{"id":1838,"date":"2016-04-20T13:14:13","date_gmt":"2016-04-20T13:14:13","guid":{"rendered":"https:\/\/modern-workplace.uk\/\/?p=1838"},"modified":"2016-04-20T13:14:13","modified_gmt":"2016-04-20T13:14:13","slug":"skype-for-business-lync-and-ethical-wall","status":"publish","type":"post","link":"https:\/\/modern-workplace.uk\/?p=1838","title":{"rendered":"Skype for Business, Lync and Ethical Wall"},"content":{"rendered":"<h3>Intro and Scenario<\/h3>\n<p>&nbsp;<\/p>\n<p>As some of you know, I work inside financial \/ banking companies.<\/p>\n<p>One of the important aspects of the aforementioned kind of business is that risks and scenario that are acceptable for a large part of other customers are not tolerable for a bank.<\/p>\n<p>When we talk about IM and conferencing in Skype for Business (S4B) or Lync, strict compliance and privacy controls are not a widespread requirement for a deployment.<\/p>\n<p>Anyway, I could give you examples like this one: an Italian company almost ditched Lync because labor union decided that the presence feature was too \u201ctalkative\u201d about the time that workers spent away from keyboard J<\/p>\n<p>Other scenarios include the capabilities like:<\/p>\n<ul>\n<li>filter domains that you want your users to allowed to have a meetings with<\/li>\n<li>block conversations that contain PANs (credit card numbers)<\/li>\n<\/ul>\n<p>Everything in the aforementioned list is (probably) doable working with the Management Shell but implementing and keeping the settings updated would require a tremendous effort.<\/p>\n<p>For my next deployment, I have talked with Fabbricadigitale ( <a href=\"http:\/\/www.fabbricadigitale.com\/\">http:\/\/www.fabbricadigitale.com\/<\/a> ) to understand how their Ethical Wall (EW) solution was able to fit the specific needs of our federation of banks<\/p>\n<h2><\/h2>\n<h3>How does it Work<\/h3>\n<p>&nbsp;<\/p>\n<p>A Front-End Agent to install on Lync \/ S4B Front-Ends, an Admin Console and a database, composes a basic EW deployment (more complex designs including high availability are possible).<\/p>\n<p>There is no requirement to install software on the clients.<\/p>\n<p>One simple deployment is the one you can see in the following image<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Single-to-Single.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone  wp-image-1839\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Single-to-Single.jpg\" alt=\"Single-to-Single\" width=\"590\" height=\"373\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Single-to-Single.jpg 1075w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Single-to-Single-300x189.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Single-to-Single-768x485.jpg 768w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Single-to-Single-1024x647.jpg 1024w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Single-to-Single-317x200.jpg 317w\" sizes=\"auto, (max-width: 590px) 100vw, 590px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>The EW Front-End Agent manages the Lync communication flows, implementing the static\/dynamic rules stored in the database.<\/p>\n<p>EW is made up by two different services<\/p>\n<ul>\n<li>Windows Service \u201cfabbricadigitale \u2013 MultiUx Ethical Wall\u201d is the Front-End Agent core service<\/li>\n<li>Windows Service \u201cfabbricadigitale \u2013 Courtesy Alert\u201d is the Courtesy Alert service: it sends courtesy messages when the created rules block the communications<\/li>\n<\/ul>\n<p>A courtesy alert looks like the following message<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/2016-04-20_15-04-24.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1840\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/2016-04-20_15-04-24.jpg\" alt=\"2016-04-20_15-04-24\" width=\"680\" height=\"164\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/2016-04-20_15-04-24.jpg 680w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/2016-04-20_15-04-24-300x72.jpg 300w\" sizes=\"auto, (max-width: 680px) 100vw, 680px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<h3>Rules<\/h3>\n<p>&nbsp;<\/p>\n<p>The main work you will perform inside the web based admin interface is rules management.<\/p>\n<p>Rules allow controlling Lync communication flows, their directions, and their properties between two end-points.<\/p>\n<p>You can create rules among all kind of end-points (<strong>Internal User<\/strong>, <strong>Internal User from Internet<\/strong>, <strong>Federated User<\/strong>, <strong>Telephone number<\/strong>, <strong>Skype User<\/strong>, <strong>Ethical Wall Group<\/strong> custom group, <strong>Active Directory Group<\/strong>, <strong>AD Organizational Unit<\/strong>, <strong>Domain<\/strong>: <strong>internal domain<\/strong>, <strong>Federated Domain<\/strong>, <strong>Any Internal User from Internet<\/strong>, <strong>Any Internal User<\/strong>, <strong>Any Federated User<\/strong>, Any &#8211;<strong> all the Lync accounts<\/strong>).<\/p>\n<p>See them in the next picture<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Endpoints.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1847\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Endpoints.jpg\" alt=\"Endpoints\" width=\"375\" height=\"293\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Endpoints.jpg 375w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Endpoints-300x234.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Endpoints-256x200.jpg 256w\" sizes=\"auto, (max-width: 375px) 100vw, 375px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>You can create rules specifying the direction of the communication flows:<\/p>\n<ul>\n<li>from A to B \u2013 from B to A (both the end-points can start communication sessions)<\/li>\n<li>from A to B (A can start a session with B, who can answers, but cannot start a new session)<\/li>\n<li>from B to A (B can start a session with A, who can answers, but cannot start a new session)<\/li>\n<\/ul>\n<p>You can see an example in the following screenshot<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Rules_01.