Mct summit na deploying a hybrid exchange 2010-office365 platform

1,169 views

Published on

This is my presentation on how to build a hybrid / mixed email platform using Exchange 2010 on-premise, combined with Office356

Presentation has been brought at MCT Summit San Francisco 2011

Published in: Business, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,169
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
35
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Don’t forget to thank our sponsors! They made this possible! Go sponsors!!!!!
  • Mct summit na deploying a hybrid exchange 2010-office365 platform

    1. 1. Building a hybrid Exchange 2010- Office365 platform! The future-ready solution Peter De Tender October 19–21, 2011
    2. 2. About the speaker• Managing Partner ICTinus (Belgian IT Company)• +15 years IT Pro on Microsoft technologies• Focus on Exchange & Forefront• MCT for 3 years• Country Lead MCT Europe Belgian Chapter• Email: Peter.detender@ictinus.be• Blogs: http://the-c-spot.org + http://trycatch.be/blogs/pdtit• LinkedIn: http://be.linkedin.com/in/pdtit• Twitter: http://twitter.com/pdtit OCT 19-21
    3. 3. My sessions at MCT Summit NA• Integrating Exchange 2010 with Office365 – Wednesday Oct. 19th - 1415h-1515h• Exchange 2010 SP2 – what to expect – Friday Oct. 21st – 0945h-1045h• Sneak preview on Forefront Endpoint 2012 – Friday Oct. 21st – 1100h-1200h OCT 19-21
    4. 4. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    5. 5. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    6. 6. Microsoft Office 365 Value OCT * Access from mobile devices depends on carrier network quality and availability 19-21
    7. 7. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    8. 8. Planning For Deployment Exchange Large On- IMAP Medium Premises Lotus Small Single Sign- Notes On Google On-Cloud Hybrid DirSync Exchange Bulk sharing Provisioning features OCT 19-21
    9. 9. New Migration OptionsChoices to fit your organization Cutover migration Staged migration IMAP migration Hybrid Exchange 5.5 X Exchange 2000 X Exchange 2003 X X X X Exchange 2007 X X X X Exchange 2010 X X X Notes/Domino X GroupWise X Other X OCT 19-21
    10. 10. Today’sHybrid FocusFeature Staged HybridMail routing between on-premises and cloud (recipients on either side)  Mail routing with shared namespace (if desired) - @company.com on both sides  Unified GAL  Free/Busy and calendar sharing cross-premises Mailtips, messaging tracking, and mailbox search work cross-premises  Exchange SharingOWA Redirection cross-premise (single OWA URL for both on-premises and cloud) Exchange Online Archive Exchange Management Console used to manage cross-prem relationship & mailbox migrations Native mailbox move supports both onboarding and offboarding  Mailbox MoveNo outlook reconfiguration or OST resync required after mailbox migration Online Mailbox Move allows users to start logged into their mailbox while it is being moved to the cloud Secure Mail ensure emails cross-premises are encrypted, and the internal auth headers are preserved  Secure TransportCentralized mailflow control, ensures that all email routes inbound/outbound via On Premises  OCT 19-21
    11. 11. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    12. 12. Hybrid Feature-set • Cross-Premises Free/Busy and Calendar Sharing – Creates the look and feel of a single, seamless organization for meeting scheduling and management of calendar – Works with any supported Outlook client; the heavy lifting is done by the Exchange Server 2010 CAS servers and the MS Federation Gateway and is transparent to the client OCT 19-21
    13. 13. Hybrid Feature-set Cross-Premises MailTips • Cross-Premises MailTips – Creates the look and feel of a single, seamless organization. Correct evaluation of “Internal to” vs. “External to” organization context – Allows awareness and correct Outlook 2010 representation of mail-tips for size and quantity limits on DGs, etc. OCT 19-21
    14. 14. Hybrid Feature-setCross-Premises Message Tracking • Cross-Premises Message Tracking – Creates the look and feel of a single, seamless organization – Message tracking started from on- premises or from the cloud will track through to the edge of the combined organization • Tracking fidelity across Exchange Server 2010 SP1 servers will be identical to fully on-premises organizations (i.e. – high fidelity) • Tracking fidelity across pre-2010 servers will be identical to fully on- premises organizations (i.e. – lower fidelity) OCT 19-21
