today's unified communications: to upgrade, coexist, or go 'all in' with the cloud -...
DESCRIPTION
On March 13th & 14th , Eric Inch reviewed Exchange and Lync Server 2013 new features, discussed migration best practices, and hybrid scenarios with Office 365. Download our slide deck (PDF, 2 MB) to take a deeper dive on Microsoft's Unified Communications. And for more information on this or other topics, visit our blog at www.cdhtalkstech.comTRANSCRIPT
Today’s Microsoft Unified
Communications
Quick Facts
About Us
• 23nd Year
• Grand Rapids & Royal Oak
• 30 Staff
Approach
• Vendor Independent
• Non-reseller
• Professional Services Only
Partnerships
• Microsoft Gold
• VMware Enterprise
• Citrix Silver
• Cisco Premier
• Novell Gold
Microsoft Gold Partner
Competencies
• Four Gold
• Eight Silver
Successes
• Customer
Excellence Award
• Virtual Technical
Specialist (VTSP)
• Managed Partner
• Numerous
Partner Awards
Pinpoint
• Microsoft’s official partner directory
• 5-star rating
Expertise
Get Social with C/D/H
facebook.com/cdhtech @cdhtweetstech
www.cdhtalkstech.com www.linkedin.com/company/cdh
Eric Inch Lead Consultant
Unified Communications
& Infrastructure
CISSP, MCITP, MCTS, CCA, CCNA
Your Presenter
Agenda
• Technologies
– Exchange Server 2013
– Lync Server 2013
– Office 365
• Better Together
• Hybrid
Unified communications
• Exchange Server – Email, Calendaring, Voicemail, Fax
• Lync Server – Instant messaging, Presence,
Conferencing,
Telephony
• Office 365
Exchange Server 2013
• Architecture
– Server roles
• Site mailboxes and Public Folders
• Security
• OWA enhancements
Architecture
• Roles – Exchange 2007/2010 – Client Access, Hub
Transport, Mailbox, Unified Messaging, Edge Transport
– Exchange 2013 – Client Access, Mailbox • Hub transport and Unified Messaging roles split
between two roles
• Exchange Administrative Center
• Public Folders
• Site Mailbox
Requirements
• Co-existence scenarios
– Exchange 2007 and Exchange 2010
• AD functional requirements
– Forest and domain at Server 2003 native or higher
• Operating System
– Server 2008 R2 w/ SP1 or Server 2012
• Supported clients
– Outlook 2007 w/ SP3 and Nov 2012 CU
– Outlook 2010 w/ SP1 and Nov 2012 CU
– Outlook 2013
– Outlook 2011 for Mac
– Entourage 2008 for Mac, Web Services Edition
Virtualization
• All Exchange 2013 server roles are supported in a virtual machine.
– DAG members included
– Can’t save and restore state on disk when moved or taken offline.
– All failover activity occurring at the hypervisor level must result in a cold boot
when the virtual machine is activated on the target node.
• Live migration of virtual machines is supported.
• Only management software (for example, antivirus software, backup
software, or virtual machine management software) can be deployed on
host.
• Virtual machine snapshots NOT supported.
• Virtual processor-to-logical processor ratio no greater than 2:1
– Microsoft recommends a ratio of 1:1.
Architecture - Roles
• Client Access Server – CAS array
– Authentication, Redirection and Proxy
– No data rendering
– No more RPC – All client connections RPC/HTTP
– AD site for CAS and MBX
• Mailbox Server – Database Availability
– Data rendering
Client Access
• A client resolves the namespace to a load balanced virtual IP address.
• The load balancer assigns the session to a CAS member in the load balanced pool.
• CAS authenticates the request and performs a service discovery by accessing Active Directory for: – Mailbox version
– Mailbox location information
• CAS makes a decision on whether to proxy the request or redirect the request to another CAS
• CAS queries Active Manager responsible for the database to determine server hosting active copy.
• CAS proxies the request to the Mailbox server hosting the active copy.
Managed Availability
• Built-in monitoring and recovery
actions
• Internal process that runs on
EVERY Exchange Server 2013
server
• Two Processes
– Exchange Health Manager
Service & Exchange Health
Manager Worker
• Probe engine measures and
collects Data
• Monitor runs collected data against
business logic to determine health
• Responder take recovery actions
• Active Manager uses information
Resiliency
• Automatic Datacenter
switchover
– Independent site for
witness
– Location isolated from
network
failures affecting DAG
members
• Single global namespace
– Multiple IP addresses
• Separation of Client Access
and
Mailbox
– Any CAS will proxy to
any Mailbox
server hosting active
copy
Exchange Administrative Center
• No more Exchange Management Console
(EMC)
• Web based Admin Center
– Owa.domain.com/ecp
– Support for IE8/9/10, FireFox 13+, Safari 5+,
and Chrome 20+
• Contextual help links
• Notifications
• Hybrid navigation
Architecture – Public Folders
• Special Mailbox
– Stores Public Folder Hierarchy and Content
• Database Availability Groups
– Public folders take advantage of continuous
replication
• Migration
– Export-PublicFolderStatistics.ps1,
PublicFoldertoMailboxMapGenerator.ps1
– New-PublicFolderMigrationRequest
Architecture – Site Mailbox
• Emails and Documents
presented together
– Accessed from either
Outlook or SharePoint
• Filing emails and document
from Outlook 2013
• SharePoint permissions
• eDiscovery search scope
• Lifecycle policy
• Open in Web Browser
Security
• Native virus and spam protection
• Policy enforcement
• Active Directory Rights Management
• Discovery and Retention
Security – Virus & Spam
• Malware detection native
• Notify internal or external senders,
Administrator
• Customize notifications
• Consider Exchange Online Protection
Security – Data Loss Prevention
• Sets of conditions to filter email – rules, actions, exceptions
– keyword matches, regular expression evaluation, dictionary search
• Policy Templates – PCI DSS, HIPAA, SSN
Confidentiality, US Patriot Act
• AD RMS template
• Policy Tips – Notify sender with a Policy Tip
If the message...Is sent to 'Outside the
organization‘ and The message contains
these sensitive information types: 'U.S.
Social Security Number (SSN)' or 'Drug
Enforcement Agency (DEA) Number'
Do the following...Set audit severity
level to 'High‘ and Notify the sender that
the message can't be sent, but allow the
sender to override and provide
justification. Include the explanation
'Unable to deliver your message. You
can override this policy by adding the
word 'override' to the subject line.' with
status code '5.7.1‘
Policy group membership HIPAA
Policy
Rule mode Enforce
Security - Discovery
• Unified Search
– Mailbox and Archive. In-Place eDiscovery
• FAST Search
– Windows Search replaced with Microsoft
Search Foundation
– Improved indexing and Querying performance
• In-Place eDiscovery & Hold Wizard
• eDiscovery Search Center with SharePoint
2013
Mobile Experience
• Windows 8 UI
• Mobile device form factors
• Full desktop – 3 Column
• Tablet – 2 Column. ?layout=twide
• Mobile Phone – Single Column.
?Layout=tnarrow
• Offline support
• Outlook Apps
• Calendar Views
• Contact information
Exchange Demo
Lync Server
• Instant messaging – Internal, federated, public IM
• Presence – Real time access to user status
• Conferencing – IM conferencing, audio conferencing, web
conferencing, video conferencing, and application sharing
• Telephony – Voice over IP (VoIP)
Lync Server 2013
• SQL
• Simul-ring, delegates, voice mail escape
• Conferencing Enhancements
• Archiving Changes
• Persistent chat
• Enhanced VDI support
• Hybrid
Architecture
• Roles
• High Availability
• Site Resiliency
– Pool Pairing
• Persistent Chat
• Archiving / Monitoring
• Hybrid
Roles
• Enterprise or Standard Edition
• SQL Server (2008 R2 or 2012)
– Mirroring for back-end availability
• Edge server
• Mediation server
• Director
• Persistent Chat
• Office Web Apps
• No more
– AV conferencing pools
– Monitoring or archiving servers
Server Requirements
• Operating System
– Server 2008 R2 w/ SP1 or Server 2012
Recommended
CPU EEs, SE, SQL
Edge, Mediation, Director
64-bit dual processor, hex-core, 2.26 gigahertz (GHz) or higher
64-bit dual processor, quad-core, 2.0 gigahertz (GHz) or higher
Memory EEs, SE, SQL
Edge, Mediation, Director
32 gigabytes (GB)
16 gigabytes (GB)
Disk
EEs, SE, SQL
Edge, Mediation, Director
8 or more 10,000 RPM hard disk drives – 2 RAID 1, 6 RAID 10
Solid state drives
4 or more 10,000 RPM hard disk
Solid state drives
Network EEs, SE, SQL
Edge, Mediation, Director
1 dual-port network adapter, 1 Gbps or higher (2 recommended in NIC team)
1 dual-port network adapter, 1 Gbps or higher (2 recommended in NIC team)
Pool Pairing
• No distance restriction – High speed
connectivity recommended
• Enterprise to Enterprise, Standard to
Standard
• Physical to Physical, Virtual to Virtual
• SQL Mirroring
• Capacity Planning
• RTO – 30 minutes, RPO – 30 minutes
Persistent Chat
• Topology Builder / Lync Control Panel
– Role added to topology like any other role
– Management included in Control Panel
• Integrated with Lync client
• 20,000 users per server, 80,000 per pool
• Rooms
– Privacy - Open, Closed, Secret
– Mode – Normal or Auditorium
Archiving
• Archiving now co-located on front-end
• Exchange Server 2013 integration
– Archive stored with mailbox
– Litigation hold, discovery search
• SQL Store Mirroring
• Whiteboards and Polls
• Not archived – Peer-to-Peer file, AV for
Peer-to-Peer, App Sharing Peer-to-Peer
• Persistent chat archived to SQL
Clients
• Lync mobile clients – Full Audio, Video, Application sharing
• Federation with external Parties – XMPP native on Front-End
• Skype Integration – Video interoperability within 18 months
• Google Talk
• Enhanced VDI support – Media redirection architecture
– VDI plugin
– Limitations – No multi-view video, recordings
THE NEW LYNC WORKS ACROSS PLATFORMS & DEVICES
Browser
Tablet
Smartphone
Mac
PC
Microsoft Academy Live -
January 2013: Do Not
Distribute
Presence
and IM
Windows 8
& Windows RT
Windows
Phone Android iPhone iPad
Lync and
Lync online
connectivity
New UI, photo,
status,
presence
View Lync
contact list
View contact
card
IM, multiparty
conversations
Distribution
list expansion
Lync
Meetings
Windows 8
& Windows RT
Windows
PhoneAndroid iPhone iPad
Join Lync
Meetings with
a single touch
Voice and Video
over IP (3g/4g &
WiFi)
Simultaneous
Multi-Party
Video
View shared
Lync Meeting
content
Enterprise
voice
Windows 8
& Windows RT
Windows
PhoneAndroid iPhone iPad
Single-number
reach
Voice and Video
over IP (3g/4g &
WiFi)
Call-via-work
Lync Web App
• Cross-browser HTML
and JavaScript
• No Microsoft Silverlight
• Windows and Mac
• Full presentation
capabilities
• Audio/Video sharing
• No more Attendee
Conferencing
• Room Systems
• Gallery View – Multiple video streams up
to five participants
– HD Video up to 1080P in multiparty conferences
• Presenter Only Video Mode / Video Spotlight
• Dial-out Conferencing without EV
• Video Preview
• OneNote
One Note Integration
• OneNote share
• accessible directly from
a Lync Meeting
Enterprise Voice
• Simul-ring, delegates, voice mail escape
• Calling party normalization – Manipulation of E.164 to extensions
– Caller ID
• Voicemail Escape – Determine if call answered by mobile and
disconnects mobile voicemail
• M+N
• Location based routing
• Voice Policy for Simul-Ring Routing
Unified Contact Store
• Lync contact lists in Exchange Mailbox
• Shared contact experience – OWA,
Outlook, Lync, Mobile, custom API
• Provisioning users with default contacts
• EWS used for Exchange connectivity
Lync DEMO
Office 365
• Exchange Online
• Lync Online
• SharePoint Online
• Office Web Apps
• SkyDrive
Versions
MidSize E1 E3 E4
# Users 300 Unlimited Unlimited Unlimited
Office Web Apps X X X X
IM/Presence X X X X
Web Conferencing X X X X
Public Web X X X X
Spam/Malware X X X X
AD Integration X X X X
Site Mailboxes X X X X
Advanced Email X X
eDiscovery X X
Hosted UM X X
Business Intelligence X X
Lync Server On-prem X
Pricing (user/month) $15 $8 $20 $22
Exchange Online
• 25 GB mailbox
• Resource and shared mailboxes
• Deleted item/mbx recovery
– 14 days / 30 days
• Exchange Online Protection
– Hosted mail hygiene
• Outlook Anywhere, ActiveSync, Outlook Web
Access
• Blackberry Internet Service
• Rich Co-existence
Exchange Hybrid
• Secure mail routing between on-premises and Exchange Online
organizations.
• Mail routing with a shared domain namespace.
• A unified global address list (GAL), also called a “shared address book.”
• Free/busy and calendar sharing between on-premises and Exchange
Online organizations.
• Centralized control of inbound and outbound mail flow.
• A single Microsoft Office Outlook Web App URL for both the on-premises
and Exchange Online organizations.
• The ability to move existing on-premises mailboxes to the Exchange Online
organization.
• Centralized mailbox management using the on-premises Exchange admin
center (EAC).
• Message tracking, MailTips, and multi-mailbox search between on-
premises and Exchange Online organizations.
• Cloud-based message archiving for on-premises Exchange mailboxes.
Exchange Online Archiving can be used with a hybrid deployment.
Hybrid Architecture
Lync Online
• Instant messaging
– Internal
– Federation
• Presence
• Conferencing
• Hybrid
Enterprise voice for Lync Online on 18 month
roadmap.
Lync Hybrid
• Lync Online 2013
• ADFS and DirSync
• Supported Topology – Completely Lync 2013 on-premise
– Lync 2010 with Lync 2013. Edge and next hop either Lync 2013 or Lync 2010 with latest
CU
– OCS 2007 R2 with Lync 2013. Edge and next hop is Lync 2013
• Users first created on-premise then migrated to Lync Online
• SRV records pointed to on-premises Lync Edge
• Migration considerations 1. User contacts The limit for contacts for Lync Online users is 250. Any contacts beyond that number will
be removed from the user’s contact list.
2. Instant Messaging and Presence User contact lists and groups are migrated with the user account.
3. Conferencing data, meeting content, and scheduled meetings This content is not migrated with the
user account. Users must reschedule meetings after their accounts are migrated to Lync Online
Lync Hybrid
• Functionality
– Integration with on-premise PBX
– Exchange hosted UM
– Hold/retrieve, transfer, call forwarding
– Media Bypass
– Lync Phone Edition
• Limitations
– No response groups
– Remote call control
– Call Center integration
Hybrid Architecture
DirSync ADFS
ADFS Proxy
Lync
LyncEdge
Remote usersMobile devices
SharePoint Online
SharePoint Server SharePoint Online
Standard Enterprise Plan 1 Plan 2
Apps App Catalog and Marketplace x X X X
Collaboration
Team Sites X X X X
Work Management X X X X
Social X X X X
External Sharing X X
Search
Basic Search X X X X
Standard Search X X X X
Enterprise Search X X
Content Management
Content Management X X X X
Records Management X X x X
E-discovery, ACM, Compliance X X
Business Intelligence
Excel Services, PowerPivot,
PowerView X x
Scorecards & Dashboards X
Business Solutions
Access Services X x X
Visio Services X X
Form Based Application X X
SharePoint 2013 Workflow X x X
Business Connectivity Services x x X
http://office.microsoft.com/en-us/sharepoint/collaboration-tools-compare-sharepoint-plans-FX103789400.aspx
Identity Options
Cloud ID Cloud ID + DirSync Federated IDs + DirSync
Pros
• No servers required on-
premise
Cons
• No SSO
• Separate credentials,
different password
policies
Pros
• Users accounts
administered on-
premise
• Allows for co-existence
scenarios
Cons
• No SSO
• Separate credentials,
different password
policies
• Single server
deployment
Pros
• SSO with corporate
credentials
• Accounts administered
on-premise
• Users on-premise
password policy
• Allows for hybrid
scenarios
Cons
• Additional server
infrastructure
Single Sign-on
• Accessing hosted
services with on-
premise credentials
• Requirements
– Active Directory
Federation Services
– Active Directory
DirSync
Office 365 DEMO
Upcoming Events
• March 19: SharePoint Custom
Development
• March 27: System Center Service
Manager-The Shining Star in the
System Center Suite
• April 17 & 18: SharePoint Executive
Roundtable
Royal Oak 306 S. Washington Ave.
Suite 212
Royal Oak, MI 48067
(248) 546-1800
Grand Rapids 15 Ionia SW
Suite 270
Grand Rapids, MI 49503
(616) 776-1600
Thank You
www.cdh.com