Microsoft Teams and Skype for Business News and Thoughts

Tom Arbuthnot MVP
Tom Arbuthnot MCSM Communications

This site uses cookies

Find this blog useful? Please take a second to share, thanks!

Deploying a Sonus #Lync 2013 Survivable Branch Appliance (SBA) Walkthrough

Published 08/07/2013 - 6 Comments

I previously wrote a walkthrough on deploying a Lync 2010 SBA. I thought I’d write an updated post for a Lync 2013 SBA. Not a lot has changed in the process or in how the SBA worked. Since writing the last walkthrough net has been acquired by Sonus. I am using the same gateway, a Sonus SBC 1000 (previously called net UX 1000)

There are essentially 3 major steps to deploying an SBA

    • Lync Topology Configuration
    • “Gateway” Setup
    • “SBA” Setup

The SBA is basically a gateway and a server in a single box. You configure the gateway part like you would configure any other Sonus gateway. You then configure the Survivable Branch Appliance (the server part).

Any 2010 SBA can be upgraded to a 2013 SBA by uploading a new 2013 Image to the SBA blade. This is done via copying the image to a USB and inserting it to the gateway.

1) Lync Topology Configuration

I have a mixed 2010/2013 lab environment. We will be adding an SBA to a 2013 Standard Edition Pool. I won’t comment each step, they are pretty self explanatory.

clip_image001

clip_image002

clip_image003

clip_image004

Choose your 2013 pool

clip_image005

Edge if you are going to have one

clip_image006

clip_image007

clip_image008

Publish topology

clip_image009

clip_image010

 

2) Sonus UX 1000 Gateway Setup for Lync

This is just a high level overview of the gateway setup:

Import the root certificate for the environment

image

Generate a Cert request for the gateway

image

Copy thhe base 64 cert request text to an Enterprise CA and generate a certificate

image

Upload the generated cert to the gateway (via uploading .cer or pasting base64 string)

image

 

Run the Lync setup wizard. This set s the gateway up based on the scenario you define.

image

image

The “gateway setup” part is now complete.

 

3) Sonus UX 1000 Survivable Branch Appliance Setup

The SBA is essentially a little blade server in the box. It can be setup with a 2010 SBA image, 2013 SBA image, or even a standard Server 2008 R2 image if you want (for example to run a branch DC where an SBA isn’t needed.

SBA Image setup

A new Sonus SBC 1000/2000 SBA will ship with all three images, which are held on a backup partition, so you can choose the appropriate one. If you have a 2010 SBA you can add the 2013 Image. Talk to your support partner about getting the 2013 image.

image

In this scenario we are going to use the 2013 SBA Image, so we choose that, apply.

image

It can take up to 40 minutes (usually around 30 in my experience)

image

Once complete, you can see from the ASM/Operational status menu the image is Lync Server 2013 SBA and that the operational status is presently unknown (because it isn’t configured)

image

SBA Configuration

We go to the setup SBA menu and configure an IP on the SBA

image

Then we join it to the domain

image

Domain join causes the SBA to reboot (note it can reboot independently of the gateway)

image

image

Next we deploy the SBA in three steps; Prepare, Start Replication and Activate

image

Prepare

clip_image001[6]

This might take a while

clip_image002[6]

clip_image003[6]

clip_image004[6]

Now we must provide a certificate for the Lync services on the SBA. Note, you can auto submit but you must know the CA name.

clip_image005[6]

I usually go old school and generate, download, sign on the enterprise CA then upload to the SBA

clip_image007[6]

Save to notepad

clip_image009[6]

clip_image010[6]

Advanced

clip_image011

Submit Base64, paste in the cert request

clip_image012

clip_image013

Download Certificate, note must download in base64 format (not DER as I screenshot)

Back to side menu on the gateway, under Lync SBA/Import SBA Certificate

clip_image014

Open the cert you generated in notepad and paste it in

clip_image015

Note, you will usually be using an Enterprise CA, so AD join will cause the root to download on the SBA. However if you are not you may need the chain or to import the trusted root manually via logging onto remote desktop

clip_image016

clip_image017

Once complete return to the setup workflow and you will see the CSR/Cert step complete

clip_image018

Next Start the SBA services:

clip_image019

 

clip_image021

Finally apply the security template that hardens the windows server install

clip_image022

clip_image023

Back to operational status, we can se the SBA up and running

clip_image024

If we want to logon to remote desktop to the SBA for any reason we can. We can also set the local administrator password:

clip_image025

Remote  desktop on the SBA. Note on the 2013 SBA we have the centralised logging service

clip_image026

We can see the SBA replicating in topology:

clip_image027

Now we can move a user to the SBA

clip_image028

We can validate they are on the SBA by press ctrl and right click on the Lync tray icon to get the config menu

Note Connected Lync Server is lab3-sba1.lab3.com

clip_image030

 

That’s it. All pretty easy via the nice web GUI

Tom Arbuthnot

Tom Arbuthnot

Principal Solutions Architect at Modality Systems
Tom Arbuthnot is Principal Solutions Architect at Unified Communications specialist Modality Systems. He is a Microsoft Certified Master and MVP, blogger, has a regular podcast with UCToday at tomtalks.show and is a regular speaker at events including Microsoft TechEd and Ignite. He co-runs The Microsoft UC User Group London.

6 comments

Tommy Clarke - 11/07/2013 Reply

Great post Tom, this one will come handy pretty soon :D

Some good blog posts on #Lync from the last weeks that #SummerReading | Ultimate Communications - 12/07/2013 Reply

[…] Deploying a Sonus #Lync 2013 Survivable Branch Appliance (SBA) Walkthrough […]

Varun Mishra - 07/10/2013 Reply

Dear Tom,

Very good article. Quite through. I landed upto this page during my search for estimation of effort for SBA deployment. Actually I am seeking information about end to end approx. time to prepare a branch site for Enterprise Voice. For ex. think about a typical branch office with 40-50 users who need Lync 2013 Enterprise voice, ports, deskphones etc are ready, procurement & purchase of SBA is also done. Branch has no network issues & local DC is available with windows 2008 or later. How much time will it take to build, deploy, test & ready to go. I assume 12 hours approx. Need your comments

Useful Lync resources – Henry Yang's Blog - 15/04/2016 Reply

[…] Deploying a Sonus #Lync 2013 Survivable Branch Appliance (SBA) Walkthrough […]

Leave a Reply:


close

Weekly Email Update 
of all the key 
Microsoft Teams and Skype for Business News
every Tuesday

No Spam ever, I promise - Tom