Topic Last Modified: 2012-10-22

The SIP/CSTA gateway must be configured as a trusted application in order for Lync Server to apply a static route to route calls to the gateway.

Important:
If you are migrating users from a previous version of Lync Server deployment, be sure that you removed all existing trusted application entries (previously known as authorized host entries) you created for the SIP/CSTA gateway before following the procedures in this topic. For details, see Remove a Legacy Authorized Host (Optional).

To configure a trusted application entry for the SIP/CSTA gateway

  1. Log on to the computer where Lync Server Management Shell is installed as a member of the RTCUniversalServerAdmins group or a role-based access control (RBAC) role to which you have assigned the New-CsTrustedApplicationPool cmdlet.

  2. Start the Lync Server Management Shell: Click Start, click All Programs, click Microsoft Lync Server 2013, and then click Lync Server Management Shell.

  3. To create a trusted application entry, do one of the following:

    • For a Transport Layer Security (TLS) connection, type the following at the command prompt:

      Copy Code
      New-CsTrustedApplicationPool -Identity <FQDN of the SIP/CSTA gateway> [-Registrar <Service ID or FQDN of the Registrar service>] -Site <Site ID for the site where you want to create the trusted application pool>
      

      For example:

      Copy Code
      New-CsTrustedApplicationPool -Identity rccgateway.contoso.net -Registrar registrar1.contoso.net -Site co1 -TreatAsAuthenticated $true -ThrottleAsServer $true
      
    • For a Transmission Control Protocol (TCP) connection, type the following at the command prompt:

      Copy Code
      New-CsTrustedApplicationPool -Identity <IP address or FQDN of the SIP/CSTA gateway> [-Registrar <Service ID or FQDN of the Registrar service>] -Site <Site ID for the site where you want to create the trusted application pool>
      

      For example:

      Copy Code
      New-CsTrustedApplicationPool -Identity 192.168.0.240 -Registrar registrar1.contoso.net -Site co1 -TreatAsAuthenticated $true -ThrottleAsServer $true
      
  4. To add the trusted application to the pool, do one of the following:

    • For a TLS connection, type the following at the command prompt:

      Copy Code
      New-CsTrustedApplication -ApplicationID <application name> -TrustedApplicationPoolFqdn <FQDN of the SIP/CSTA gateway> -Port <SIP listening port on the gateway>
      

      For example:

      Copy Code
      New-CsTrustedApplication -ApplicationID RccGateway-1 -TrustedApplicationPoolFqdn rccgateway.contoso.net -Port 5065
      
    • For a TCP connection, type the following at the command prompt:

      Copy Code
      New-CsTrustedApplication -ApplicationID <application name> -TrustedApplicationPoolFqdn <IP address or FQDN of the SIP/CSTA gateway> -Port <SIP listening port on the gateway> -EnableTcp
      

      For example:

      Copy Code
      New-CsTrustedApplication -ApplicationID RccGateway-1 -TrustedApplicationPoolFqdn 192.169.0.240 -Port 5065 -EnableTcp
      
  5. To implement the published changes you have made to the topology, type the following at the command prompt:

    Copy Code
    Enable-CsTopology
    

See Also