Lync edge and broken replication with CMS.

Hi all,

Yesterday a customer had a problem with Edge replication from Central Management Store (CMS)

So installed Lync Logging Tools from

And then started OCSLogger.exe on Frontend to see what was wrong.

And started initated replication with invoke-csmanagementreplication from Frontend. And it ran for couple of minutes. Then i selected “analyze Log Files”

In Snooper all the errors are marked as yellow or red. So you can sort them with level column and see them all easily.

From there I found the problem.

And the fix wasn’t so easy because customer had already added couple registry dwords.

2. Removed SendTrustedIssuerList registry key from
3. Removed Internal CA-Root certificate from Trusted Root Certificate Authorities.
4. Reboot
5. Removed unnecessary Root certificates from Trusted Root certs.
5. Imported internal CA-Root certificate again.
6. Add dword
ClientAuthTrustMode with value of 2 in HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSecurityProvidersSCHANNEL
And all was well.
Author: Harri Jaakkonen

Leave a Reply

Your email address will not be published. Required fields are marked *