3. Register at the Glasspaper
Booth for more info & a
chance to win tickets!
4. Follow me on Twitter @AndyMalone
Andy Malone
Microsoft MVP (Enterprise Security)
Founder: Cybercrime Security Forum!
Microsoft International Event Speaker
MCT (18 Years)
Winner: Microsoft Speaker Idol 2006
See me speak @ Microsoft TechEd 2014
6. 2010 Hybrid
Exchange 2000
Exchange 2003
Exchange 2007
Exchange 2013
Notes/Domino
GroupWise
Other
Supports wide range of email platforms
Email only (no calendar, contacts, or tasks)
Cutover Exchange Migration (CEM)
Good for fast, cutover migrations
No migration tool or computer required on-premises
Staged Exchange Migration (SEM)
No migration tool or computer required on-premises
Requires Directory Synchronization with on-premises AD
Hybrid Deployment
Manage users on-premises and online
Enables cross-premises calendaring, smooth migration,
and easy off-boarding
* Additional options available with tools from migration partners
2013 Hybrid
Staged migration
IMAP Migration
IMAP migration
Simple Migrations
Exchange 5.5
Exchange 2010
Hybrid
Cutover migration
Summary of Migration Options *
7. Deployment Plan
Stages
1. Plan
Read case
studies and
documentation
2. Prepare
Add and
Verify SMTP
domains
DNS
Administratio
n
Configure On
Premise
3. Migrate
4.
Decommission
10. The PST Dilemma
•
•
•
•
•
•
•
Do not comply with e-mail retention policies;
They make electronic discovery very difficult if not impossible;
You cannot use Outlook Web App [OWA] to access them;
Normally stored in user’s local drives which are not backed up.
If corrupted, all its content might get lost;
If on network drives, they still take valuable storage space;
Rarely password protected, anyone with access can read
content;
• Users create more PST files so their mailboxes don’t go over
quota because they don’t want to delete any e-mails.
11. PST migration features
•
•
•
•
•
Works with customers using
Outlook independent of mail
systems
Enables user driven or IT
migration
Users can migrate content on
demand
Migrates mail, calendar, contacts,
tasks
New mailbox in cloud – new
Outlook profile and caching
12. PST Capture Tool
• Stand alone tool to capture and
migrate PST data
• Option to import to mailbox or
archive
• Requires central PST capture
console installation
• Agent required on client
computers for capture and
migration
13. PST Tool Architecture
•
•
•
•
The PST Capture tool is made of three components:
PST Capture Console: Interface administrators use
to search for PSTs and import them into Exchange;
PST Capture Central Service: Service maintains a list
of all the PSTs found by the tool and processes the
data as it is imported into Exchange;
PST Capture Agent: Installed throughout computers
or servers in the organization, are responsible for
the discovery of PSTs on the machines where they
are installed. If requested, they will send PSTs to the
host where the Central Service is installed so they
can be imported.
14. PST – Migration Flow
Provision
users
+
mailboxes
in O365
(license
assigned)
Discover
PST
PST
creation
Install and
configure
PST
Capture
Change MX
record
Migrate
PST
Configure
Outlook
18. IMAP Migration – Features
• Works with a large number of
source mail systems
• Works with on-premises or hosted
systems
• Users can be migrated in batches
• On-premises migration tool is not
required
19. IMAP – Requirements and Limitations
• On-premises migration tool is not required
• Access to IMAP ports (TCP/143/993)
• Users + mailboxes must be provisioned prior to
migration
– Bulk provisioning, CSV parser, manual, etc.
• SMTP domains configured in O365 tenant
• Gather user credentials or setup admin
credentials
• Prepare a CSV file with list of users
– EmailAddress, UserName, Password
– Max of 50,000 rows
– Max 10 MB in size
20. IMAP – Data Migration Scope
Migrated
Mail messages
(Inbox and other folders)
Maximum of 500,000
items
Possible to exclude specific
folders from migration
(e.g. Deleted Items, Junk
E-Mail)
Not Migrated
Contacts, Calendars,
Tasks, etc.
