prev
next
out of 28

20342A_10

Tags:

Embed Size (px)

DESCRIPTION

20342

Citation preview

Module10

Module 10Designing and Implementing Integration with Microsoft Exchange Online

Microsoft Official CoursePresentation: 60 minutesLab: 60 minutesAfter completing this module, students will be able to:Plan for Microsoft Exchange Online.Plan and implement the migration to Exchange Online.Plan coexistence with Exchange Online.Required MaterialsTo teach this module, you need the Microsoft Office PowerPoint file 20342A_10.pptx.Important: We recommend that you use PowerPoint 2007 or a newer version to display the slides for this course. If you use PowerPoint Viewer or an older version, all the features of the slides might not display correctly.Preparation TasksTo prepare for this module:Read all of the materials for this module.Practice performing the demonstrations and the lab exercises.Work through the Module Review and Takeaways section, and determine how you will use this section to reinforce student learning and promote knowledge transfer to on-the-job performance.120342A10: Designing and Implementing Integration with Microsoft Exchange OnlineModule OverviewPlanning for Exchange OnlinePlanning and Implementing the Migration to Exchange OnlinePlanning to Coexist with Exchange Online220342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLesson 1: Planning for Exchange OnlineWhat Is Office 365?Whats new in Exchange Online?Why Migrate to Exchange Online?Exchange Online User SubscriptionsWhat Is Exchange Online Protection?Exchange Online Deployment ScenariosDiscussion: Office 365 Experience and Expectations320342A10: Designing and Implementing Integration with Microsoft Exchange OnlineWhat Is Office 365? Use Exchange email, calendar, and contacts with built-in functionality to help protect against viruses and spam Use instant messaging, presence availability, PC-audio, video conferencing, and screen-sharing Create SharePoint sites without setting up a data center Use Office Professional Plus 2013 client applicationsCreate, view, edit, and share Microsoft Office documents on the web

Office 365 is a online suite of five Microsoft productsIntroduce all five Microsoft products that are bundled as Microsoft Office 365. Mention that this module covers only Exchange Online, not the other products. You might want to give examples of when to use the other services, such as Microsoft Lync Online, which can connect to an on-premises Lync server.420342A10: Designing and Implementing Integration with Microsoft Exchange OnlineWhats new in Exchange Online?Exchange Online includes: Migration and hybrid deploymentCompliance and archivingMultiple management toolsEnhanced web experienceAdvanced routing optionsExchange Online ProtectionHosted voicemail with Unified MessagingPublic Folders

Provide an overview of the features available in Exchange Online. Mention that the most recent version of Exchange Online supports Public Folders.520342A10: Designing and Implementing Integration with Microsoft Exchange OnlineWhy Migrate to Exchange Online?Top reasons why an organization may consider migrating to Exchange Online:CostAdministration effortDisaster recovery effortFlexibilityEnvironmental friendliness

For each organization, the reasons to consider Exchange Online are different, so you should evaluate them carefully

620342A10: Designing and Implementing Integration with Microsoft Exchange OnlineExchange Online User SubscriptionsThe available Exchange Online user subscriptions are:Exchange Online Kiosk for mailbox size up to 1 GBExchange Online Plan 1 for 25 GB combined primary and archive mailboxesExchange Online Plan 2 for 25 GB primary mailbox plus unlimited Personal Archives Exchange Online Kiosk is the most basic user subscription, and it includes only Outlook Web App, POP3, or ActiveSync access to the mailboxExchange Online Plan 2 includes advanced features, such as in-place hold and voicemailThis topic provides an overview of the Exchange Online subscriber options that are available. Mention that Microsoft often changes these policies, so students must be sure to use the most recent information about subscriptions for their planning.720342A10: Designing and Implementing Integration with Microsoft Exchange OnlineWhat Is Exchange Online Protection?Core product capabilityDescription Edge Connection analysis (edge blocks based on IP addresses) Reputation analysis Antivirus Help protect organizations from receiving email viruses and other malicious code Multiple scan engines and heuristic detectionAnti-spam / Anti-malware Anti-spam filter can detect all types of spam before it reaches the organizations network Anti-malware filter is multi-layeredPolicy Policy rules to check email for complianceForced Transport Layer Security (TLS) option for encrypted messagesExchange Online Protection is an antivirus and anti-spam service that is included with Exchange Online and that you can purchase separatelyProvide an overview of EOP, which was formerly called Microsoft Forefront Online Protection for Exchange. Mention that this is the primary antivirus and anti-spam product available from Microsoft, and that it is now available only as a service. Students can no longer purchase Forefront Online Protection for Exchange and install it on servers running Microsoft Exchange Server 2013.820342A10: Designing and Implementing Integration with Microsoft Exchange OnlineExchange Online Deployment ScenariosChoose the type of deployment that best fits your business needs

