Use sql server configuration manager to specify the

Info icon This preview shows pages 26–28. Sign up to view the full content.

View Full Document Right Arrow Icon
Use SQL Server Configuration Manager to specify the protocols, IP addresses, and ports for SQL Server remote access: Lync Server 2010 uses the TCP/IP protocol. It supports IP version 4 (IPv4), but not IP version 6 (IPv6). Note: Lync Server 2010 can function in a network with dual IP stack enabled. Lync Server 2010 supports multiple IP address (multi-homed network address cards). You can specify that SQL Server listen only to specific IP addresses (individual address or by subnet) and only use specific protocols. Lync Server 2010 supports static and dynamic SQL Server ports. Run SQL Server on a static (non-default) port, and do not run SQL Server Browser (so it cannot report the listening port to the client). This requires a custom configuration on each SQL Server client, including Front End Servers, Monitoring Server, Archiving Server, and administrative consoles (running Lync Server Management Shell, Lync Server Control Panel, or Topology Builder), and all other servers running Lync Server databases). Note: Access to databases must be limited to trusted database administrators. A malicious database administrator could insert or modify data into the databases to acquire privileges over the Lync Server 2010 servers or obtain sensitive information from the services, even if the database administrator has not been granted direct access or control of the Lync Server 2010 servers. For details about custom configurations and hardening SQL Server databases, see Using Lync Server 2010 with custom SQL Server network configuration at http://go.microsoft.com/fwlink/? LinkId=214008 Note: You can also harden operating systems and applications servers, and you can use Group Policy to implement security lockdowns in your Lync Server deployment. For details, see Hardening and Protecting Servers and Applications for Lync Server 2010 . Specifying Antivirus Scanning Exclusions To ensure that the antivirus scanner does not interfere with the operation of Microsoft Lync Server 2010, you must exclude specific processes and directories for each Lync Server 2010 server or server role on which you run an antivirus scanner. The following processes and directories should be excluded: 22
Image of page 26

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Microsoft Lync Server 2010 Security Guide Note: Folder and file locations listed below are the default locations for Lync Server 2010. For any locations for which you did not use the default, exclude the locations you specified for your organization instead of the default locations specified in this topic. Lync Server 2010 processes: ASMCUSvc.exe AVMCUSvc.exe DataMCUSvc.exe DataProxy.exe FileTransferAgent.exe IMMCUSvc.exe MasterReplicatorAgent.exe MediaRelaySvc.exe MediationServerSvc.exe MeetingMCUSvc.exe MRASSvc.exe OcsAppServerHost.exe QmsSvc.exe ReplicaReplicatorAgent.exe RTCArch.exe RtcCdr.exe RTCSrv.exe IIS processes: %systemroot%\system32\inetsrv\w3wp.exe %systemroot%\SysWOW64\inetsrv\w3wp.exe SQL Server processes: %ProgramFiles%\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLServr.exe
Image of page 27
Image of page 28
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern