Update your firewall now with this new CRL endpoint

The Lync team has recently discovered additional steps for Lync Online admins to take to ensure smooth service performance. This applies to Lync Online tenants, and hybrid deployments where some users are homed in Lync Online after being moved from a Lync Server on-premises deployment.

As a result of the recent acquisition of Verisign by Symantec, you’ll need to add this new certificate revocation list (CRL) endpoint to your list of allowed locations:





Outgoing TLS and HTTPS


Add this new rule to your firewall or proxy server to avoid Lync sign-in issues and ensure a secure connection to Office 365.  

IMPORTANT: You must add this allowed CRL endpoint to any device that is filtering web traffic: firewalls, load balancers, proxy servers, web security software/appliances, and so on.

See also

Lync Online URLs and IP Address Ranges

Set up your network for Lync Online

Comments (4)

  1. Nice topic Update your firewall now with this new CRL endpoint

  2. JN says:

    Thanks guys, been fighting this for two days.

  3. anony.muos says:

    I see sr.symcd.com & ss.symcd.com in my logs… is symcd.com related to symcb.com ?

  4. Mila Devin says:

    I started in the computer industry on a helpdesk team managing projects. My first “fly solo” project was evaluating the roll-out of ISDN video conferencing between 3 sites in San Francisco, Chicago, and London. When I went in front of my CEO to justify
    the expense of the project