Hybrid SharePoint OverviewSharePoint and Office 365 Cloud Connected Hybrid Scenarios<Name><Title>

Overview

Private CloudTraditionalNon-Virtualized Public Cloud

TCO (CAPEX and OPEX)

Scale on demand

Time to solution(new apps)

Time to solution(existing apps)

Compliance(corporate or regulatory)

ON YOUR TERMSBusiness needs

Cloud on Your Terms

* En

han

ced

by u

pco

min

g A

zure

IA

AS

featu

res

Good Better Best

*

*

Good Better Best Good Better Best

Good Better Best Good Better BestGood Better Best

Applications needs

Business Needs

KEY SCENARIOS Compliance – corporateor regulatory

Very large application sizethat can’t be virtualized

I.e., large mission-critical, and data warehousing workloads

Compliance – corporateor regulatory

Applications can be virtualized

Improve infrastructure utilization, management, and operations

Idea to new application quickly

Don’t want to own or manage the infrastructure

I.e., consumer facing apps,BI in the Cloud

HYBRID APPLICATION

Cloud application with on-premise data source or on premise application extend to cloud (i.e., bursting)

Cross-premises line of business data connectivity

Cloud innovation accessible through on-premises implementations

Cloud on Your Terms

Private CloudTraditionalNon-virtualized Public Cloud

Scenarios

Private CloudTraditionalNon-Virtualized Public Cloud

Hybrid IT

MICROSOFTHybrid Cloud

Cloud on Your Terms

Commons

• Active Directory • Common development tools • Common management tools

Microsoft Hybrid Cloud

Private CloudTraditionalNon-virtualized Public Cloud

Cloud on Your Terms

WHY MICROSOFTfor your hybrid IT

application portfolioCommons

• Active Directory • Common development tools • Common management tools

ON YOUR TERMSBusiness needs

* Enhance

d b

y u

pco

min

g A

zure

IA

AS

featu

res

Good Better Best

Scale on demand

Compliance(corporate or regulatory) *

Good Better Best

TCO (CAPEX and OPEX)

Time to solution(new apps)

Time to solution(existing apps) *

Good Better Best

Good Better Best Good Better BestGood Better Best

Applications needs

KEY SCENARIOS Compliance – corporate or regulatory Very large application size that can’t be

virtualized I.e., large mission-critical, and data

warehousing workloads

Compliance – corporate or regulatory Applications can be virtualized Improve infrastructure utilization,

management, and operations

Idea to new application quickly Don’t want to own or manage the

infrastructure I.e., consumer facing apps, BI in the

Cloud

HYBRID APPLICATION Cloud application with on-premise data source or on premise application extend to Cloud (i.e., bursting) Cross-premises LOB data connectivity Cloud innovation accessible through on-premises implementations

Hybrid Cloud

Flexibility

On-Premises customization

Significant footprint in remote locations

Regulatory reasons

Manageability

Why Hybrid?

Migrate remote users physically distant from On-Premise deployment to Online for better experience

Host certain data in particular locations Online for Compliance or data sovereignty reasons

Advantage of moving to cloud infrastructure ((TCO) where ever possible

Two scenarios of hybrid model in an Enterprise

Migration to the CloudMigrate at their own pace to the Cloud with little or no disruption to existing service

Pilot Online Service with a subset of users

Maintaining a hybrid modelContinue to maintain hybrid model providing services on-premises or online based on the organization needs

Continue to use existing customizations on-premise

Easily off-board exchange mailboxes from Cloud to on premises

Hybrid Scenarios and Benefits

Identity Considerations

Federated identityCloud identityDirectory & password synchronization*

Single identity in the cloud

Suitable for small organizations with no integration to on-premises directories

Single identity

Suitable for medium and large organizations without federation*

Single federated identity

and credentials

Suitable for medium and large organizations

Identity Solutions

Windows Azure Active

Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

Authorization

Spreadsheet

CSV Import

Cloud Identity

Azure Active Directory

Implemented to extend on-premises Active Directory

Provides SSO experience

Enables MFA

Windows Azure Active

Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

Authorization

On premises

DirectorySync

Active Directory

Directory and Password Synchronization

Directory Synchronization

Integrates with Azure AD replicating on-premises users, groups, and contacts

Provides use of on-premises user name across environments

Directory Synchronization

Low barrier to entry

Reduces TTS (Time to Solution)

No changes needed to existing AD servers

Password SynchronizationE x t e n d s

to provide Same Sign-On experience

Does not provide single sign-on experience

Requires additional authentication

Does not support custom 2 factor authentication mechanisms deployed on-premises

Does enable policy based access control decisions

Single point of failure

Windows Azure Active

Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

AuthorizationDirectorySyn

cActive Directory

Federation Services

On premises

Active Directory

AD FS

AD FS Provides an open and interoperable claims-based model for integration

Infrastructure Considerations

Overview

Documented RP solutionsUAG/TMGWeb Application ProxyF5 Big-IP

Validated RP solutionsUAG/TMGWeb Application ProxyF5 Big-IPCitrix Netscalar

Retrieves resources on behalf of a client from one or more servers

Required in inbound and bidirectional environments

Scenarios

Topologies

On-premises SharePoint Server 2013 Enterprise Search portal: Local and remote search results are availableSharePoint Online search portal: Local search results are available

Search: One-way outbound

Business Connectivity Services: Not supported

Duet Enterprise for SharePoint and SAP: Not supported

IntranetMicrosoft data center InternetMicrosoft Office 365 tenant

SharePoint Online

Local search results only

Site collection

SharePoint Online cannot query SharePoint Server

SharePoint Server 2013

SharePoint

Primary web app

Federated search results

SharePoint Server can query SharePoint Online

Outbound

Inbound

One-way Outbound Topology

On-premises SharePoint Server 2013 Enterprise Search portal: Local search results are availableSharePoint Online search portal: Local and remote search results are available

Search: One-way inbound

Business Connectivity Services: Supported

Duet Enterprise for SharePoint and SAP: Supported

IntranetMicrosoft data center InternetMicrosoft Office 365 tenant

SharePoint Online

Federated search results

Site collection

SharePoint Online can query SharePoint Server

SharePoint Server 2013

SharePoint

Primary web app

Local search results only

SharePoint Server cannot query SharePoint Online

Outbound

Inbound

Customer networkPerimeter network

Reverse proxy

One-way Inbound Topology

On-premises SharePoint Server 2013 Enterprise Search portal and SharePoint Online search portal: Local and remote search results are available. If extranet authentication services are configured, extranet users can log in remotely through an on-premises Active Directory account and use all available hybrid functionality.

Search: Bidirectional

Business Connectivity Services: Supported

Duet Enterprise for SharePoint and SAP: Supported

IntranetMicrosoft data center InternetMicrosoft Office 365 tenant

SharePoint Online

Federated search results

Site collection

SharePoint Online can query SharePoint Server

SharePoint Server 2013

SharePoint

Primary web app

Federated search results

SharePoint Server can query SharePoint Online

Outbound

Inbound

Customer networkPerimeter network

Two-way (bidirectional) Topology

Workload Considerations

The most important Cloud characteristic is the ability to migrate workloads between public and private Cloud

North American CloudTrac Survey, IDC, 2012

Public Private

SharePoint on-premisesSearch index can contain relevant content identified and gathered from “crawling” through local sites, file shares, and more

SharePoint Online

Search index can contain relevant content identified and gathered from “crawling” through online sites

Authentication topology determines configuration

Hybrid search Users can view search results from both indexes in a single search

Search

Enables users to publish on-premises data to a list or application external to SharePoint Online

Enables federated users to gain access to on-premises data from SharePoint Online

Requires a two-way authentication topology using an external URL published by reverse proxy

Connects only through OData source

Business Connectivity Services

This is the first step in setting up users to use OneDrive in the cloud instead of OneDrive on premises

After this step, users’ OneDrive document library will be in the Cloud

Rest of MySite stays on premises

Redirect OneDrive to Cloud

1

If team sites are staying on premises, then you don’t want to redirect Sites to Office 365 yet

Do not redirect Sites at this time

Redirect Sites to Cloud

2

You can choose to redirect all users’ OneDrive to use the Cloud (Everyone)

Or if this is a “evaluation” period, you can choose to have select users evaluate OneDrive in Office 365 using an audience

Choose users to use OneDrive in Office 365

3

OneDrive for Business

Users cannot act on (such as follow and tag) documents that are in SharePoint Online from SharePoint on-premises

Users cannot act on documents that are in SharePoint on-premises from SharePoint Online

Using on-premises and online social capabilities results in disconnected islands of information

Yammer connects information in a hybrid SharePoint environment

Yammer replaces the newsfeed and is embedded on SharePoint pages

Integrating Yammer into SharePoint resolves this disconnect

Social

Roadmap

• Office Graphs APIs available for signal and content

• Full Delve Ux

• Push API available to partners• External sources via connectors• ModifiedBy view in Delve

• On-premises search service• SharePoint content available • ModifiedBy View in Delve

Hybrid for SharePointHybrid content is searchable within a unified SPO index; basic Delve user experience available

Hybrid for LOBExternal content available for cross-premises search

Hybrid for Office Graph Customers can push content and signals to the Office graph and surface it in experiences like Delve

Cloud Hybrid Search

September 2015 TBD TBD

Hybrid Scenario Picker

Available September 2015Provides quick access to in-market hybrid scenariosProgrammatically configures hybrid prerequisites to include Server-to-Server (S2s) and OAuth connections.

Available September 2015Enables consolidated view of Sites across on-premises and Office 365

Hybrid Sites

Available September 2015Enables profile consumption in the cloud

Hybrid Profiles

admin@contoso.sharepoint.com

admin@contoso.sharepoint.com

ONEDRIVE Adopt OneDrive for Business, while still being able to search across all of your content

Gradually or partially move content to the cloud while still being able to search across all of your sources

Move the search farm to the cloud, while content is still on premises. Search is an indipendent workload of Office 365

Push external content to the cloud. Search as a service

MIGRATION

SEARCH first

SEARCH as a service

Getting started with hybrid…

Q&A

Related InformationOffice 365 [http://www.microsoft.com/en-us/office365/enterprise-home.aspx]Hybrid Resource Center[http://hybrid.office.com]

Cloud Hybrid Search[https://connect.microsoft.com/office/SelfNomination.aspx?ProgramID=8647&pageType=1]

Office Graph Developer Center[http://dev.office.com/officegraph]

Call to Action

Read about the Evolution of SharePoint

[http://blogs.office.com/2015/02/02/evolution-sharepoint/]

Learn more about Office 365

[http://www.microsoft.com/en-us/office365/enterprise-home.aspx]

Learn about upcoming changes to Office 365

[http://roadmap.office.com/en-us]

© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.

The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date

of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.