PCPHONEWEBConsistent User ExperienceOn-Premises

Cloud Service

HybridDeployment920342A10: Designing and Implementing Integration with Microsoft Exchange OnlineDiscussion: Office 365 Experience and ExpectationsAnswer the following questions:If you are not currently using or evaluating Office 365 or Exchange Online, why not?What are your expectations or concerns about Office 365?Ask the students these questions and discuss their answers in the group. Discuss especially the question about their expectations or concerns, which is one of the most important considerations when discussing Office 365 with organizations.1020342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLesson 2: Planning and Implementing the Migration to Exchange OnlinePlanning Migrations to Exchange OnlineMigrating to Exchange OnlineExchange Online Management Tools1120342A10: Designing and Implementing Integration with Microsoft Exchange OnlinePlanning Migrations to Exchange OnlineMigrationIMAP migrationSupports a wide range of email platformsEmail only (no calendar, contacts, or desks)Cutover Exchange migrationGood for fast, direct migrationsDoes not need a server on-premisesCoexistenceStaged Exchange migrationSupports staged migrationsRequires Directory Synchronization Hybrid deploymentYou can manage users on-premises and onlineEnables cross-premises calendaring, smooth migration, and easy off-boardingAutomatically redirects clients IMAP migration CutoverStagedExchange 2010 hybridExchange 2013 hybridExchange Server 5.5XExchange 2000 ServerXExchange Server 2003XXXXExchange Server 2007XXXXXExchange Server 2010XXXXXExchange Server 2013XLotus Notes/ DominoXGroupWise/OtherXExplain the migration tools and options for Exchange Online. Customers can choose to move to the cloud quickly with native migration options, to take a more measured approach according to their business requirements, or to maintain mailboxes on-premises and online for a longer period of time.Note: Exchange Server 2013 hybrid does not work with Exchange Server 2003. However, Exchange Server 2003 customers can deploy Exchange Server 2010 hybrid with Exchange Online in order to have a smoother experience migrating to the cloud if other options are not suitable for their business requirements.1220342A10: Designing and Implementing Integration with Microsoft Exchange OnlineMigrating to Exchange OnlineTo migrate to Exchange Online:Connect directory and message routing to Exchange OnlineMigrate the mailboxesSwitch the MX resource record so that it points to Exchange OnlineFinalize the migration and remove the old Mailbox servers

Discuss the high-level steps in a migration to Exchange Online. Explain each step in detail and how to do each step. Also, mention that a hybrid deployment includes several other steps and that the next lesson provides more details.1320342A10: Designing and Implementing Integration with Microsoft Exchange OnlineExchange Online Management ToolsExchange Admin CenterOffice 365 Admin CenterExchange Management Shell

1420342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLesson 3: Planning to Coexist with Exchange OnlinePlanning a Hybrid DeploymentMail Flow Options for a Hybrid DeploymentHow Federated Delegation Works for Exchange OnlineThe Hybrid Deployment ProcessOptimizing User Access to Exchange OnlineThe Hybrid Configuration Wizard in Exchange Server 2013Migrating an Existing Hybrid Deployment to Exchange Server 2013Managing a Hybrid DeploymentBest Practices for Implementing a Hybrid Deployment1520342A10: Designing and Implementing Integration with Microsoft Exchange OnlinePlanning a Hybrid DeploymentComponents:Exchange Server 2013 servers Office 365Exchange Online ProtectionActive Directory synchronizationHybrid Configuration Wizard Microsoft Federation GatewayAD FSPrerequisites:Exchange Server on-premisesOffice 365 for enterprisesRegistered custom domainsActive Directory synchronizationAutodiscover DNS recordsTrusted digital certificate (not self-signed)Office 365 organization in the Exchange Admin CenterEdge Synchronization (for Edge Transport) Explain all the components and prerequisites of a hybrid deployment, so that students can plan and design a hybrid deployment.1620342A10: Designing and Implementing Integration with Microsoft Exchange OnlineMail Flow Options for a Hybrid DeploymentInbound email flow from the InternetDeliver inbound messages to Exchange Server on-premisesDeliver inbound messages to Exchange OnlineOutbound email flow to the InternetDeliver Internet-bound messages directly to the InternetRoute all Internet-bound messages through the on-premises Exchange serversEmail flow between Exchange Online and the Exchange Server on-premises organizationThe Hybrid Configuration Wizard automatically configures send and receive connectorsReview email flows for the scenarios. Mention that students can configure inbound email flow by using the mail exchanger (MX) resource record for the domain, and they can configure outbound email flow by using the Hybrid Configuration Wizard.1720342A10: Designing and Implementing Integration with Microsoft Exchange OnlineHow Federated Delegation Works for Exchange Online Exchange Online a.datum.comClient Accessserver

