exchange server 2013 and sharepoint server 2013 integration
TRANSCRIPT
Exchange Server 2013
and SharePoint Server
2013 Integration
Kamal Abburi
Premier Field Engineering
Introduction
Integration Architecture
Configuration
Terminology and Components
Site Mailboxes, eDiscovery, Photos, My Tasks
Next steps
Welcome.
Exchange 2013,
SharePoint 2013
and Lync Server
2013 provide the
rich cross-product
functionality and
many features that
integrate with each
other.
10/8/2013 2
The new Office
Cloud Services Perpetual
Always up-to-date
Office + Cloud Services 2013 versions
Office on-premises
IntegrationSHAREPOINT EXCHANGE LYNC OFFICE WEB
APPS
Server to Server
Authentication
Site
Mailboxes
High Resolution
Photos
Task
Synchronization
Unified Contact
Store
OAuth 2.0
Server-to-Server authentication is a new feature of
Exchange Server 2013, Lync Server 2013, and SharePoint
Server 2013 that allows a server to request resources of
another server on behalf of a user.
Server-to-Server Trust
S2S
Configuration
https://<server name>/autodiscover/metadata/json/1
https://<server name>/metadata/json/1
https://<web app name>/_layouts/15/metadata/json/1
Server JSON metadata endpoint
Example
7
eDiscovery User
sends a query
SharePoint Server
generates an
access token
SharePoint Server
sends the access
token to the
Exchange server.
Exchange server
validates the access
token and sends
the query results
SharePoint Server
sends the query
results to the
eDiscovery User
1
2
3
45
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or
other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must
respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided
after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION
Exchange 101
8
Exchange Server 2013
Exchange
Web
Services
10
Exchange Web Services (EWS) provides many
operations that enable you to access
information from the Exchange store.
Certificates
EWS endpoint https://<clientaccessserver>.domain.com/ews/exchange.asmx
https://Exchange Server/ews/Exchange.asmx/s/GetUserPhoto?email=email address&size=size code
Autodiscover
11
The SCP object contains the
authoritative list of
Autodiscover service URLs for
the forest
Internet based Clients use the
primary SMTP domain
address from the user's e-mail
address.
©2012 Microsoft Corporation. All rights reserved. ©2012 Microsoft Corporation. All rights reserved.
• Install Exchange Web Services Managed API inall WFEs (Web Frontend Servers)
• Below Service Applications have to be createdwith the services instances started.
App Management Service Application
Subscription Settings Service Application
User Profile Service Application
(SID, UPN, Work Email, SIP Address)
Search Service Application (For eDiscovery)
Work Management Service Application (for My Tasks Integration)
©2012 Microsoft Corporation. All rights reserved. ©2012 Microsoft Corporation. All rights reserved.
Autodiscover setup.
Proper RBAC roles to access and manage Site Mailboxes Mailboxes on Exchange 2013.
Outlook 2013 Professional PLUS (Site Mailboxes).
Configuration Configure the SharePoint
2013 server to trust the
Exchange Server 2013
server
Configure permissions on
the SharePoint 2013
server
Configure the Exchange
Server 2013 server to
trust the SharePoint 2013
server
New-SPTrustedSecurityTokenIssuer –MetadataEndpoint
"https://<HostName>/autodiscover/metadata/json/1" –
Name "<FriendlyName>"
$exchange=Get-SPTrustedSecurityTokenIssuer
$app=Get-SPAppPrincipal -Site http://<HostName> -
NameIdentifier $exchange.NameId $site=Get-SPSite
http://<HostName>
Set-SPAppPrincipalPermission –AppPrincipal $app –Site
$site.RootWeb –Scope sitesubscription –Right fullcontrol -
EnableAppOnlyPolicy
cd c:\'Program Files'\Microsoft\'Exchange
Server'\V15\Scripts
.\Configure-EnterprisePartnerApplication.ps1 -
AuthMetadataUrl
https://<HostName>/_layouts/15/metadata/json/1 -
ApplicationType SharePoint
Site Mailboxes
©2012 Microsoft Corporation. All rights reserved.
Site Mailbox Architecture
17
Demo Site Mailboxes
Provisioning
and
Management
18
Site Mailboxes are
provisioned and managed
through SharePoint 2013.
