In some scenarios, it is best to enable these features only for a select group of users or sites. Instead of remote access being enabled on the global policy, a new policy must be created and then assigned to a site or user accounts.
1. Open the Lync Server Control Panel.
2. Select Federation and External User Access in the navigation pane.
3. Click Access Edge Policy.
4. Click New and then select Site Policy or User Policy depending on what should be targeted.
Note
If a site policy is defined, all users associated with Front End pools in the site will automatically inherit the policy. This is used to automatically provision remote access features to some sites while not allowing it to others.
5. Check the Enable Communications with Federated Users box.
6. If XMPP federation is enabled, check the Enable Communications with XMPP Federated Users box.
7. Check the Enable Communications with Remote Users box.
8. Check the Enable Communications with Public Users box.
9. Click Commit when complete.
Alternatively, the Lync Server Management Shell can also be used to create the new policy:
New-CSExternalAccessPolicy –identity "Allow All Features" –EnableOutsideAccess $true –EnableFederationAccess $true –EnablePublicCloudAccess $true –EnablePublicCloudAudioVideoAccess $true –EnableXMPPAccess $true
Tip
To create a policy with site scope using the Lync Server Management Shell, name the policy with a “site:” prefix followed by the site name. For instance, if a site called SF
existed, the preceding sample policy should be named Site:SF
to apply only to that site.