Home > Exchange, Lync > Integrating Lync 2010 with Exchange 2010 SP1 OWA

Integrating Lync 2010 with Exchange 2010 SP1 OWA

One of the most exciting features of Exchange 2010 OWA is the integration with Office Communications Server 2007 R2 and now Microsoft Lync Server 2010. There are plenty of articles out there showing the integration with OCS 2007 R2 and Exchange 2010, but I wanted to focus on this integration with Lync Server 2010 and Exchange 2010 SP1.

Many of the steps are the same including the installation of the OCS 2007 R2 Web Service Provider Files available for download here:

On the Exchange 2010 CAS Server

The only install you need to run (from an elevated command prompt) is the CWAOWASSP.msi file which does the following:

  • Creates the registry key HKLM\System\CurrentControlSet\services\MSExchange Owa\InstantMessaging\ImplementationDllPath={Exchange Install Directory}\ClientAccess\OWA\bin\Microsoft.Rtc.UCWeb.dll
  • Places the file Microsoft.Rtc.UCWeb.dll in the above referenced ImplementationDllPath

You will also need to verify that the UCMA update from KB968802 is applied to your server or you will have trouble with two way IM communications from OWA.

We now will enable Instant Messaging on the OWA Virtual Directory and set the Instant Messaging Type to Ocs via the following command:

Get-OwaVirtualDirectory -server SERVERNAME Set-OwaVirtualDirectory –InstantMessagingType Ocs


Now run Get-ExchangeCertificate. You are looking for the Thumbprint of the certificate used for IIS, shown below where the services enabled include the “W”. You should copy this thumbprint to the clipboard.

Now for the difference between Exchange 2010 RTM and SP1:

We will no longer make changes to the web.config file for Exchange 2010 SP1, the changes are made to the OWA Virtual Directory on the CAS Servers, those steps are shown below:

Get-OwaVirtualDirectory | Set-OwaVirtualDirectory –InstantMessagingCertificateThumbprint {Thumbprint from previous step}

Get-OwaVirtualDirectory | Set-OwaVirtualDirectory –InstantMEssagingServerName {FQDN of Standard Edition Server or Pool FQDN}

Now you should do an iisreset /noforce from an elevated command prompt on the Exchange 2010 CAS server(s)

On the Lync 2010 Front End Server

The configuration changes on the Lync Server are just as easy as they were with OCS 2007 R2, however the changes are not available from the Control Panel. On one of your Lync Front End server navigate to the Lync Server Management Shell. You should note the Subject or Common Name of the Exchange certificate used for IIS on the Client Access Servers. In our instance, that is mail.unplugthepbx.com, that will be the Identity of the Trusted Application.

We now need to find the SiteId of your Lync Site, to do so, run the following command: Get-CsSite

As shown above our Site ID is 1.

Now we need to create a new Trusted Application Pool for Lync Server by running the following command:

New-CsTrustedApplicationPool -Identity cas-server-FQDN -Registrar yourpool-FQDN -Site your-site -ThrottleAsServer $true -TreatAsAuthenticated $true

For us that will be: New-CsTrustedApplicationPool -Identity mail.unplugthepbx.com -Registrar upxlync.unplugthepbx.com -Site 1 -ThrottleAsServer $true -TreatAsAuthenticated $true


After the Trusted Application Pool has been created, we must now create the trusted application for OWA by running the following command:

New-CsTrustedApplication -ApplicationId OWA -TrustedApplicationPoolFqdn cas-server-FQDN -Port 5061

For us that would be: New-CsTrustedApplication -ApplicationId OWA -TrustedApplicationPoolFqdn mail.unplugthepbx.com -Port 5061

Now the changes must be committed to the topology by running: Enable-CsTopology


Now you should be able to see your contact list when signing into Outlook Web Access!


Categories: Exchange, Lync
  1. Peter Wood
    April 9, 2011 at 7:05 pm

    I tried this but it didn’t seem to work for me. For those in a similar situation, where would one troubleshoot these issues?

