Enterprise SharePoint Service Enterprise SharePoint Service (ESPS)(ESPS)

17 August 2011

A Combat Support Agency

Defense Information Systems Agency

A Combat Support AgencyA Combat Support Agency

Enterprise User Target StateEnterprise User Target State

Enterprise UserEnterprise User

“I can go anywhere in the DOD, login, and be productive.”“I can go anywhere in the DOD, login, and be productive.”

• DoD Visitor• Automatic account provisioning on

any NIPR computer• Being installed on all DoD domain

controllers now• NIPR (FY11) and SIPR (FY12)

• Enterprise Identity• Persona Username, Display Name & E-

Mail Address (FY11)• Enterprise Authentication and Access

Control (FY11)

• Enterprise User Data• Personnel Portal at DMDC (FY11)• Enterprise Identity & Contact Data

Synchronization (FY11)

“My CAC works at any base I go to – I just put it in a DoD computer and get an

account.”

“Wherever I am, I can get to my e-mail, files & content, use office apps

and find people.”“I can always be sure people can find me because there’s just one place to

enter my info.”

“I never have to make up a username, because its always the same everywhere

– NIPR & SIPR.”

2

•Basic Web Services•E-Mail (FY11)•SharePoint (FY12)•Office Web Applications (FY12)•Directory Services (GAL & White Pages) (FY12)•File Storage Service (MyStuff) (FY12)•Content Management Service (FY12)

A Combat Support AgencyA Combat Support Agency

Service OfferingService Offering

3

• SharePoint 2010 (Standard and Enterprise) is a new service offering– Standard – Basic features like document libraries, team

sites/calendar, task lists, blogs, & basic work flows

– Enterprise – Standard features + FAST search, Office Web Apps, performance indicators, and 3rd party tools

– http://thecommunicator.co.cc/2010/05/03/sharepoint-2010-feature-comparison-sharepoint-foundation-2010-vs-sharepoint-2010-standardenterprise/

• NIPRNet and SIPRNet• Current Status (NIPRNet only)

– Staging environment – Active– Production environment – 31 Aug 2011

A Combat Support AgencyA Combat Support Agency

Enterprise SharePoint ServiceEnterprise SharePoint Service(ESPS) Principles (1 of 2)(ESPS) Principles (1 of 2)

• Fits the NIST definition for Software as a Service (SaaS)

• Subscribers must have a valid client access license (CAL) for the appropriate platform (Enterprise or Standard)

• DISA will manage the multi-tenant environment for the Department of Defense

• DoD Components will manage their own SP site collections and content

• Not all customer requirements are appropriate for a multi-tenant environment like the one that ESPS provides

4

A Combat Support AgencyA Combat Support Agency

Enterprise SharePoint ServiceEnterprise SharePoint Service(ESPS) Principles (2 of 2)(ESPS) Principles (2 of 2)

• 3rd party software for appropriate functionality is included

• Subscribers may purchase optional applications, such as Microsoft Project, which will be integrated with the platform

• DISA accredits the system

• Subscribers agree to authenticate with the system using the methodology and mechanisms provided

• Subscribers agree to keep their end user devices & software current in order to be compatible with the multi-tenant environment

5

A Combat Support AgencyA Combat Support Agency

Operational ConceptOperational Concept

6

• SharePoint (SP) site collections are globally accessible

• SP site collections are provided by one of two CONUS SP instances

• The two CONUS SP instances provide COOP for one another

• Each site collection is active on only one SP instance at any given time

• Users may access either SP instance from the NIPRNet

• Users authenticate with a TLS session directly to SP instances using their CAC

Initial Operating Capability (IOC)

NIPRNet

LegendPrimary, active siteCOOP, inactive site

Base/Post/Camp/Station Access Point

CONUS Region

Oklahoma City Primary for Army COOP for DISA & Others

Mechanicsburg Primary for DISA &

Others COOP for Army

A Combat Support AgencyA Combat Support Agency

7

• Staging is required if customer has an existing SharePoint implementation with content that needs to be migrated– Purpose – Provide a test environment for customer and

DISA– Duration ~ 4 – 6 weeks depending on size of data– Limited to ~ 50 users– DECC Mechanicsburg responsible for migration to

production– All custom applications to be tested in the staging

environment

Staging EnvironmentStaging Environment

A Combat Support AgencyA Combat Support Agency

StorageStorage

8

8

• SharePoint is a collaboration platform and is not intended to provide primary storage

– Other Enterprise services, such as the Cloud Based File Storage (CBFS) and Enterprise content/records management service will provide more storage (expected in late FY12)

• Storage is one of the largest cost drivers

• ESPS is similar to commercial SharePoint service offerings and includes 250 MB/user

– Each DoD Component may allocate the storage for their organization across its site collections

– Additional storage can be purchased

A Combat Support AgencyA Combat Support Agency

Third Party FunctionalityThird Party Functionality

9

9

Functions Intended Users

Remote BLOB storage ESPS administrators

Provide selective restore functionality ESPS administrators

Manage backups ESPS administrators

Manage user access to site collections

Respond to security incidents such as spills

ESPS administrators Site collection administrators

Workflow Business Process Management

SP site administrators End users

Data aggregation Dashboards Reporting

SP site administrators End users

A Combat Support AgencyA Combat Support Agency

ESPS Functional ArchitectureESPS Functional Architecture

10

Core Services Support for all Enterprise Services

ESM Tools, including System Monitoring & Configuration Management (SCOM)

ESPS Common Infrastructure Supports ESPS sites, applications, and users

SecureNetworkAccess

User Profile

Managed Metadata

3.9M persona-based profiles from data in

the EASF

Centralized billing data

Storage & Backups

Data Replication

WebAnalytics

BusinessConnectivity

Services

Database Clusters

Subscribe to Common Services

ESPS Common Services

User Facing Infrastructure

Standard DB Storage

Remote BLOB Storage

Web Front End Servers

SP Application Servers

Acceleration& Caching

EASF

End User Authorization &AccessControl

User Facing Infrastructure

OE Storage & Backups

Subscribe to Common Services

Web Front End Servers

SP Application Servers

OE Storage & Backups

StandardPlatform

Enterprise Platform

CRM Project Others

FAST Search Engine

Optional Application Servers

Office Web Apps

Optional Application Servers

Remote BLOB Storage

A Combat Support AgencyA Combat Support Agency

Network InfrastructureNetwork Infrastructure

11

Zone 1[DMZ Extension/Proxy Services]

Zone 0

TMG Arrays

Colo Switch

Core Router

AggregationSwitch

NIPRNet

Stateful Inspection Firewalls Load

Balancers

LegendCore Services

ESPS Common Infrastructure

User Facing Infrastructure

Scalable Elements

A Combat Support AgencyA Combat Support Agency

ESPS TopologyESPS Topology

12