MicrosoftFederationGateway

Client Accessserver

Domaincontroller

Domaincontroller

23478Mailboxserver

615Use this slide to describe the communication flow if an on-premises user invites an Exchange Online user to a meeting. Explain that Exchange Online is just another federated delegation, the same as any other Exchange Server organization. Therefore, the example here also models other federations. Also, mention that users can view availability information and MailTips, and they can track messages by using delivery reports.Stress that only the Client Access server in adatum.com needs to send a request to the Microsoft Federation Gateway. The Client Access server obtains a token from the Microsoft Federation Gateway, and the Client Access server uses that token to authenticate the connection to the adatum.com Client Access server. Both organizations must have a federation trust with the Microsoft Federation Gateway so that the adatum.com Client Access server trusts the security token.Emphasize that students can use HTTPS to help protect all communication across the Internet. In addition, explain that only the Exchange Web Services virtual directory on each organizations Client Access server needs to be able to access the Internet in order to handle the required traffic.1820342A10: Designing and Implementing Integration with Microsoft Exchange OnlineThe Hybrid Deployment ProcessSign up for Office 365Register your domains with Office 365Install the Exchange Server 2013 Client Access and Mailbox server rolesDeploy the Directory Synchronization toolDeploy AD FS (optional)Publish the Exchange Server 2013 Client Access serverRun the Hybrid Configuration WizardTest the hybrid deploymentExplain each step in detail. Mention that some steps, such as activating directory synchronization or enabling federation for Exchange Server, may take substantial time.1920342A10: Designing and Implementing Integration with Microsoft Exchange OnlineOptimizing User Access to Exchange OnlineTo connect Exchange Server on-premises to Exchange Online:Implement Active Directory synchronizationEliminates the need to manage users, groups,and contacts in two locationsProvides a unified GALSimplifies user provisioningConfigure AD FSProvides centralized user managementProvides single sign-on and security policies2020342A10: Designing and Implementing Integration with Microsoft Exchange OnlineThe Hybrid Configuration Wizard in Exchange Server 2013You can use the HCW to configure a hybrid deploymentChanges to the HCW in Exchange Server 2013:One-step process to run the HCWSupport for Edge Transport serversIdentifies the Client Access server automatically, so you need to select only Mailbox or Edge Transport serversDetailed status in the configuration processImproved Hybrid Configuration logThe HCW does the following:Configures federated delegationEnables MRS proxyAdds .mail.onmicrosoft.com to accepted domainsHelps secure email flow between on-premises and Exchange OnlineThis topic provides an overview of the features and functionalities of the Hybrid Configuration Wizard. Explain the improvements to the Hybrid Configuration Wizard in Exchange Server 2013, but also spend some time showing what the Hybrid Configuration Wizard configures. Students need to understand what the Hybrid Configuration Wizard does, so they can troubleshoot it.2120342A10: Designing and Implementing Integration with Microsoft Exchange OnlineMigrating an Existing Hybrid Deployment to Exchange Server 2013Verify the Exchange Online tenant version and upgrade if necessaryBefore you can install Exchange Server 2013 into your on-premises Exchange Server organization, you need to fully upgrade any Exchange Online tenant versions that are lower than 15.0.000.0!Install Exchange Server 2013 into the on-premises organizationRun the HCW for Exchange Server 2013Test the hybrid deployment

This topic is important if any of the students has an existing hybrid deployment. Before going into too much detail, ask if any students have an existing hybrid deployment. If no student does, just quickly go over the steps so they understand the migration process.2220342A10: Designing and Implementing Integration with Microsoft Exchange OnlineManaging a Hybrid Deployment

