In the event a secure Session Initiation Protocol (SIP) connection fails, the connection must be restricted from resorting to the unencrypted HTTP.
An XCCDF Rule
Description
Prevents from HTTP being used for SIP connection in case TLS or TCP fail.
- ID
- SV-85529r1_rule
- Version
- DTOO422
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Set the policy value for Computer Configuration -> Administrative Templates -> Skype for Business 2016 -> Microsoft Lync Feature Policies "Disable HTTP fallback for SIP connection" to "Enabled".