Policies govern the email
characteristics sent to and
received from the site mailbox
Site Mailbox
App
Team Site
Lifecycle Policy
Team Site
Membership
Site Mailbox
Provisioning Policy
eDiscovery
19
SSA Proxy
Enterprise App Farm (2013)
Timer job
Status response
Status query/response
SharePoint Services Farm (2013)
Search Service Application (SSA) Service
eDiscovery response
Status query/response
EWS Proxy
eDiscovery response Query/action
Lync 2013
Exchange Web Service
Exchange 2013Windows File Shares
crawl/results
SSA Proxy
SharePoint Content Farm
(2013)
Server-to-Server
Trust/OAuth
Actions Table:HoldRelease HoldGetStatus
Timer job
Query for pending
actions/status response
Contoso contentContoso site
Lync content archived in
Exchange
Query for
pending
actions/action
response/
status update
Exchange query
action/status request
Exchange
data/status
response
Exch
data/
status
Exch
action/
status
request
crawl/results
query
Discovery
response
Status
query/
response
Write
actions
Search index
Pending
action query/
response
SSA admin_db
Query/acation/results
1
2
eDiscovery
Center (EDC)
3B
9
3B
10
6
12
13
8
5
6
11
3B
3A
eDiscovery query or action data
eDiscovery query response data
eDiscovery status query/response data
eDiscovery request for action status for
Exchange traffic
eDiscovery query or status response from
Exchange
Server-to-Server Trust/OAuth
Exchange data/
status response
Query/action
eDiscovery response
Status query/response
Exchange action/
status request
Legend
2
9
7
4
9
Server-to-Server
Trust/OAuth
Components
21
Demo eDiscovery
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or
other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must
respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided
after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION
High-Resolution
User Photos
22
©2012 Microsoft Corporation. All rights reserved.
Exchange Client Access Server
Exchange Mailbox Server
Lync
Lync Server
My Site
Outlook client or OWA
SharePoint Server
Lync 2013 client maintains a hanging GetConnection with the Exchange server to get photo updates. (HTTPS Get request = 443)
Exchange 2013 pushes the photo to Active Directory(LDAP:389)
The photo is synced from AD DS to the Lync Address Book Service (ABS) so legacy clients can get the same photo. (LDAP:389)
User updates photo in either Outlook, SharePoint, or Lync. Once updated, the updated photo is used across all Office applications.
Http: 443
Http or https
SharePoint caches the user photo in the MySite database (Https:443)
Internal Exchange communication
Https:443 using external URLs set in Exchange
Hi- res User Photo
Legacy Lync client
24
Configuration On Exchange
AutoDiscover
EWS
On SharePoint
EWS Managed API
Configure PhotoSync
Configure server-
to-server
authentication.
Users upload a
photo using the My
Account page in
Outlook Web App
High
Resolution
Photo
The photo is stored in the Exchange 2013
mailbox
Access to the photo is provided through
EWS
GET
/ews/exchange.asmx/s/GetUserPhoto
[email protected]&size=HR648X648
&trace=1 443 P~00000004-0000-0ff1-
ce00-000000000000
LYNC/5.0.8308.276/Storage 200 0 0 46
Users can upload pictures with pixel
ranges from 48×48 to 648×648. The
photos are resized:
64×64 is used for the AD thumbnail.
96×96 is used for Outlook Web Access,
Outlook, Lync Web Access, and Lync 2013.
648×648 is used for Lync Web Access and
Lync 2013.
26
Demo High Resolution Photos
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or
other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must
respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided
after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION
Exchange Task
Synchronization
27
©2012 Microsoft Corporation. All rights reserved. ©2012 Microsoft Corporation. All rights reserved.
Exchange Server 2013
Work Management Service application
Project Server 2013
SharePoint Server 2013
Project Web Access sites with tasks
Exchange Sync Timer Job
Search Index
Outlook 2013
User may view and edit tasks in Outlook
User Profile Service application
Search Service application
TasksMy Site
Other Sites
Users opt-in
Users may view tasks on My Tasks on their
My Site
Tasks
Tasks
29
Demo Exchange Task Synchronization
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or
other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must
respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided
after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or
other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must
respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided
after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION
Contact
Kamal Abburi
Premier Field Engineering
www.microsoft.com/microsoftservices