On-premises

A hybrid deployment is a complex configuration that you need to monitor to make sure all components work correctlyMake sure the Directory Synchronization tool is running reliablyManage the users, distribution lists, and contacts only from on-premises Exchange ServerMonitor message routing between on-premises and Exchange OnlineUse monitoring software to monitor the federated delegationRegularly run the Microsoft Remote Connectivity Analyzer to verify the configurationMonitor the middle-tier componentsMonitoring a hybrid deployment is quite a complex task, because students need not only to monitor all of the components that a hybrid deployment requires, such as the Directory Synchronization tool and federated delegation, but also to monitor the interaction between these tools. Explain the key areas to consider when planning monitoring of a hybrid deployment.2320342A10: Designing and Implementing Integration with Microsoft Exchange OnlineBest Practices for Implementing a Hybrid DeploymentUse the HCWTo test on-premises Exchange Server from the Internet, use the Microsoft Remote Connectivity AnalyzerUnderstand why your organization wants to do a hybrid deploymentTest the hybrid deployment before you move production mailboxesStart slowly, and up speed up after everything is workingIf you run Exchange Server 2007 or Exchange Server 2010, combine the Exchange 2013 Client Access and Mailbox server roles on a single serverDo not change the MX resource record until you know that the hybrid deployment is workingMention some of the best practices, and tell the students that best practices are advice that might help or not, depending on their situation. Talk about the usefulness of one or another best practice.2420342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLab: Designing Integration with Exchange OnlineExercise 1: Designing Integration with Microsoft Exchange OnlineEstimated Time: 60 minutesExercise 1: Designing Integration with Microsoft Exchange OnlineA. Datum currently has the following Exchange Server 2013 servers deployed:Berlin site:BER-CAS1 (Client Access role)BER-MBX1 (Mailbox role)London siteLON-CAS1 (Client Access role)LON-MBX1 (Mailbox role)Additionally, the following information is available:The London site is connected to the Internet and uses Forefront TMG as a firewall solution.Autodiscover from the Internet is currently not configured and not working.The Exchange Server organization has a non-Microsoft email relay to send and receive messages to and from the Internet, and it does not use Exchange Server 2010 Edge Transport servers.You have a subscription to a test implementation of Exchange Online. The Exchange Online tenant has a version of 14.16.190.13.Your manager asks you not only to evaluate Exchange Online on its own, but also to connect the existing Exchange Server organization with Exchange Online. You have the following requirements:Free/busy information and MailTips must be available on both sides.Mailbox moves must be done in either the Exchange Admin Center or in Windows PowerShell.All new and existing user mailboxes must be managed from A. Datums internal ADDS domain adatum.com.The users must only sign in once, when they start their computer.The users must not store their passwords in Exchange Online or anywhere that Microsoft can access.Design a solution that enables A. Datum to move some mailboxes to Exchange Online while the users can still use their domain accounts.2520342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLab ScenarioA. Datum is considering moving some mailboxes to Exchange Online. A. Datum wants to ensure not only that the users can still use their internal adatum.com domain accounts to authenticate, but also that they can access their mailboxes online. The mailbox location should be transparent to users when they access their mailbox, send email messages, or book meetings.2620342A10: Designing and Implementing Integration with Microsoft Exchange OnlineLab ReviewBefore you can run the Hybrid Configuration Wizard in the Exchange Admin Center, what do you need to do?You run Exchange Server 2010 in a hybrid deployment. Your current Exchange Online tenant is version 14.16.190.13. What do you need to do before you can install Exchange Server 2013?QuestionBefore you can run the Hybrid Configuration Wizard in the Exchange Admin Center, what do you need to do?AnswerBefore you can run the Hybrid Configuration Wizard in the Exchange Admin Center, you need to add the Office 365 tenant in the Exchange Admin Center.QuestionYou run Exchange Server 2010 in a hybrid deployment. Your current Exchange Online tenant is version 14.16.190.13. What do you need to do before you can install Exchange Server 2013?AnswerBefore you can install Exchange Server 2013, you first need to upgrade the Exchange Online tenant to version 15.0.000.00 or higher.2720342A10: Designing and Implementing Integration with Microsoft Exchange OnlineModule Review and TakeawaysReview QuestionsToolsCommon Issues and Troubleshooting TipsReview QuestionsQuestionHow can you deploy Exchange Online?AnswerYou can use Exchange Online only, Exchange Server on-premises only, or a hybrid deployment that connects Exchange Server on-premises and Exchange Online.QuestionWhat additional functionality does Exchange Online Protection provide?AnswerExchange Online Protection provides a cloud-based antivirus and anti-spam service that scans email messages and cleans them if it finds malicious software.QuestionWhat functionality does federated delegation provide?AnswerExchange Server federated delegation provides you with the ability to exchange information between two Exchange Server organizations, such as Exchange Server on-premises and Exchange Online. For example, you can share free/busy information, share MailTips, and track messages by using delivery reports.QuestionWhen planning a hybrid deployment for your organization, what components do you need to consider implementing, and what is their purpose?AnswerYou need to configure Active Directory synchronization by using the Directory Synchronization tool. You have the option of implementing AD FS for SSO. You need to configure federated delegation in order to exchange information such as free/busy information and MailTips. To configure federated delegation, you can use the Hybrid Configuration Wizard.2820342A(More notes on the next slide)10: Designing and Implementing Integration with Microsoft Exchange OnlineQuestionYou created a new mailbox in Exchange Online, and now the on-premises users complain that they cannot see the new mailbox. What can you do?AnswerThere is nothing that you can do, because there is no way to synchronize Exchange Online mailboxes or accounts to the on-premises environment. To correct this problem, you need to delete and then re-create the mailboxes in the on-premises ADDS by using the Exchange Admin Center or Exchange Management Shell. Then you need to wait for the Directory Synchronization tool to synchronize the mailbox to Exchange Online.ToolsYou can use the following tools to monitor and test a hybrid deployment.29(More notes on the next slide)20342AToolUse forWhere to find itMicrosoft Remote Connectivity AnalyzerTroubleshooting your on-premises single sign-on, ActiveSync, or Exchange Web Service.https://www.testexchangeconnectivity.com/Test-FederationTrust cmdletMake sure the federation trust is working correctly.Exchange Management ShellStart-OnlineCoexistenceSync cmdletStart a manual directory synchronization to immediately synchronize ADDS with Office 365.Microsoft Online Directory Sync Shell10: Designing and Implementing Integration with Microsoft Exchange OnlineCommon Issues and Troubleshooting Tips3020342AIssueTroubleshooting TipFree/busy information is not available for mailboxes in Exchange Online when accessing the information of mailboxes that are stored on-premises.Make sure the certificates are working and that Autodiscover works from the Internet. Use the Microsoft Remote Connectivity Analyzer to verify that Office 365 can contact your on-premises Autodiscover record correctly.Moving mailboxes between Exchange Online and on-premises fails.Make sure the on-premises database has all copies mounted and that they are healthy. If one of them is not healthy, the Mailbox Replication Service proxy does not allow mailboxes to move to this database.10: Designing and Implementing Integration with Microsoft Exchange Online


