Skype for Business Online Service SSL certificate changes for client connectivity

Note: This article applies only to Office 365 operated by 21Vianet in China.

To connect securely to your Skype for Business Online Service when you’re using an on-premises configuration (with OCS 2007 R2, Lync Server 2010, and Skype for Business Server 2015), install the WoSign root/intermediary certificates on your Skype for Business Edge servers. Otherwise, client computers cannot perform secure connections. The following certificates should be installed:

  • WoSign Root – This goes into the ‘Trusted root store’ on your Skype for Business edge server.

  • WoSign SSL – This goes into the ‘Intermediate Certificate store’ on your Skype for Business edge server.

Use the following steps to confirm that the root/intermediary certificates are properly installed on the client computer to ensure a secure connection to the Skype for Business Online Service:

  1. In Windows, use the Run command and type mmc.exe to open the Microsoft Management Console.

  2. Click File, Add/Remove Snap-in... from the Microsoft Management Console menu.

  3. Select Certificates.

  4. Click Add.

  5. In the list under This snap-in will always manage certificates for, select Computer account, and then click Next.

  6. Click Finish, and then OK.

  7. Check the ROOT certificate:

    1. Under Certificates (Local Computer) in the left pane, click Trusted Root Certification Authorities, and then click Certificates.

    2. Locate the WoSign Root certificate in the details pane of the Certificates Snap-in that is hosted in the Microsoft Management Console.

    If the WoSign ROOT certificate is not listed in the Trusted Root Certification Authorities, you'll need to install the certificate by following these steps:

    1. Download the WoSign ROOT certificate here: WoSign Root & Standard SSL Intermediate Root.

    2. Save the ROOT certificate file to a folder on the local Windows server or client computer.

    3. Open Windows Explorer and browse to the folder that lists the WoSign ROOT certificate file.

    4. Right click the WoSign Root certificate file and click Install Certificate.

    5. Click Open, select Local Machine or Computer account, depending on the operating system, and then click Next.

    6. Select Place all certificates in the following store.

    7. Click Browse and select Trusted Root Certification Authorities, then click OK.

    8. Click Next and then Finish to complete the Certificate Import Wizard.

  8. Check the WoSign SSL certificate:

    1. Under Certificates (Local computer) in the left pane, select Intermediate Certification Authorities, and then click Certificates.

    2. Locate the WoSign SSL certificate in the details pane of the Certificates Snap-in that is hosted in the Microsoft Management Console.

    If the WoSign SSL certificate is not listed in the Intermediate Certification Authorities, you'll need to install the certificate by following these steps:

    1. Download the WoSign SSL certificate here: WoSign Root & Standard SSL Intermediate Root.

    2. Save the SSL certificate file to a folder on the local Windows server or client computer.

    3. Open Windows Explorer and browse to the folder that lists the SSL certificate file.

    4. Right click on the WoSign SSL certificate file and click Install Certificate.

    5. Click Open, select Local Machine or Computer account depending on the operating system, and then click Next.

    6. Select Place all certificates in the following store.

    7. Click Browse and select Intermediate Certification Authorities, then click OK.

    8. Click Next and then Finish to complete the Certificate Import Wizard.

Still need help? See Get technical, billing, and subscription support for Office 365 operated by 21Vianet.

Share Facebook Facebook Twitter Twitter Email Email

Was this information helpful?

Great! Any other feedback?

How can we improve it?

Thank you for your feedback!

×