    15. 15. Hybrid Feature-setCross-Premises mailbox search • Cross-Premises mailbox search – Allows compliance officers to select/manage mailboxes for mailbox searches from on- premises or cloud-hosted mailboxes – Graphical representation allows to differentiate between on- premises and cloud-hosted mailboxes in the picker – Search results returned across all selected mailboxes, regardless of mailbox location! OCT 19-21
    16. 16. Hybrid Feature-setCross-Premises OWA redirection • Single URL – Allows mailbox access to OWA via a single URL (pointed to on-premises CAS) – Ensures a good end-user experience as mailboxes are moved in-and-out of the cloud, since OWA URL remains unchanged • Better Cloud log in experience – Log in experience can be greatly improved by adding your domain name into your cloud URL so that you can access your cloud mailbox without the interruption of Go There page OCT 19-21
    17. 17. Hybrid Feature-set Cross-Premises Mailflow • Cross-Premises Mailflow – Hybrid adds the ability to preserve internal organizational headers. – Most important header: Auth header • Allows us to treat a message from the cloud as authenticated. This means we trust the message and resolve the sender to a recipient in the GAL. • Restrictions specified for that recipient get honored. • When sender expanded in Outlook, GAL card is opened (not SMTP address). OCT 19-21
    18. 18. Hybrid Feature summary• Makes your on-premises organization and cloud organization work together like a single, seamless organization – Offers near-parity of features/experience on-premises and in the cloud – Seamless interactions between on-premises and cloud mailboxes – Migrations in and out of the cloud transparent to end-user• Features not supported: – Coexistence of Delegate permissions – Delegate permissions are migrated, but do not work when Delegator and Delegate are split between on-prem & cloud – Migration of Send As/Full Access permissions – Multi-forest – Only single forest source environments – Public Folders OCT 19-21
    19. 19. Hybrid – GUI Management Connecting on-premise GUI to the cloud • Once you have installed Exchange Server 2010 SP1 on-premises and connected it to your Exchange Online 2010 organization, you can use EMC GUI for a number of the configuration steps19 | Microsoft Confidential OCT 19-21
    20. 20. Hybrid Migration• Administrator uses EMC on-premises tool to manage mailbox moves and other administrative cross-premises tasks – Note: There is no requirement to move mailboxes on-premises to an Exchange Server 2010 server prior to moving them to the cloud• Dirsync keeps GAL in sync as mailboxes are moved OCT 19-21
    21. 21. Hybrid Migration • Cross-Premises moves just like on-premises – Cross-Premises mailbox moves driven out of EMC GUI “Remote Move” wizard – With federated sharing configuration in place, it eliminates the explicit- credentials requirement, allowing mailbox moves to be executed seamlessly to and from the cloud OCT 19-21
    22. 22. Hybrid Recipient Management Exchange Management Console• All recipient management should be performed through EMC 2010 SP1• Object should be created through the on-premises node• Any Policies (e.g. OWA Policy) should be assigned through the Cloud node OCT 19-21
    23. 23. Hybrid Recipient Management Cross-premises object mappingOn Premises Object Exchange Online Details RecipientMailbox Mailuser If Exchange Online detects the presence of a mailbox then it creates a Mailuser in the cloudMailuser Mailuser Synchronized as isRemote Mailbox Mailbox A mailbox is automatically provisioned with a 30 day license grace periodAD User (non mail enabled) Not synchronized Non mail enabled users are not synchronized. A “placeholder” object may be visible via PowerShellOn Premises Object Exchange Online Recipient DetailsMail enabled contact or AD Mail enabled contact Mail enabled or plain AD contacts are synchronized ascontact (non mail enabled) isMail enabled group Mail enabled group Mail enabled groups are synchronized to Exchange(distribution or security Online. Group type (sec/dis) is preservedgroup)Non mail enabled security Not synchronized Non mail enabled groups are non functional ingroup Exchange Online and therefore not synced OCT 19-21
    24. 24. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    25. 25. Hybrid Server Roles2 Required Server Roles:• Office 365 Active Directory Synchronization• Exchange Server 2010 SP1 CAS/Hub*1 Optional Server Role: OCT 19-21
    26. 26. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Key take-aways OCT 19-21
    27. 27. Exchange Deployment AssistantExchange Deployment Assistanthttp://technet.microsoft.com/exdeploy2010 Requires 32-bit OS (ouch !!) OCT 19-21
    28. 28. Hybrid Setup Step 1 – Office 365 configuration stepsStep Details Required/ RecommendedRegister your custom Register any primary SMTP domains Requireddomains in the Office 365portalConfigure Federated On-premises ADFS server allows on-premises RecommendedIdentity (single) identity to be used for cloud authenticationConfigure DirSync On-premises appliance synchronizes on- Required premises directory/GAL with the cloud OCT 19-21
    29. 29. Hybrid SetupStep Details Required/ RecommendedInstall Exchange Server On-premises Exchange Server 2010 SP1 CAS/Hub server (also MBX role for some scenarios) Required2010 SP1 server On- required for hybrid featurespremisesConfigure cloud Allows on-premises targeted autodiscover Outlook client to redirect to cloud without RequiredAutodiscover DNS record promptsPublish MRS Proxy Allows Exchange Online Mailbox Replication Service to connect On Premises and perform a Required move to the cloudImplement Cloud Create configuration policies in the cloud to match (or complement) on-premises RecommendedConfiguration Policies configuration policies (e.g. – ActiveSync policies, OWA policies, etc.)Configure RBAC in the Create/manage Role Based Access Control (RBAC) settings in the cloud to match (or Recommendedcloud complement) on-premises RBAC configurationConfigure Federation Enable infrastructure for delegated Live namespace federation. Allows the following RecommendedTrust / Org Relationship features:“Federated Sharing” Cross-premises Free/Busy, Shared Cross-premises OWA redirection Calendaring (single URL) Cross-premises Mailtips Cross-premises Mailbox Search Cross-premises Message Tracking Cross-premises ArchivingConfigure Cross-premises Configure Cross-premises mail routing. This configuration ensures proper anti-spam/header Recommendedmail routing handling for mail sent between on-premises and the cloud. OCT 19-21
    30. 30. Creating the Exchange Federation TrustCreate Exchange Federation Trust MSO ID with the MFG using a “unique namespace” Microsoft Federation Gateway (MFG) e.g.“exchangefederation.ictinus.be” Automatic implied trust between the Exchange Online On Premises AD Forest tenant and MFG Exchange Online Exchange 2010 CAS/ HUB Server Exchange Online On-premises Org Org Relationship Relationship with with “ictinus.be” “online.ictinus.be” OCT 19-21
    31. 31. Creating the SecureCreate the Connectors Create the Mail Exchange FOPE Send Inbound Connector Connector FOPE On Premises AD Forest Remote Domainsdefine the Create the Exchange FOPE use of 2010 CAS/ internal HUB Server Outbound Exchange Online headers Connector Remote Create the Domains Exchange define the Receive use of Connector OCT internal 19-21
    32. 32. What’s New in Exchange 2010 SP2?• New Hybrid Configuration Wizard – Exchange federation trust Pre-SP2: Approximately 50 manual – Organization relationships steps – Remote domains/accepted domains – Email address policies With SP2: Now only 6 manual steps – Send/Receive connector – Forefront inbound/outbound connectors – Message Replication Service Proxy – Pre-req checks (i.e. Office365 Active Directory Sync, Exchange certificates, registered custom domains, etc…)• New PowerShell cmdlets – New/Get/Set/Update-HybridConfiguration• Namespaces improvements – Removing requirement for unique namespace – Providing every customer a coexistence domain, for every hybrid deployment • “online.ictinus.be” is now “ictinus.mail.onmicrosoft.com” OCT 19-21
    33. 33. Agenda• Office365 intro• Migration Possibilities• Features of a “Hybrid” environment• Platform Requirements• Deployment Walkthrough• Demo Scenario• Key take-aways OCT 19-21
    34. 34. Key Take-Aways• Office365 is here, and here to stay !• Migrate towards Hybrid environment (Ent.)• Migration start-off takes about ½ day• Smooth mailbox migration possible• YOU decide what you want to migrate• Microsoft decides on future features, versions• Yes, we still need Exchange Admins !!!!!! OCT 19-21
    35. 35. • Email: Peter.detender@ictinus.be • Blogs: http://the-c-spot.org + http://trycatch.be/blogs/pdtit • LinkedIn: http://be.linkedin.com/in/pdtit • Twitter: http://twitter.com/pdtit OCT35 19-21
    36. 36. My sessions at MCT Summit NA• Integrating Exchange 2010 with Office365 – Wednesday Oct. 19th - 1415h-1515h• Exchange 2010 SP2 – what to expect – Friday Oct. 21st – 0945h-1045h• Sneak preview on Forefront Endpoint 2012 – Friday Oct. 21st – 1100h-1200h OCT 19-21
    37. 37. MCT Summit Partner: Thanks MCT Summit Sponsors:for YourSupport!

    ×