Who Killed God

Who Killed God

Documents
Chapter-01

Chapter-01

Documents
Introduction to Six Sigma

Introduction to Six Sigma

Documents
1 시스템분석입문

1 시스템분석입문

Documents
Iron Mills Essay

Iron Mills Essay

Documents
Life Is Just A Dream - Or Is It?

Life Is Just A Dream - Or Is It?

Documents
Oedipus The King: The Ideal Tragic Play

Oedipus The King: The Ideal Tragic Play

Documents
Star Wars Trivia!

Star Wars Trivia!

Documents
European Colinization of Latin America

European Colinization of Latin America

Documents
Fortran

Fortran

Documents
Explore The Levels of Creation

Explore The Levels of Creation

Documents
Acetone Peroxide

Acetone Peroxide

Documents
Heidegger Kritik

Heidegger Kritik

Documents
Tragic Heroes

Tragic Heroes

Documents
расписание электричек Москва-Железка

расписание электричек Москва-Железка

Documents
Physical Modelling Synthesis Overview

Physical Modelling Synthesis Overview

Documents
United States Constitution

United States Constitution

Documents
Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Documents
Minne hävisivät soneran rahat

Minne hävisivät soneran rahat

Documents
Simple Functions in Haskell

Simple Functions in Haskell

Documents
(Tesla) - The Tesla Magnetic Car Engine

(Tesla) - The Tesla Magnetic Car Engine

Documents
Cakes Recipes

Cakes Recipes

Documents
18 Tricks to Teach Your Body

18 Tricks to Teach Your Body

Documents
The Last Carnival I Ever Saw

The Last Carnival I Ever Saw

Documents
Venture Capital

Venture Capital

Documents
Rubik's cube solution

Rubik's cube solution

Documents
Daniel Zanella and Alexander Weygers

Daniel Zanella and Alexander Weygers

Documents
How Computer Keyboards Work

How Computer Keyboards Work

Documents
Star Wars Original Trilogy Trivia (Episodes IV-VI)

Star Wars Original Trilogy Trivia (Episodes IV-VI)

Documents
Plato - Symposium

Plato - Symposium

Documents