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone  wp-image-1842\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Rules_01.jpg\" alt=\"Rules_01\" width=\"588\" height=\"482\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules_01.jpg 792w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules_01-300x246.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules_01-768x630.jpg 768w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules_01-244x200.jpg 244w\" sizes=\"auto, (max-width: 588px) 100vw, 588px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>Rules include the capability to send a courtesy message when EW blocks a communication.<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/CA-MessageSelection.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone  wp-image-1843\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/CA-MessageSelection.jpg\" alt=\"CA-MessageSelection\" width=\"591\" height=\"427\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/CA-MessageSelection.jpg 814w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/CA-MessageSelection-300x217.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/CA-MessageSelection-768x555.jpg 768w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/CA-MessageSelection-277x200.jpg 277w\" sizes=\"auto, (max-width: 591px) 100vw, 591px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>It is also possible to configure a schedule so that a rule is active only in specific timeslots<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone  wp-image-1845\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1.jpg\" alt=\"Create-a-Rule_TS1\" width=\"599\" height=\"324\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1.jpg 789w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1-300x162.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1-768x415.jpg 768w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Create-a-Rule_TS1-370x200.jpg 370w\" sizes=\"auto, (max-width: 599px) 100vw, 599px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>There is also a dashboard containing an overview of the Ethical Wall and the Skype for Business\/Lync Front-End server status.<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Rules-Sync.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone  wp-image-1846\" src=\"https:\/\/modern-workplace.uk\/\/wp-content\/uploads\/2016\/04\/Rules-Sync.jpg\" alt=\"Rules-Sync\" width=\"609\" height=\"79\" srcset=\"https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules-Sync.jpg 833w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules-Sync-300x39.jpg 300w, https:\/\/modern-workplace.uk\/wp-content\/uploads\/2016\/04\/Rules-Sync-768x100.jpg 768w\" sizes=\"auto, (max-width: 609px) 100vw, 609px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<h3>Positive Sides and Red Flags<\/h3>\n<p>&nbsp;<\/p>\n<p>EW is easy to use and add a set of powerful features to manage S4B and Lync compliance and security.<\/p>\n<p>The main red flag I see (at least in the existing version) is that EW is able to work only if the organizator of the meeting is in an on-premises environment.<\/p>\n<p>If the meeting is organized by an external or Cloud based user, there will be no EW filtering.<\/p>\n<p>&nbsp;<\/p>\n<h3>Takeways<\/h3>\n<p>&nbsp;<\/p>\n<p>Probably it is the first time that I write a review that has an \u201call or nothing\u201d approach.<\/p>\n<p>Is you have an on-premises deployment (or, at least, you are able to dictate user behavior so that your meeting start always on your on-premises Front-Ends) EW is a bright solution, that adds a set of interesting features with a user friendly management interface.<\/p>\n<p>Otherwise, if many meetings and conversation are managed by Cloud users or by federated users, EW gives you no advantage.<\/p>\n<p>I strongly suggest to Fabbricadigitale to look at the Cloud, just to follow the direction more and more companies are taking.<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Intro and Scenario &nbsp; As some of you know, I work inside financial \/ banking companies. One of the important aspects of the aforementioned kind of business is that risks and scenario that are acceptable for a large part of other customers are not tolerable for a bank. When we talk about IM and conferencing [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1842,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_sitemap_exclude":false,"_sitemap_priority":"","_sitemap_frequency":"","twitterCardType":"","cardImageID":0,"cardImage":"","cardTitle":"","cardDesc":"","cardImageAlt":"","cardPlayer":"","cardPlayerWidth":0,"cardPlayerHeight":0,"cardPlayerStream":"","cardPlayerCodec":"","footnotes":""},"categories":[711,18,19,690],"tags":[737,735,738,736,702,740,706,741,722,691,739],"class_list":["post-1838","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-posts2016","category-english","category-lync","category-skype-for-business","tag-conferencing-filtering","tag-ethical-wall","tag-fabbricadigitale","tag-im-filtering","tag-lync","tag-lync-filtering","tag-s4b","tag-s4b-filtering","tag-skype","tag-skype-for-business","tag-voip-filtering"],"_links":{"self":[{"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/posts\/1838","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1838"}],"version-history":[{"count":1,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/posts\/1838\/revisions"}],"predecessor-version":[{"id":1848,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/posts\/1838\/revisions\/1848"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=\/wp\/v2\/media\/1842"}],"wp:attachment":[{"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1838"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1838"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/modern-workplace.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1838"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}