One of the main feedback we got is to add the EDGE Servers information to the script as well so users can get a full picture of the assigned certificates in their environment.
We’ve did some research and tests a couple of alternatives and we finally were able to pull the EDGE certificates information using PSRemoting.
In order to retrieve the Certificates information from the EDGE servers we need to use PSRemoting and Windows Remote Management for access.
This requires two major modifications:
1) On the Front End servers – Enabling TrustedHosts configurations:
Set-Item WSMan:localhostClientTrustedHosts -Value “*” -Force
2) On the EDGE servers – Enabling HTTP Compatibility Listener for Remote access:
Set-Item WSMan:localhostServiceEnableCompatibilityHttpListener -Value True
Once enabled, you need to make sure port 80 is enabled from the computer where the script run to the EDGE internal IP.
Another options is to open the default PSRemoting Port as well (5895) and make sure to change the Parameter in the script ($PSRemoteConnectionPort).
To view existing listeners, you can use the following command:
winrm enumerate winrm/config/listener
1) Retrieving all Lync Front End Pools Certificates information
2) Retrieving all Lync Front End Pool Certificates information in addition to the EDGE Servers and OWAS Servers
.LyncCertReport-v0.47.ps1 -EdgeCertificates -OWASCertificates
3) Retrieving all Lync Front End Pool Certificates information in addition to the EDGE Servers
4) Retrieving all Lync Front End Pool Certificates information in addition to the OWAS Servers
5) Retrieving a spesific Front End Pool Certificates information