goal of this session - download.microsoft.comdownload.microsoft.com/documents/hk/technet... · o365...
TRANSCRIPT
Goal of this session
Objectives
Get familiar with Yammer’s principals, architecture and roadmaps to
understand core of out Social platform.
Agenda
• Principals of Yammer
• Methodology
• Security and Architecture
• Roadmaps
Principals of Yammer
Users first
Users try and
adopt Yammer
They invite their
colleagues
Company take control
and ownership
User drives Yammer
• Driver: User
• Vehicle: Yammer
• Safety: IT
IT’s mission is to make sure that users can drive their vehicle “safely” to their destination
Methodology
Yammer 101
Activity Stream
Private messaging
Groups
News feed
Development
Architecture
• Slow to implement
• Increased risk to affect other parts
• Hard to test small parts
• Fast Deployment
• Low risk with deployment
• Easy to test – quick feedback
Data driven design
Release Schedule
https://about.yammer.com/success/engage/grow-your-network/release-schedule/
Security and Architecture
Security Mission
Yammer’s mission is to protect customer data. We
strive to be proactive and prepared and maximize
velocity for the business. Our security initiatives are
never complete and we are constantly reevaluating
and adapting to new challenges.
Cloud-based Software-as-a-Service
Data - Information
Application - Software
Infrastructure - Hardware
Data Center - Facility
Data - Information
• Customers own their data
• Private network for your
organization
• HTTPS (SSL3.0/TLS1.0)
• Separation of App and DB
Yammer User
Application
Servers
Customer
Data Stores
SSL Connection
Data Segregation Checks
• Low level logical firewall
SecurityContextValidation
• Separation of test and production
• Snapshot backup - twice per day
Application - Software
• Secure development best practices
• Plan, Do, Check, Methodology
• Code reviews
• Vulnerability scans – weekly
• Third Party pen tests quarterly
• Host-Based Intrusion Detection System
Infrastructure - Hardware
• Secure access (SSL3.0/TLS1.0)
• Access Controls
• Separated application and data stores
• All systems send logs to centralized log server
• Real-time log analysis and monitoring
• Minimum weekly audits of system logs
• Incident Response Plan
• TLS and SPF for email
2-Factor
Authentication
Yammer
Jump Host
Yammer Production Network
Managed VPN
Internal Access to Yammer Production
Data Center - Facility
• Yammer Datacenter is Tier 4 SSAE16 SOC1 T2 certified All components are fully fault-tolerant including uplinks, storage, chillers, HVAC systems,
servers etc. Everything is dual-powered.
Guaranteeing 99.995% availability
24/7/365 guarded, man traps, CCTV
Regulated physical access
SOC1 SSAE 16 Type 2
Yammer is currently undergoing ISO27001
Plan to move to Microsoft Global Foundation Service’s datacenter
Administrative control
User Control
Compliance
User Control
Access:
Password Policy
Session Management
Single Sign On
(SAML 1.1/2.0)
Provisioning:
Manual
Bulk update
Directory Sync Tool
Control:
Administrator Roles
Usage Policy
User Management
Keyword Monitoring
Data Export
Compliance
Data Export
• Exports of all network data
• Retain backups to abide by e-Discovery regulations
Data Retention
• Hard or Soft Delete
Keyword Monitoring
• Use keyword or regex
Usage Policy
• Make it mandatory to accept
Road map
O365 and Yammer - Identity
Today
• SSO and Dsync are different tool set from O365.
• User Mapping – O365 to Yammer without additional authentication. (90%
deployed)
Future
• Single Identity in Azure with O365
*Please note that the information above is subject to change without any notice
based on project progress.
O365 and Yammer – User Interface
*Please note that the information above is subject to change without any notice
based on project progress.
Q and A
Yammer related sessions to check out
Day 1
• 1100-1215 Session 2: Room 226+227
SES172 Yammer Security and Architecture
• 1515-1630 Session 4: Room 426+427
SES298 Enterprise Graph and Integration
Day 3
• 1515-1630 Session 4: Room 426+427
SES213 Steps That Will Make Your Enterprise Social Network Project to Successful
References
Product related info:
https://about.yammer.com/product/platform/
Admin, Integration and Security related info:
https://about.yammer.com/product/admin/
https://about.yammer.com/product/security/
Yammer and O365
https://about.yammer.com/product/office365/
http://blogs.office.com/2014/03/03/work-like-a-network-enterprise-social-and-the-future-of-work/
ios (version 6 or below):
Please input the below URL:
http://aka.ms/SES172
Other platform:
QR Code: