Skype for Business Certificates Report

The following script will query for every Lync server in the Environment which is (Registrar, WAC or EDGE) and will pull relevant information on the Certificates exists on each server.

4.8 Star
4,740 times
Add to favorites
E-mail Twitter Digg Facebook
Sign in to ask a question

  • Edge certificates
    1 Posts | Last post April 05, 2018
    • Hi Guy,
      I'm unable to get the Edge certificates due to they are on DMZ, neither unable to ping them nor remote access.
      Any other way how to gather them?
  • Hi, Tried with different Edge pool with different passwords
    1 Posts | Last post April 04, 2018
    • We have five 5 different Edge Pools in 5 regions and they have different passwords. However the script take only one password. Is it possible I can include all password? So I get the information for my complete Infra.
  • not working for OWAS and Edge servers
    1 Posts | Last post March 08, 2017
    • Hi, I tried the script today but not working for OWAS and Edge servers.
      1st OWAS, its going to HLB not the physical servers so I modified the scripted and added the OWAS servers manually, now some time it works and sometime not. 
      2ns for Edge, its prompt for password but not taking it. I tried it many format but no luck. Servers are in workgroup.
      kindly suggest.
  • PCHAT Support
    2 Posts | Last post January 18, 2017
    • Working great for me but any chance of you adding in PChat :-)
    • Didn't think about that, will put it in my to-do for next version update :)
  • Create a scheduled task problem
    4 Posts | Last post November 10, 2016
    • Hi Guy!
      The script itself works great. But I can´t make it to work as a scheduled task in the task scheduler. I get 0x1 in the last run result. The task is set to run whether user is logged on or not and with highest privileges. Do you know how to make this work?
      Regards, Christian
    • Hey,
      Usually i would try to run it via CMD with the parameters you specified to make sure it's able to run without any prompts.
      If CMD work, it should able to run via Scheduled Task as well.
    • The below script works via cmd, but somehow it doesn´t work with parameters -EdgeCertificates and -ReadEDGECredsFromFile:
      PowerShell.exe -NoProfile -Command "& {Start-Process PowerShell.exe -ArgumentList '-NoProfile -ExecutionPolicy Bypass -File ""SfBCertReport-v0.50.ps1""' -Verb RunAs}"
      Any ideas?
      Regards, Christian
    • You can try and modify the parameters on the script itself to true or assign with the value so it will use them on every run.
  • Edge Server report
    2 Posts | Last post September 16, 2016
    • Hi Guy,
      This is a wonderful script to use however I have few queries listed below:
      1. The cmdlet " Set-Item WSMan:\localhost\Client\TrustedHosts -Value "*" –Force” will set any remote host as trusted. This could be a security issue as per policy.
      ** Will it be possible if we authorize only the machine that we run the script on instead of all** 
      2. Do we need to meet the prerequisites on all Edge servers or for one would be fine?
    • Hey Aditya,
      1. You can definitely do that, you can specify an IP or hostname and also change the port, just make sure you change it on the script as well.
      2. You need to do it on all, unless your certificates and everything else are exactly the same
  • can we use it for other services
    2 Posts | Last post August 29, 2016
    • Hi Guy,
      Thanks for script!! its really helpful for proactive server monitoring.
      Can we use it for other services like exchange,sharepoint apart from lync/SFB servers? 
    • Hey Anjali,
      Theoretically you can, but you'll need to modify the script as at the moment if very specific for SfB/Lync for querying the pools and rest of dedicated servers.
  • Date format
    2 Posts | Last post August 09, 2016
    • Thank so much for this script- it's great to have! Out if interest, how would I go about changing it to dd/MM/yyyy format for the Issue and Expiration dates in the report?
      I had a bit of a play, but can't work it out. 
    • Hey,
      I would just look to where there Get-Date function and change the format as needed.
      but for the most part, it should use a regional settings on the computer you are running it from.
  • How to script to send alert emails after scheduling it as a task scheduler
    2 Posts | Last post May 01, 2016
    • Hi...
      It will be great if you can share the script to send alert emails if it finds the certificate is expiring.
    • Hey Arjun,
      The option is already exists, you just need to modify the properties and enable it within the script.
  • I tested the latest version of the script, but it didnt retrieve the status for Edge and OWA servers certificate details.
    4 Posts | Last post January 08, 2016
    • I got the certificate details for FE servers and mediation servers. But did't display the details for Edge and OWA servers.
      successfully the script completed up to,
      "nRetrieving Certificate information from the Front End Servers..." -ForegroundColor Yellow"
      and not prociding after that to test teh Edge details
    • Hey,
      Can you send me the command you used to run it with?
      please note that there are a few prerequisites you need to do in order to collect EDGE information.
    • Hi ,
      Thanks a lot for your response. After following the prerequesties i could successfully collect EDGE cert info.
      Really a handy script...Tons of thanks for sharing this...!!
      I need a samall clarification as well,
      For EDGE it's using Port 80. Is there any alternative port through which i can access EDGE (I should not use port 90 in our enviromnent) If it's possible can you please guide me the changes i should make in the script.
      Thanks for your valuable time..!!
    • Hey,
      Well port 80 is the default for the PowerShell remoting.
      you can configure the listener to be any port you want on the EDGE and then have the script to point to that port instead.
1 - 10 of 13 Items