  2. April 9, 2011 at 7:22 pm

    @Peter exactly what is not working? Do you see errors in the event log on either the CAS or FE server? Make sure you are browsing to the FQDN that you specified in the TrustedApplicationPoolFQDN

  3. Peter Wood
    April 9, 2011 at 7:26 pm


    At the moment I don’t see any errors at all. WHen I open OWA I don’t see a contact list. I’m gonna goahead and reboot exch fwiw

    • October 8, 2011 at 10:22 am

      If I comnuimcated I could thank you enough for this, I’d be lying.

  4. Peter Wood
    April 9, 2011 at 7:57 pm

    rebooting exchange didn’t seem to help.

  5. August 2, 2011 at 3:35 am

    Hi, I have done the everything specified in this blog, and others but simply contacts are not showing up in OWA SP1, and I’m suspecting that the issue is that hotfixes or patches, which I tried to install on my Exchange 2010 SP1 CAS/HUB/MBX are not enough, I can only install the below files:


    Are these two enough to be installed on Exchange 2010 SP1 server, or do I need anything extra?


  6. December 10, 2011 at 9:13 pm

    You actually make it appear really easy with your presentation but I in finding this matter to be really one thing that I believe I’d by no means understand. It seems too complicated and extremely large for me. I am looking ahead for your next submit, I’ll try to get the cling of it!

  7. March 9, 2012 at 6:35 am

    Hi Mark – nice writeup.

    1. Do you have any idea is things have changed with Exchange 2010 SP2 OWA and Lync Integration?

    2. I’m having problems with getting things to run. Cannot sign in to that via OWA nor get the list of contacts in the left column. You state that one should use the FQDN that’s listed in the Subject or Common Name of the Exchange certificate used for IIS on the Client Access Servers.. Does this mean no-go for using the internal FQDN of the server that’s listed in the Subject Alternative Names field of the certificate?

    3. Another question: The port being chosen with the New-CsTrustedApplicationPool, shouldn’t it set up a listener with that portnumber, cannot find this with netstat -an | findstr xxxx? Is this being set on the Lync FE servers or the Exchange CAS servers? That latter i would presume?

    -Jonas, Denmark

  8. frenjon
    March 31, 2012 at 4:30 am

    Hi Mark – did you see my questions above..?

  9. April 13, 2012 at 10:14 am

    Jonas –
    Sorry for the long delay. Hope I can either answer your questions or get some more information.

    1. No changes related to IM integration between Lync and Exchange 2010 that is specific to SP2

    2. Did you have any issues with the steps above, I assume you have installed the necessary files, enabled Instant Messaging in the OWA policy and the URL that you are trying to access is the name on the cert: ie: mail.unplugthepbx.com correct?

    3. Your Lync server should already be listening on 5061, in addition to creating your CsTrustedApplicationPool you also created the CsTrustedApplication right?


  10. May 9, 2012 at 8:55 am

    Hi Mark – thank you for the answers.. I’m having a hard time confirming weather or not this statement is correct:

    Your article doesn’t touch on this matter, neither does you fellow MVP Jeff Schertz in his article here: http://blog.schertz.name/2010/11/lync-and-exchange-im-integration/

    These lines are from the otherwise excellent Mastering Lync Server 2010:

    “You should be operational if your CA server also has the UM role and the UM server is
    confi gured to integrate via a SIP URI dial plan with Lync. If UM is not installed on the CAs
    server or is not set up as previously discussed, then you must create a Trusted application as indicated in the “If Your CAS Is Not Also Your Lync UM Server” sidebar.”

    On page 573

    In other words – if the CAS and UM server are collocated – The New-CsTrustedApplication should not be necessary – can you confirm or deny this?

    I’m having trouble setting this up, but will not try adding the CsTrustedApplication part to a non-functioning setup..

    -Jonas, Denmark

  11. May 9, 2012 at 9:16 am

    Hi again Mark.. Just to follow up on the comment I just put up.. I added the CsTrustedApplication into the non-working setup and now IM integration works! (the OWA can sign in)

    I’ll try and get a hold of the authors of the Mastering Lync Server 2010 and get their comments on this..


    • May 9, 2012 at 3:55 pm

      Glad to hear it is working!!!

  12. March 20, 2014 at 8:06 pm

    Great facts. Cheers!

  1. April 3, 2011 at 6:06 am
  2. April 14, 2012 at 10:06 am

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: