1. Deploying Exchange 2013 inHybrid ModeMichael Van HorenbeeckTechnology Consultant Xylos, Exchange Server MVP@mvanhorenbeeckwww.pro-exchange.bemichaelvh.wordpress.com

2. Building a hybrid configurationExpectations Reality (Ex2013) 3. What is a hybrid deployment? Virtual Exchange Organization The InternetExchangeExchangeOn-PremOnline (Office 365) 4. Why hybrid? Long-term coexistence Take advantages of features like e.g. Exchange Online Archiving Large migrations where cutover isnt possible (e.g. EX2010 +) Transparent mailbox moves (to or from Exchange Online) Online Mailbox Moves No OST resync! Interaction with 3rd party applications e.g. Fax Solutions 5. Hybrid Configuration Primer 6. DirSync WritebackWrite-Back attribute Exchange "full fidelity" featureSafeSendersHash Filtering: Writes back on-premises filtering and onlineBlockedSendersHash safe and blocked sender data from clients.SafeRecipientHashmsExchArchiveStatusOnline Archive: Enables customers to archive mail.ProxyAddresses Enable Mailbox: Off-boards an online mailbox back to(LegacyExchangeDN as X500) on-premises Exchange. Enable Unified Messaging (UM) - Online voice mail: This new attribute is used only for UM-Microsoft Lync ServermsExchUCVoiceMailSettings 2010 integration to indicate to Lync Server 2010 on- premises that the user has voice mail in online services. 7. A trip down memory lane 8. Hybrid Configuration Wizard (SP2) 9. Introducing the new hybridconfiguration wizard Single-step, adaptive configuration wizard Enhanced mail-flow capabilities Improved centralized mail flow Easier setup of secure mail flow (no more whitelisting IPs!) Integrated support for Exchange 2010 Edge Transport server Leverages Exchange Online Protection Enhanced & more detailed logging 10. Hybrid Prerequisites Directory Synchronization (DirSync) Hybrid Server Add Office 365 tenant to Exchange Admin Center Certificates Exchange Web Services 3rd party certificates for TLS between Exchange Online & On-Premises Self-Signed Certificate for use w/ Microsoft Federation Gateway (automatic)Optional: ADFS (though recommended) Edge Transport Server may make life easier (more about that later) 11. Typical deployment process1. 2.3. 4. 5.ConfigureSetup DirSync ConfigureConfigure DeploySSO (optional) Certificates WebServices Exchange 7. 6. MXThe InternetConfigureRun HybridMX Records Configuration Wizard 12. Hybrid Configuration WizardWorkflow Hybrid ConfigurationEngine 13. Supported topologies Office 365 (v 2010) Office 365 (v 2013) Office 365 (v 2013) w/ On-Prem 2010 w/ On-Prem 2013 Exchange 2003 SP2 (X)(X) Exchange 2007 SP2/SP3 (X)(X) Exchange 2007 SP3 Urx (X)(X) (X) Exchange 2010 SP1X Exchange 2010 SP2X Exchange 2010 SP3XX X Exchange 2013N/AX (X) = supported w/ dependenciesX = supported 14. Deployment Considerations Delegates Migrated, but mailboxes must be moved at the same time Mailbox Permissions Cross-premises permissions NOT supported Only explicit permissions get migrated to Exchange Online. Multi-forest scenarios are not supported Interaction with legacy / 3rd party applications Web Services? Use an SMTP gateway? Bandwidth 15. Hybrid mailbox movesMRSThe Internet Exchange Exchange On-Prem Online (Office 365) Admin 16. Mailbox moves: user experience When using SSO, moves to Exchange online are fully transparent Without SSO, users get a new password Outlook profile is updated automatically through Autodiscover 17. Common mistakes/issues Certificates Expired Not from a trusted source Missing/Wrong subject (alternative) name Single Sign-On Free/Busy not working Peers not recognized as internal Outlook-related (e.g. missing updates) 18. Troubleshooting Hybrid Configuration Log Files :Program FilesMicrosoftExchange ServerV15LoggingUpdate-HybridConfiguration Review Federation Information Get-FederationInformation DomainName Review OrganizationRelationShips Get-OrganizationRelationShip | fl * Troubleshoot connection issues (e.g. AutoDiscover/Web Services) Remote Connectivity Analyzer (www.testexchangeconnectivity.com) 19. Ex2013 Deployment Assistanthttp://technet.microsoft.com/exdeploy2013 20. Key takeaways Mind the prerequisites! Check certificates. Use tools like ExDeploy and remote connectivity analyzer to plan and validate your deployment Review the hybrid configuration logs for more information. 21. Related Sessions TuesdayOffice 365: Dos and Donts (Ilse Van Criekinge)Troubleshooting Federation, ADFS and More (John Craddock) WednesdayOffice 365 ProPlus: Click-to-run deployment and management (Brian Shiers)Office 365 Identity Management Options (Jethro Seghers, Michael Van Horenbeeck) 22. The resultIf you follow the advice from this session, youll probably end up withsomething like this ;-) THANK YOU!