office 365 in a hybrid world

SHAREPOINT AND PROJECT CONFERENCE ADRIATICS ZAGREB, 11/28/2012

Office 365 in a hybrid worldMARTINA GROM, OFFICE 365 MVP, ATWORK@MAGROMWWW.ATWORK.AT

About me

Martina GromCEO atworkBloggerinConsulting

mg@atwork.atblogs.technet.com/austriaMicrosoft Office365 Blog

cloudusergroup.at@magrom

What we are doing

Agenda

• Office 365 Components• What is Hybrid• Why Hybrid – common use cases• Migration scenarios• Features of a hybrid Deployment

Stay connected to your business

Run it the way you want

Office 365 for Enterprises

Experience Office anywhere

Keep your business compliant

Trusted service

Industry-leading productivity service hosted by Microsoft

7

What is Hybrid?

• Split Workload between On-Premises and the cloud

• Some users of Exchange, SharePoint or Lync are in the cloud

where others stay on-prem.

Within a Workloads

Splitted workloads

* Lync Online and Lync Server Co-existence with a single domain will be supported in 2H2012

• High Flexibility• Fast Move to the cloud is not possible (business or

technical reasons)• Workloads• Compliance and security reasons

Reasons for Hybrid Solutions

• Migration to the Cloud: Hybrid helps in transitioning• Permanent Hybrid Model: Hybrid-solution stays in the

enterprise (for al longer time, maybe „forever“)

2 possible Sceanrios

On-Premises Deployment of Usern or Sites

Transfer of Workloads, users or sites in the cloud for a pilot or a staged Migration

Deployment of the whole company

Hybrid to help migrationsFlexibility in• Migration in your desired speed – low impact

on users and on your current infrastructure• Pilotierung of Online Services with some Test

Users

Move of workloads users, sites to the cloud for specific reasons. Hybrid as a permanent model

Customers have the choice to have users on-prem or in

the cloud• Manage Users and services on-prem and online, depending

on your enterprise • To secure exitent investments on prem. • Easy on- and offboarding of Exchange Mailboxes between on-

prem and Ofice 365. • Migration of remote users for better performance• Hosten of data in specific regions because of compliance or

security• Migration to dthe Cloud whenever you want

On-Premises Deployment of users or sites

Dauerhaftes Hybrid Model

Online and On-Premises Features

• Hierarchical address book and segmenting of your Global Adress book

• Language support of Exchange VoiceMail

• Customized OWA Templates, Logos and add-ins

• old APIs

Not available Features in Lync Online

• Voice to PSTN

• Enterprise Voice and PBX

Hybrid deployments keeps your flexibility for Support of Features, please check back on public availability of Office 365 vnext

Not available in SharePoint Online

Not available Features in Exchange Online

• Central administration

• Powershell

• Full-trust Code

Matrix of Hybrid Scenarios

„can we do it on a weekend?“

Plan your Deployments

DEPLOYMENT PLAN

Migration solution is part of the

plan

Hybrid

HybridExchange sharing features

Source Server

ExchangeIMAPLotus NotesGoogle

Size

LargeMediumSmall

IdentityManageme

ntOn-PremisesSingle Sign-OnOn-Cloud

Provisioning

DirSyncBulk Provisioning

Deployment Planning

Deployment Phases

IMAP

migration

Cutover

migration

Staged migration

2010

Hybrid

2013

Hybrid

Exchange 5.5

Exchange 2000

Exchange 2003

Exchange 2007

Exchange 2010

Exchange 2013

Notes/Domino

GroupWise

Other

* Additional options available with tools from migration partners

Summary of Migration Options *S

imp

le M

igra

tion

sH

yb

rid

IMAP MigrationSupports wide range of email platformsEmail only (no calendar, contacts, or tasks)

Cutover Exchange Migration (CEM)Good for fast, cutover migrationsNo migration tool or computer required on-premises

Staged Exchange Migration (SEM)No migration tool or computer required on-premisesRequires Directory Synchronization with on-premises AD

Hybrid DeploymentManage users on-premises and onlineEnables cross-premises calendaring, smooth migration, and easy off-boarding

18

19

Hybrid – Stages vs. HybridFeature Staged Hybrid

Mail routing between on-premises and cloud (recipients on either side)

Mail routing with shared namespace (if desired) - @company.com on both sides

Unified GAL

Free/Busy and calendar sharing cross-premises

Mailtips, messaging tracking, and mailbox search work cross-premises

OWA Redirection cross-premise (single OWA URL for both on-premises and cloud)

Exchange Online Archive

Exchange Management Console used to manage cross-premises relationship & mailbox migrations

Native mailbox move supports both onboarding and offboarding

No outlook reconfiguration or OST resync required after mailbox migration

Online Mailbox Move allows users to start logged into their mailbox while it is being moved to the cloud

Secure Mail ensure emails cross-premises are encrypted, and the internal auth headers are preserved

Centralized mailflow control, ensures that all email routes inbound/outbound via On Premises

Exchange Sharing

Secure Transport

Mailbox Move

Architecture

Bronze Sky customer premises

AD

MS Online Directory

Sync

Identity platform

Provisioning

platformLync

Online

SharePoint

Online

Exchange Online

Federation

Gateway

Active Directory

Federation Server 2.0

Trust

IdP Directory

Store

Admin Portal

Authentication platform Id

P

Service connector

Identity Options Comparison1. MS Online IDs

Appropriate for• Smaller orgs

without AD on-premise

Pros• No servers required

on-premise

Cons• No SSO• No 2FA• 2 sets of credentials

to manage with differing password policies

• IDs mastered in the cloud

2. MS Online IDs + DirSync

Appropriate for• Medium/Large orgs

with AD on-premise

Pros• Users and groups

mastered on-premise

• Enables co-existence scenarios

Cons• No SSO• No 2FA• 2 sets of credentials

to manage with differing password policies

• Server deployment required

3. Federated IDs + DirSync

Appropriate for• Larger enterprise

orgs with AD on-premise

Pros• SSO with corporate

cred• IDs mastered on-

premise• Password policy

controlled on-premise

• 2FA solutions possible

• Enables co-existence scenarios

Cons• High availability

server deployments required

22

One access in OWA

Cutover MigrationMigration

Cutover Migration

• Target• Fast, simple, for small companies• Full Transfer to the Cloud

• Requirements• Less than 1.000 User• Identity Management in the Cloud (and on Premise)• Outlook Anywhere

• Functions• No On Premise Deployment necessary• Migration from Exchange Server 2003• On-premise or hosted systems

Staged MigrationMigration

Staged Migration

• Target• For small, medium businesses

• needs• Directory Sync

• Function• Migration for Exchange Server 2003, 2007, 2010…• Migration in Batches (start it as long as you like, when

you like)

Hybrid DeploymentMigration

Hybrid Deployment

• Target• Large companies

• Needs• ADFS Serverfarm HA• Directory Sync

• Function• Migration from Exchange Server 2003 and 2007• Migration with Mailbox Move • Free/Busy sharing

Hybrid Deployment Anforderungen

On-premises organization: Exchange Server 2003

One Exchange Server 2010 SP1 CAS Server with Hub transport Role

Directory Synchronization (DirSync) installed and working

Autodiscover and working public DNS record

Exchange Web Services and Autodiscover reachable, public certificate

Federation trust with Microsoft Federation Gateway

AD FS Concept

30

Customer Network

Directory Synchronization Architecture

AD

Directory Sync

Office 365 Datacenter

Offi

ce 3

65

FEs

Microsoft Online ID

Exchange

Office Sub

SharePoint

LyncO365

Directory

31

AD FS 2.0 Deployment Options1.Single server configuration2.AD FS 2.0 server farm and load-balancer3.AD FS 2.0 proxy server or UAG / TMG / Other reverse

proxy(External users, Microsoft Exchange ActiveSync®, Outlook)

EnterprisePerimeter network

External userInternal

user

ActiveDirector

y

AD FS 2.0 Server

AD FS 2.0

Server

AD FS 2.0 ServerProxy

AD FS 2.0 ServerProxy

Hybrid Architecture

CONFIGURE YOUR DEPLOYMENT PLAN

Hybrid FeaturesHow it looks like

Hybrid Features

Hybrid Features

News around Hybrid solutionsNews

News

• Dir Sync Tool 64bit Version verfügbar (based on Forefront identity Manager)http://community.office365.com/en-us/w/sso/555.aspx

• Exchange SP2 with Hybrid Configuration Wizard• Exchange 2013 to come

40

• New Hybrid Configuration Wizard• Exchange federation trust

• Organization relationships

• Remote domains/accepted domains

• Email address policies

• Send/Receive connector

• Forefront inbound/outbound connectors

• MRSProxy

• Pre-req checks (i.e. Office365 Active DirSync, Exchange certificates, registered custom domains, etc…)

• New Windows PowerShell™ cmdlets• New/Get/Set/Update-HybridConfiguration

• Namespaces improvements• Removing requirement for unique namespace

• Providing every customer a coexistence domain, for every hybrid deployment• Service.contoso.com is now Contoso.mail.onmicrosoft.com

Exchange Server 2010 SP2

Pre-SP2: Approximately 50 manual steps

With SP2: Now only 6 manual steps

SharePoint HybridSharePoint

SharePoint HybridOn-Premises Cloud Service

Coexistence

Complete control and ownership of hardware,

maintenance, resources, and administration

Migrate some capabilities to SharePoint Online and access both on premises

and online sites with the same domain credentials

Microsoft will regularly deliver new features and capabilities to

SharePoint Online

Single sign onADFS

Rich Coexistence

+

SharePoint Hybrid Planung

• Voraussetzungen:• Single sign on• ADFS

• Einheitliches User Interface mit einheitlichenTemplates

• Flexibles Lizenzmodell• Lokation von User Profiles, My Site,

Suche

Decision making

Hybrides Modell fits• Split workloads and features (Features, who are

not yet avalable in the cloud and/or on prem)• Current investments in (z.B. custom code

solutions)• Network performance• No central adminsitration• Sandboxed Solutions• NAPA

Hybrides Modell possible, but take care• Compliance or security• Complex Auditing• Search over split deployment• Custom Code

Planning Guide

• Exchange Deployment Options whitepaperhttp://www.microsoft.com/download/en/details.aspx?id=18206

• Hybrid SharePoint Environments with Office 365 Whitepaperhttp://www.microsoft.com/download/en/details.aspx?displaylang=en&id=27580

• Exchange Server Deployment Assistanthttp://technet.microsoft.com/exdeploy2010

• Deployment Readiness Toolhttp://community.office365.com/en-us/f/183/p/2285/8155.aspx

• Deployment Guide für Unternehmenhttp://community.office365.com/modg/

• Office 365 Service Descriptionshttp://www.microsoft.com/download/en/details.aspx?id=13602

• SharePoint Online Enterprise Planning Guide• http://

office.microsoft.com/en-us/office365-sharepoint-online-enterprise-help/sharepoint-online-planning-guide-for-office-365-for-enterprises-HA101988931.aspx

Links

questions?

HTTP://BLOG.ATWORK.AT

MAGROM

thank you.

SHAREPOINT AND PROJECT CONFERENCE ADRIATICS ZAGREB, 11/28/2012