sharepoint 2013 hybrid deployment: end-to-end configuration process
DESCRIPTION
SharePoint 2013 Hybrid Deployment: End-to-end configuration processTRANSCRIPT
SharePoint 2013 Hybrid Deployment: End-to-end configuration process
#SPSSTHLM14Sam HassaniJanuary 25th, 2014
SharePoint Saturday
Stockholm
Thanks to our sponsors!
SharePint
Silver
Bronze
Raffle
Platinum
Gold
Who am I? Sam Hassani Principal Consultant @ BrightStarr Microsoft Certified Master: SharePoint SharePoint 2013 Beta Engineer PFE SharePoint 2013 Ignite Instructor
[email protected] @samhassa www.samhassani.com
Agenda Why Hybrid? Configuring Hybrid
Infrastructure Identity Mangement SharePoint
Challenges of Hybrid Resources Questions
Why Hybrid?
SharePoint Online is attractive…
Focus on the core business
Benefit from the latest and greatest
Easily scale up and down
More easily collaborate with external partners
But my business runs on-premises…
Existing investments with lots of data
SharePoint Online has limitations
Protect sensitive data
How about a “Hybrid” deployment?
“Leverage the
strengths of both parts
while minimizing the
components’
weaknesses”
+ =HybridOnline Azure IaaS/ On-
premises
Common Hybrid Scenarios
Rapid provisioning of new workloads
Migrate existing workloads in a phased
approach
Supplement cloud environment
Compliance rules stipulate data hosting location
Supported SharePoint Hybrid Scenarios Hybrid Search
Get Search Results in SharePoint On-Premises or in SharePoint Online from the SharePoint On-Premises or SharePoint Online search indexes
Hybrid Business Connectivity Services (BCS) Enable a SharePoint Online site collection to work with data in an on-premises
OData service
Hybrid Duet Enterprise Online Enable SharePoint Online users to perform both read and write operations against
an on-premises SAP system.
Results from the Cloud
Results from On Premises
Configuring Hybrid
Configuring Hybrid Overview Identity management infrastructure
Configure single sign-on (SSO) for Office 365
Environment infrastructure Choose appropriate Hybrid topology On-premises deployment configuration
Configure SharePoint Search BCS
Identity Management
Cloud Identity
Single identity in the cloud
Directory Synchronization
Single identity
Federated Identity (SSO)
Single federated identity
Configure Directory Synchronization Meet pre-requisites Activate Directory Synchronization
Install and configure the Directory Sync tool
Activate Synced users
Configure SSO Prepare Active Directory
Windows Server 2003 R2 functional level at a minimum UPNs are correctly set Register public domain
Deploy ADFS 2.0 Install the Windows Azure Active Directory Module for
Windows PowerShell Ensure Directory Synchronization is activated and
functioning correctly Set up a trust between ADFS and Windows Azure AD
New-MsolFederatedDomain –DomainName <domain>orConvert-MsolDomainToFederated –DomainName <domain>
Demo Environment
Office 365Windows Azure VMs
Domain ControllerSP 2013SQL 2012
https://intranet.hassanionprem.comhttps://my.hassanionprem.comADFS
DirSyncMSOL tools
https://brightstarrdevelopment.sharepoint.comhttps://brightstarrdevelopment-my.sharepoint.com
hassanionprem.com brightstarrdevelopment.onmicrosoft.com
DemoSingle Sign On Experience with ADFS and Office 365
Troubleshooting Configuration OnRamp for Office 365
https://onramp.office365.com/onramp
Force a directory synchronization: %programfiles%\Windows Azure Active Directory Sync DirSyncConfigShell.psc1 Start-OnlineCoexistenceSync
Deactivate directory synchronization using Windows PowerShellSet-MsolDirSyncEnabled –EnableDirSync $falseGet-MsolCompanyInformation.DirectorySynchronizationEnabled
One-way outbound topologyMICROSOFT DATA CENTER INTERNET INTRANET
SharePoint Online CANNOT QUERY SharePoint Server
2013
SharePoint Online
Site collection
Search portal: Local search results ONLY
Search: One-way outboundBCS: Not supportedDuet: Not supported
SharePoint Server 2013 CAN QUERY SharePoint
Online
Primary web application
Search portal: Local + Remote search results
Outbound
Inbound
Office 365 Tenant SharePoint Server 2013
Local Local/Remote
One-way inbound topologyMICROSOFT DATA CENTER INTERNET INTRANET
SharePoint Online CAN QUERY SharePoint Server
2013
SharePoint Online
Site collection
Search portal: Local search results ONLY
Search: One-way inboundBCS: SupportedDuet: Supported
SharePoint Server 2013 CANNOT QUERY
SharePoint Online
Primary web application
Office 365 Tenant SharePoint Server 2013
PERIMETER NETWORK
Reverse proxy
Outbound
Inbound
Local
Search portal: Local + Remote search results
Local/Remote
Two-way bi-directional topologyMICROSOFT DATA CENTER INTERNET INTRANET
SharePoint Online CAN QUERY SharePoint Server
2013
SharePoint Online
Site collection
Search: BidirectionalBCS: SupportedDuet: Supported
SharePoint Server 2013 CAN QUERY SharePoint
Online
Primary web application
Office 365 Tenant SharePoint Server 2013
PERIMETER NETWORK
Reverse proxy
Outbound
Inbound
Search portal: Local + Remote search results
Local/Remote
Search portal: Local + Remote search results
Local/Remote
Configure SharePoint For Hybrid Search Publish SharePoint externally through Reverse-Proxy
Device Configure SharePoint On-Premises Farm
Configure server-to-server (S2S) authentication
Configure result source – remote SharePoint index URL of remote location Secure Store (for client certificate)*
Configure Query rule to show remote results
DemoSearch Hybrid User Experience and Configuration
Handling the Social Experience Users work in sites in both SharePoint On-premises and SharePoint Online E.g. Intranet On-premises, and Project/Collaboration sites Online
Which social experience should users be presented with? Editing Profile? Newsfeed? SkyDrive Pro?
DemoConsistent Social Experience in a Hybrid Environment
Hybrid Challenges What about the rest of the social experience…
Where am I?!
No “Test” tenants in SharePoint Online…
Rapid, incremental updates to SharePoint online
How do you handle IT Operations?
Final Thoughts Hybrid is not the answer to every business requirement
Hybrid solutions do have their place
Understand the strengths and weakness of Hybrid
Resources Hybrid for SharePoint Server 2013:
http://technet.microsoft.com/en-us/library/jj838715.aspx
Windows Azure AD PowerShell http://technet.microsoft.com/en-us/library/jj151815.aspx
Office 365 Communities and Wikis http://community.office365.com/en-us/default.aspx
Your Communitywww.samhassani.com, @samhassa
...and visit our sponsors who made this day possible!
Thank you!
Please rate this session...