organization. To do this, add the domain to the list of blocked domains.

将外部域添加到阻止域列表中To add an external domain to the list of blocked domains

  1. 从作为 RTCUniversalServerAdmins 组成员的用户帐户 (或具有等效的用户权限) 或分配给 CsAdministrator 角色,请登录到内部部署中的任何计算机。From a user account that is a member of the RTCUniversalServerAdmins group (or has equivalent user rights), or is assigned to the CsAdministrator role, log on to any computer in your internal deployment.

  2. 打开浏览器窗口,然后输入管理员 URL 以打开 "Lync Server 控制面板"。Open a browser window, and then enter the Admin URL to open the Lync Server Control Panel. 有关可用于启动 Lync Server 控制面板的不同方法的详细信息,请参阅 Open Lync server 2013 "管理工具"。For details about the different methods you can use to start Lync Server Control Panel, see Open Lync Server 2013 administrative tools.

  3. 在左侧导航栏中,单击“外部用户访问”****。In the left navigation bar, click External User Access.

  4. 单击“联盟域”****,再单击“新建”****,然后单击“被阻止的域”****。Click Federated Domains, click New, and then click Blocked domain.

  5. 在“新建联盟域”**** 中,执行下列操作:In New Federated Domains, do the following:

    • 在“域名(或 FQDN)”**** 中,键入要阻止的联盟伙伴域的名称。In Domain name (or FQDN), type the name of the federated partner domain that you want to block.

      备注

      该名称的长度不能超过 256 个字符。The name cannot exceed 256 characters in length.
      搜索联盟伙伴域名时执行后缀匹配。例如,如果键入 contoso.com,搜索还将返回域 it.contoso.comThe search on the federated partner domain name performs a suffix match. For example, if you type contoso.com, the search will also return the domain it.contoso.com.
      无法同时阻止和允许联盟合作伙伴域。A federated partner domain cannot simultaneously be blocked and allowed. Lync Server 2013 阻止这种情况,因此您不必同步您的列表。Lync Server 2013 prevents this from happening so that you do not have to synch up your lists.

    • (可选)在“注释”**** 中,键入要与其他系统管理员共享的有关此配置的信息。(Optional) In Comment, type information that you want to share with other system administrators about this configuration.

  6. 单击“提交”****。Click Commit.

  7. 对要阻止的每个联盟伙伴,重复步骤 4 至 6。Repeat steps 4 through 6 for each federated partner that you want to block.

若要启用联盟用户的访问,还必须在组织中启用对联盟用户访问的支持。To enable federated user access, you must also enable support for federated user access in your organization. 有关详细信息,请参阅 在 Lync Server 2013 中启用或禁用远程用户访问For details, see Enable or disable remote user access in Lync Server 2013.

此外,还必须为希望能够与联盟用户协作的用户配置和应用策略。Additionally, you must configure and apply the policy to users that you want to be able to collaborate with federated users. 有关详细信息,请参阅 在 Lync Server 2013 中配置用于控制联盟用户访问的策略For details, see Configure policies to control federated user access in Lync Server 2013.