david tesar | microsoft technical evangelist
DESCRIPTION
IT Professionals 04 | Active Directory on IaaS. David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager . Why AD on Windows Azure? AD Architecture Options. Agenda. Windows Azure AD vs VM with AD on IaaS. Lync Online. Exchange Online. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/1.jpg)
IT Professionals04 | Active Directory on IaaS
David Tesar | Microsoft Technical EvangelistDavid Aiken | Microsoft Group Technical Product Manager
![Page 2: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/2.jpg)
Agenda • Why AD on Windows Azure?• AD Architecture Options
![Page 3: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/3.jpg)
Windows Azure AD vs VM with AD on IaaS
AzureAD
AD
Office 365
AzureAD
AD
ExchangeOnline
SharePointOnline
LyncOnline
CRM Online
WindowsInTune
![Page 4: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/4.jpg)
Contoso CORP SITE – Las
Vegas, NV
Local authentication in Windows Azure
Windows AzureDatacenter – West US
VPN Tunnel
ADCloud Service SharePoint RDS
Virtual Network
ADWebsite
![Page 5: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/5.jpg)
ADWebsite
Contoso CORP SITE – Las
Vegas, NV
Disaster Recovery
Windows AzureDatacenter – West US
VPN Tunnel
ADCloud Service SharePoint Website
Virtual Network
![Page 6: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/6.jpg)
AD Architecture Options
![Page 7: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/7.jpg)
Domain Controller On-Premises Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active Directory
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
Load BalancerPublic IP
![Page 8: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/8.jpg)
Active Directory in Azure Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Load BalancerPublic IP
Site to Site VPN Tunnel
On Premises Resources
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Extranet Active Directoryfabrikam.com
![Page 9: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/9.jpg)
Domain Controller On Prem + Azure
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active DirectoryContoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Load BalancerPublic IP
![Page 10: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/10.jpg)
Deploy DC in Separate Cloud Service Cloud Service Configuration for AD
Cloud Service for AD ClientsLocation: North Central USName: app-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: MyVNETDNS IPs: 192.168.1.4
Virtual MachineRole Name: advm1Subnet: AppSubnetIP Address: 192.168.2.4
Cloud Service for AD DomainsLocation: North Central USName: ad-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: ADVNETDNS IPs: (On-Premise AD IP)
Virtual MachineRole Name: ad-dcSubnet: ADSubnetIP Address: 192.168.1.4
DIP
Windows Azure Subscription
![Page 11: David Tesar | Microsoft Technical Evangelist](https://reader036.vdocuments.site/reader036/viewer/2022062520/56815e5e550346895dccd6a7/html5/thumbnails/11.jpg)
Demo
Deploying AD – On Prem + AzureRunning AD on Windows Azure IaaS
http://technet.microsoft.com/en-us/library/jj713614.aspx Windows Azure Training Kit
http://aka.ms/githubHOL-DeployingActiveDirectoryHOL-DeployingActiveDirectoryPS