Lync Server 2013 中的憑證摘要-單一 DirectorCertificate summary - Single Director in Lync Server 2013

 

主題上次修改日期: 2012-09-08Topic Last Modified: 2012-09-08

單一 Director 的憑證需求包含預設憑證,該憑證具有 Director 可接收之服務的主體名稱和主體替代名稱。Certificate requirements for a single Director consist of a default certificate that has a subject name and subject alternative names for services that the Director can receive. 此外,還包含用於伺服器對伺服器驗證所需的 OAuth Token 憑證。Additionally, there is an OAuth Token certificate for server to server authentication purposes.

Director 憑證Certificates for Director

元件Component 主體名稱 (SN)Subject name (SN) 主體替代名稱 (SAN)Subject alternative names (SAN) 註解Comments

預設Default

dir01.contoso.netdir01.contoso.net

dir01.contoso.netdir01.contoso.net

dialin.contoso.comdialin.contoso.com

meet.contoso.commeet.contoso.com

lyncdiscoverinternal.contoso.comlyncdiscoverinternal.contoso.com

lyncdiscover.contoso.comlyncdiscover.contoso.com

(選用) \*.contoso.com(Optionally) \*.contoso.com

Director 憑證可以從內部管理的憑證授權單位單位 (CA) 或公用 CA 要求。Director certificates can be requested from either an internally managed certification authority (CA) or from a public CA.

Director 會從周邊或 Edge Server 的反向 proxy 回應要求。The Director responds to requests from the reverse proxy in the perimeter or from the Edge Server. 內部用戶端將不會使用 Director。Internal clients will not use the Director.

或是簡單 URL 的萬用字元項目Or, a wildcard entry for the simple URLs

OAuthTokenIssuerOAuthTokenIssuer

dir01.contoso.netdir01.contoso.net

無項目No Entry

重要

請注意,雖然最小金鑰長度是 1024,但是您可能會收到警告表示建議最小金鑰長度為 2048 位元。Note that the minimum key length is 1024, but you may receive a warning that the minimum recommended key length is 2048 bits.

OAuthTokenIssuer 憑證是單一目的憑證,用於驗證大規模環境中的伺服器,且可向內部 CA 或公用 CA 要求。此憑證為必要。The OAuthTokenIssuer certificate is a single-purpose certificate for the purpose of authenticating servers in a large-scale environment, and can be requested from an internal CA or from a public CA. The certificate is required.