1        Office 365 andSharePoint 2013 Hybrid         Environments               Rene Modery                 Singapore
2What will we talk about today?What are Hybrid EnvironmentsWhy implement one?What are the requirements?How to implemen...
3Who am I?            Rene Modery            German            More than 6 years in             Singapore            E...
4Hybrid Overview
Hybrid Environment                5SharePoint 2013      Office 365
6Why do we want/need a hybrid? Moving to the cloud to   Reduce Costs   Increase FlexibilityTemporary Hybrid Collabora...
7Preparing for a hybrid –Planning and Governance
8It’s not about the technology!    People        Processes         Governance
9Partitioning: What goes where  User Type      Workload Organisation      Date
10When and what to migrate? Content - Gradual migration   By department   By Location   By Type Solutions   Identify...
11Who gets access to what?Permanent accessOn-demand access  Projects; temporary workloads  Approval process  Regular ...
12How do I know where I am?
13How do I know where I am?
14What’s possible - General Requirements - SharePoint RequirementsSetting up a Hybrid Environment
15  What is possible?Scenario                     Works Out of Box?SharePoint: Search           YesSharePoint: BCS        ...
16Not without your own DomainNeeded for UPN DNS Certificates (SSL, STS) Reverse Proxy …
17Active Directory RequirementsSingle ForestYou need to able to verify every domainUsers need proper UPN  john@MyAweso...
Active Directory Federation                 18Services (ADFS) Sign-In on local server instead of MSOL Recommendation: 2 ...
19DirSync Synchronise your AD users with Office 365 Allow your users to log in to Office 365 with the  same username Ca...
20DirSync
21Other toolsPowershell & Microsoft Online / Office 365 cmdletsSingle-Sign On Assistant
22Reverse Proxy Only needed if Office 365 needs to consume on-prem data Only selected reverse proxy servers supported
23SharePoint 2013Any flavor  Foundation / Standard / EnterpriseAny location  In-house  Hosted  Azure / AWS  …
24Configure trust with ACS 1/3Install Office 365 Sign-on Assistant & PowerShell cmdletsReplace default STS Certificate ...
25Configure trust with ACS 2/3Upload certificate to Office 365 (PS)  MSOL: New-MsolServicePrincipalCredentialAdd host-n...
26Configure trust with ACS 3/3Set SharePoint authentication realm to context ID of Office 365 tenant  SP: Register-SPApp...
27Configure SearchCreate a Result Source
28Configure SearchCreate a Query Rule
29Configure SearchConfigure search results page(s)
demo
31I want my own hybrid environment! Lots of good content from MS available on   Hybrid in general   One-way setup   Tw...
32Evaluate!Evaluate this session and all others at      http://tinyurl.com/spcsea
33Connect!                   Meet speakers here     We are here
Thank you to our sponsors   34
Upcoming SlideShare
Loading in...5
×

Office 365 and SharePoint 2013 Hybrid Environments

9,089

Published on

Presentation given at the Southeast Asia SharePoint Conference 2013 in Singapore

Published in: Technology

Office 365 and SharePoint 2013 Hybrid Environments

  1. 1. 1 Office 365 andSharePoint 2013 Hybrid Environments Rene Modery Singapore
  2. 2. 2What will we talk about today?What are Hybrid EnvironmentsWhy implement one?What are the requirements?How to implement it
  3. 3. 3Who am I? Rene Modery German More than 6 years in Singapore Expertise: SharePoint Office 365 MVP http://modery.net @modery
  4. 4. 4Hybrid Overview
  5. 5. Hybrid Environment 5SharePoint 2013 Office 365
  6. 6. 6Why do we want/need a hybrid? Moving to the cloud to  Reduce Costs  Increase FlexibilityTemporary Hybrid Collaboration with Externals Separation of workloads Scalable
  7. 7. 7Preparing for a hybrid –Planning and Governance
  8. 8. 8It’s not about the technology! People Processes Governance
  9. 9. 9Partitioning: What goes where User Type Workload Organisation Date
  10. 10. 10When and what to migrate? Content - Gradual migration  By department  By Location  By Type Solutions  Identify what can be migrated  Test it in the cloud Services
  11. 11. 11Who gets access to what?Permanent accessOn-demand access  Projects; temporary workloads  Approval process  Regular verification if still needed
  12. 12. 12How do I know where I am?
  13. 13. 13How do I know where I am?
  14. 14. 14What’s possible - General Requirements - SharePoint RequirementsSetting up a Hybrid Environment
  15. 15. 15 What is possible?Scenario Works Out of Box?SharePoint: Search YesSharePoint: BCS YesSharePoint: Duet Online YesSharePoint: other services NoExchange integration LimitedLync integration YesSource: Microsoft, SPC12
  16. 16. 16Not without your own DomainNeeded for UPN DNS Certificates (SSL, STS) Reverse Proxy …
  17. 17. 17Active Directory RequirementsSingle ForestYou need to able to verify every domainUsers need proper UPN  john@MyAwesomeCompany.local won’t work!  john@MyAwesomeCompany.com.sg is what we need
  18. 18. Active Directory Federation 18Services (ADFS) Sign-In on local server instead of MSOL Recommendation: 2 ADFS servers, 2 ADFS proxies
  19. 19. 19DirSync Synchronise your AD users with Office 365 Allow your users to log in to Office 365 with the same username Cannot be installed on a Domain Controller AD Synchronisation also needs to be activated in Office 365 UI Doesn’t grant access, still need to add licenses
  20. 20. 20DirSync
  21. 21. 21Other toolsPowershell & Microsoft Online / Office 365 cmdletsSingle-Sign On Assistant
  22. 22. 22Reverse Proxy Only needed if Office 365 needs to consume on-prem data Only selected reverse proxy servers supported
  23. 23. 23SharePoint 2013Any flavor  Foundation / Standard / EnterpriseAny location  In-house  Hosted  Azure / AWS  …
  24. 24. 24Configure trust with ACS 1/3Install Office 365 Sign-on Assistant & PowerShell cmdletsReplace default STS Certificate  Issued by public Certification Authority (recommended) or self-signed  SP: Set-SPSecurityTokenServiceConfig
  25. 25. 25Configure trust with ACS 2/3Upload certificate to Office 365 (PS)  MSOL: New-MsolServicePrincipalCredentialAdd host-name of SP server to SP principal object of Office 365 tenancy (PS)  MSOL: Set-MsolServicePrincipalRegister SPO S2S principal object with on- prem SP STS  SP: Register-SPAppPrincipal
  26. 26. 26Configure trust with ACS 3/3Set SharePoint authentication realm to context ID of Office 365 tenant  SP: Register-SPAppPrincipalConfigure on-prem ACS proxy and set up trust with ACS  SP: New-SPAzureAccessControlServiceApplicationProxy  SP: New-SPTrustedSecurityTokenIssuer
  27. 27. 27Configure SearchCreate a Result Source
  28. 28. 28Configure SearchCreate a Query Rule
  29. 29. 29Configure SearchConfigure search results page(s)
  30. 30. demo
  31. 31. 31I want my own hybrid environment! Lots of good content from MS available on  Hybrid in general  One-way setup  Two-way setup  BCS Whitepapers from Axceler, Quest, … http://hybridoffice365.com
  32. 32. 32Evaluate!Evaluate this session and all others at http://tinyurl.com/spcsea
  33. 33. 33Connect! Meet speakers here We are here
  34. 34. Thank you to our sponsors 34

×