on your terms business needs * enhanced by upcoming azure iaas features goodbetterbest * *...
TRANSCRIPT
Hybrid SharePoint OverviewSharePoint and Office 365 Cloud Connected Hybrid Scenarios<Name><Title>
Overview
Private CloudTraditionalNon-Virtualized Public Cloud
TCO (CAPEX and OPEX)
Scale on demand
Time to solution(new apps)
Time to solution(existing apps)
Compliance(corporate or regulatory)
ON YOUR TERMSBusiness needs
Cloud on Your Terms
* En
han
ced
by u
pco
min
g A
zure
IA
AS
featu
res
Good Better Best
*
*
Good Better Best Good Better Best
Good Better Best Good Better BestGood Better Best
Applications needs
Business Needs
KEY SCENARIOS Compliance – corporateor regulatory
Very large application sizethat can’t be virtualized
I.e., large mission-critical, and data warehousing workloads
Compliance – corporateor regulatory
Applications can be virtualized
Improve infrastructure utilization, management, and operations
Idea to new application quickly
Don’t want to own or manage the infrastructure
I.e., consumer facing apps,BI in the Cloud
HYBRID APPLICATION
Cloud application with on-premise data source or on premise application extend to cloud (i.e., bursting)
Cross-premises line of business data connectivity
Cloud innovation accessible through on-premises implementations
Cloud on Your Terms
Private CloudTraditionalNon-virtualized Public Cloud
Scenarios
Private CloudTraditionalNon-Virtualized Public Cloud
Hybrid IT
MICROSOFTHybrid Cloud
Cloud on Your Terms
Commons
• Active Directory • Common development tools • Common management tools
Microsoft Hybrid Cloud
Private CloudTraditionalNon-virtualized Public Cloud
Cloud on Your Terms
WHY MICROSOFTfor your hybrid IT
application portfolioCommons
• Active Directory • Common development tools • Common management tools
ON YOUR TERMSBusiness needs
* Enhance
d b
y u
pco
min
g A
zure
IA
AS
featu
res
Good Better Best
Scale on demand
Compliance(corporate or regulatory) *
Good Better Best
TCO (CAPEX and OPEX)
Time to solution(new apps)
Time to solution(existing apps) *
Good Better Best
Good Better Best Good Better BestGood Better Best
Applications needs
KEY SCENARIOS Compliance – corporate or regulatory Very large application size that can’t be
virtualized I.e., large mission-critical, and data
warehousing workloads
Compliance – corporate or regulatory Applications can be virtualized Improve infrastructure utilization,
management, and operations
Idea to new application quickly Don’t want to own or manage the
infrastructure I.e., consumer facing apps, BI in the
Cloud
HYBRID APPLICATION Cloud application with on-premise data source or on premise application extend to Cloud (i.e., bursting) Cross-premises LOB data connectivity Cloud innovation accessible through on-premises implementations
Hybrid Cloud
Flexibility
On-Premises customization
Significant footprint in remote locations
Regulatory reasons
Manageability
Why Hybrid?
Migrate remote users physically distant from On-Premise deployment to Online for better experience
Host certain data in particular locations Online for Compliance or data sovereignty reasons
Advantage of moving to cloud infrastructure ((TCO) where ever possible
Two scenarios of hybrid model in an Enterprise
Migration to the CloudMigrate at their own pace to the Cloud with little or no disruption to existing service
Pilot Online Service with a subset of users
Maintaining a hybrid modelContinue to maintain hybrid model providing services on-premises or online based on the organization needs
Continue to use existing customizations on-premise
Easily off-board exchange mailboxes from Cloud to on premises
Hybrid Scenarios and Benefits
Identity Considerations
Federated identityCloud identityDirectory & password synchronization*
Single identity in the cloud
Suitable for small organizations with no integration to on-premises directories
Single identity
Suitable for medium and large organizations without federation*
Single federated identity
and credentials
Suitable for medium and large organizations
Identity Solutions
Windows Azure Active
Directory
OAuth2
SAML-P
WS-Federation
Metadata
Graph API
Office Activation Service
Office 365 Admin Portal
Exchange Mailbox Access
…
Authorization
Spreadsheet
CSV Import
Cloud Identity
Azure Active Directory
Implemented to extend on-premises Active Directory
Provides SSO experience
Enables MFA
Windows Azure Active
Directory
OAuth2
SAML-P
WS-Federation
Metadata
Graph API
Office Activation Service
Office 365 Admin Portal
Exchange Mailbox Access
…
Authorization
On premises
DirectorySync
Active Directory
Directory and Password Synchronization
Directory Synchronization
Integrates with Azure AD replicating on-premises users, groups, and contacts
Provides use of on-premises user name across environments
Directory Synchronization
Low barrier to entry
Reduces TTS (Time to Solution)
No changes needed to existing AD servers
Password SynchronizationE x t e n d s
to provide Same Sign-On experience
Does not provide single sign-on experience
Requires additional authentication
Does not support custom 2 factor authentication mechanisms deployed on-premises
Does enable policy based access control decisions
Single point of failure
Windows Azure Active
Directory
OAuth2
SAML-P
WS-Federation
Metadata
Graph API
Office Activation Service
Office 365 Admin Portal
Exchange Mailbox Access
…
AuthorizationDirectorySyn
cActive Directory
Federation Services
On premises
Active Directory
AD FS
AD FS Provides an open and interoperable claims-based model for integration
Infrastructure Considerations
Overview
Documented RP solutionsUAG/TMGWeb Application ProxyF5 Big-IP
Validated RP solutionsUAG/TMGWeb Application ProxyF5 Big-IPCitrix Netscalar
Retrieves resources on behalf of a client from one or more servers
Required in inbound and bidirectional environments
Scenarios
Topologies
On-premises SharePoint Server 2013 Enterprise Search portal: Local and remote search results are availableSharePoint Online search portal: Local search results are available
Search: One-way outbound
Business Connectivity Services: Not supported
Duet Enterprise for SharePoint and SAP: Not supported
IntranetMicrosoft data center InternetMicrosoft Office 365 tenant
SharePoint Online
Local search results only
Site collection
SharePoint Online cannot query SharePoint Server
SharePoint Server 2013
SharePoint
Primary web app
Federated search results
SharePoint Server can query SharePoint Online
Outbound
Inbound
One-way Outbound Topology
On-premises SharePoint Server 2013 Enterprise Search portal: Local search results are availableSharePoint Online search portal: Local and remote search results are available
Search: One-way inbound
Business Connectivity Services: Supported
Duet Enterprise for SharePoint and SAP: Supported
IntranetMicrosoft data center InternetMicrosoft Office 365 tenant
SharePoint Online
Federated search results
Site collection
SharePoint Online can query SharePoint Server
SharePoint Server 2013
SharePoint
Primary web app
Local search results only
SharePoint Server cannot query SharePoint Online
Outbound
Inbound
Customer networkPerimeter network
Reverse proxy
One-way Inbound Topology
On-premises SharePoint Server 2013 Enterprise Search portal and SharePoint Online search portal: Local and remote search results are available. If extranet authentication services are configured, extranet users can log in remotely through an on-premises Active Directory account and use all available hybrid functionality.
Search: Bidirectional
Business Connectivity Services: Supported
Duet Enterprise for SharePoint and SAP: Supported
IntranetMicrosoft data center InternetMicrosoft Office 365 tenant
SharePoint Online
Federated search results
Site collection
SharePoint Online can query SharePoint Server
SharePoint Server 2013
SharePoint
Primary web app
Federated search results
SharePoint Server can query SharePoint Online
Outbound
Inbound
Customer networkPerimeter network
Two-way (bidirectional) Topology
Workload Considerations
The most important Cloud characteristic is the ability to migrate workloads between public and private Cloud
North American CloudTrac Survey, IDC, 2012
Public Private
SharePoint on-premisesSearch index can contain relevant content identified and gathered from “crawling” through local sites, file shares, and more
SharePoint Online
Search index can contain relevant content identified and gathered from “crawling” through online sites
Authentication topology determines configuration
Hybrid search Users can view search results from both indexes in a single search
Search
Enables users to publish on-premises data to a list or application external to SharePoint Online
Enables federated users to gain access to on-premises data from SharePoint Online
Requires a two-way authentication topology using an external URL published by reverse proxy
Connects only through OData source
Business Connectivity Services
This is the first step in setting up users to use OneDrive in the cloud instead of OneDrive on premises
After this step, users’ OneDrive document library will be in the Cloud
Rest of MySite stays on premises
Redirect OneDrive to Cloud
1
If team sites are staying on premises, then you don’t want to redirect Sites to Office 365 yet
Do not redirect Sites at this time
Redirect Sites to Cloud
2
You can choose to redirect all users’ OneDrive to use the Cloud (Everyone)
Or if this is a “evaluation” period, you can choose to have select users evaluate OneDrive in Office 365 using an audience
Choose users to use OneDrive in Office 365
3
OneDrive for Business
Users cannot act on (such as follow and tag) documents that are in SharePoint Online from SharePoint on-premises
Users cannot act on documents that are in SharePoint on-premises from SharePoint Online
Using on-premises and online social capabilities results in disconnected islands of information
Yammer connects information in a hybrid SharePoint environment
Yammer replaces the newsfeed and is embedded on SharePoint pages
Integrating Yammer into SharePoint resolves this disconnect
Social
Roadmap
• Office Graphs APIs available for signal and content
• Full Delve Ux
• Push API available to partners• External sources via connectors• ModifiedBy view in Delve
• On-premises search service• SharePoint content available • ModifiedBy View in Delve
Hybrid for SharePointHybrid content is searchable within a unified SPO index; basic Delve user experience available
Hybrid for LOBExternal content available for cross-premises search
Hybrid for Office Graph Customers can push content and signals to the Office graph and surface it in experiences like Delve
Cloud Hybrid Search
September 2015 TBD TBD
Hybrid Scenario Picker
Available September 2015Provides quick access to in-market hybrid scenariosProgrammatically configures hybrid prerequisites to include Server-to-Server (S2s) and OAuth connections.
Available September 2015Enables consolidated view of Sites across on-premises and Office 365
Hybrid Sites
Available September 2015Enables profile consumption in the cloud
Hybrid Profiles
ONEDRIVE Adopt OneDrive for Business, while still being able to search across all of your content
Gradually or partially move content to the cloud while still being able to search across all of your sources
Move the search farm to the cloud, while content is still on premises. Search is an indipendent workload of Office 365
Push external content to the cloud. Search as a service
MIGRATION
SEARCH first
SEARCH as a service
Getting started with hybrid…
Q&A
Related InformationOffice 365 [http://www.microsoft.com/en-us/office365/enterprise-home.aspx]Hybrid Resource Center[http://hybrid.office.com]
Cloud Hybrid Search[https://connect.microsoft.com/office/SelfNomination.aspx?ProgramID=8647&pageType=1]
Office Graph Developer Center[http://dev.office.com/officegraph]
Call to Action
Read about the Evolution of SharePoint
[http://blogs.office.com/2015/02/02/evolution-sharepoint/]
Learn more about Office 365
[http://www.microsoft.com/en-us/office365/enterprise-home.aspx]
Learn about upcoming changes to Office 365
[http://roadmap.office.com/en-us]
© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date
of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.