Excluded folders
Folders with a forward
slash
( / ) in the folder name
Messages larger than 35
MB
21. IMAP – Migration Flow
Initial
sync
Provision
users
+
mailboxes
in O365
(license
assigned)
Gather
IMAP creds
and
prepare
CSV
Wizard:
Enter
server
settings
and upload
CSV
Change MX
record
Delta
sync
every 24
hours
Mark
migration
as
complete
Final
sync and
cleanup
22. In EAC, select
recipients |
migration
Migration Tool
launched from
Exchange Admin
Center (EAC)
Start migration
wizard
Choose
migration type
and follow
prompts
23. Set of Migration Cmdlets
Migration Tool
also available via
PowerShell
New-MigrationBatch
Start-MigrationBatch
Get-MigrationBatch
Get-MigrationStatus
Complete-Migration
TestMigrationServerAvailability
25. CEM – Features and Benefits
• Simple and quick migration solution
• High-fidelity solution – all mailbox content is
migrated
• Typically best suited to small and medium
organizations
• Users are provisioned automatically during migration
• Works with Exchange 2003 and newer
• Works with on-premises or hosted Exchange systems
• Identity management in the cloud (at least initially)
• On-premises migration tool is not required
26. CEM – Requirements and Limitations
• Up to 1000 mailboxes in source system
• Outlook Anywhere service on source system
(must have SSL certificate issued by a public
CA)
• Migration Account with Full Access or
Receive-As permissions to all mailboxes that
will be migrated
• Directory Sync tool disabled in O365 tenant
• SMTP domains configured in O365 tenant
27. CEM – Architecture
On-premises Exchange Org
Users, Groups, Contacts via Outlook
Anywhere (NSPI)
Exchange 2003 or later
27
Mailbox Data via Outlook Anywhere
(RPC over HTTP)
Office 365
28. CEM – Accounts and Passwords
•
•
Accounts Provisioning
– Migration creates users, mailboxes, DLs and
contacts
– Migration enables replies to migrated messages
(i.e. provision process brings over the Legacy
DNs)
Passwords
– No access to passwords from source directory
– New passwords created for all users
– A link to download passwords is sent to admin
– Users must change password on their first login
29. CEM – Data Migration Scope
Migrated
Mail messages and folders
Rules and categories
Calendar (normal, recurring)
Out-of-Office settings
Contacts
Tasks
Delegates and folder perms
Outlook settings (e.g. favorites)
Not Migrated
Security Groups, DDLs
System mailboxes
Dumpster
Send-As Permissions
Messages larger than 35 MB
29
30. CEM – Data Migration Scope
• Partial migrations
are not possible
(folder exclusion,
time range)
• Mailboxes enabled
for Unified
Messaging cannot
be migrated
• Existing cachedmode files (OST
files) cannot be
preserved
31. CEM – User Experience
• Admin needs to distribute new
passwords to users
• Users create their new Outlook profile
using O365 username and new
passwords (Autodiscover)
• All mail is downloaded from the Office
365 mailbox
(i.e. the OST file must be recreated)
31
32. CEM – Migration Flow
Configure
Outlook
Anywhere
Test using
ExRCA
Assign
migration
perms
Initial
sync
Wizard:
Enter server
settings and
admin
creds
Migration
tool
provisions
users
mailboxes
DLs
contacts
in O365
Change
MX
record
Delta
sync
every 24
hours
Mark
migration as
complete
Final
sync and
cleanup
License users
36. SEM – Features and Benefits
•
•
•
•
•
•
•
•
•
Simple and flexible solution
High-fidelity – all mailbox content is migrated
Best suited to medium and large organizations
Users provisioned with Directory Sync prior to
migration
No limit on the number of mailboxes
Users can be migrated in batches (up to 1000 per
batch)
Works with Exch 2003 and 2007 only, on-premises
or hosted
Identity management on-premises
On-premises migration tool is not required
36
37. SEM – Requirements and Limitations
• Outlook Anywhere service on source system
(must have SSL certificate issued by a public CA)
• Migration Account with Full Access or Receive-As
permissions to all mailboxes that will be migrated
• Directory Sync tool enabled in O365 tenant
• SMTP domain(s) configured in O365 tenant
• Does not work with Exchange 2010
38. SEM – Architecture
On-premises Exchange Org
Office 365 Directory
Synchronization
App
Office 365
Users, Groups, Contacts via DirSync
Mailbox Data via Outlook Anywhere
(RPC over HTTP)
Exchange 2003 or 2007
38
39. SEM – Accounts and Passwords
• Accounts Provisioning
– For every on-premises mailbox to be migrated there needs to
be a MEU or Mailbox in Office 365
– Migration tool relies on DirSync to do provisioning
• Passwords
– Target mailbox passwords must be specified for all the users
– Administrators can force users to change passwords on first
login
40. SEM – Batch File
•
CSV format
› EmailAddress, Password, ForceChangePassword
•
•
•
One user per line
Max of 1000 users in each CSV
Smart-check against the Office 365 directory
41. SEM – Data Migration Scope
Migrated
Mail messages and folders
Rules and categories
Calendar (normal, recurring)
Out-of-Office settings
Contacts
Tasks
Delegates and folder perms
Outlook settings (e.g. favorites)
Not Migrated
Security Groups, DDLs
System mailboxes
Dumpster
Send-As Permissions
Messages larger than 35 MB
42. SEM – Data Migration Scope
• Partial migrations are not
possible (folder exclusion, time
range)
• Mailboxes enabled for Unified
Messaging cannot be migrated
• Existing cached-mode files (OST
files) cannot be preserved
42
43. SEM – User Experience
• Admin needs to distribute new
passwords to users
• Users create their new Outlook
profile using O365 username and
new passwords (Autodiscover)
• All mail is downloaded from the
Office 365 mailbox
(i.e. the OST file must be
recreated)
43
44. SEM – Migration Flow
Configure
Outlook
Anywhere
Test using
ExRCA
Assign
migration
perms
Wizard:
Configure
Directory
Sync
Enter
server
settings
and admin
creds
Initial
sync
Change
MX
record
Delta
sync
every 24
hours
Mark
migration
as
complete
Final
sync and
cleanup
License
users
47. Pilot
Experience Value Early
New Cloud Experience
Deploy
Real World Benefits
Broad Production Use
Extend
Full Feature Value
Meet your needs
48. Benefits of Office 365 FastTrack
• No throw away effort “Production pilot”
• Full Office 365 User Experience with
minimal on-premises requirements
• Time to value vs. effort invested
• Multiple data migration methods:
– new mailbox, self-service and IT managed
• Identity options:
– cloud IDs, synchronized IDs and federated IDs
49. First use in hours, Onboarding in days
Pilot complete
Deploy Complete
Adopt new features
