Transcript NMMI Office 365 Hybrid

Why change?
0 Current Exchange 2007 environment
0 2 physical servers clustered for Mailbox services
0 1 virtual server for CAS/HUB services
0 Older servers need replacement
0 Option 1:
0 Replace server(s)
0 Pay more license fees for Exchange
0 Upgrade to Exchange 2013
0 Option 2: Pay for Exchange 2013 cloud hosted solution
0 Option 3: Use Exchange 2013 on cloud for free
0 Seems like the obvious choice. How many others of you are on
office 365? Moving there?
3
Pricing Plans
0 Eligible couple free options, with paid options
available
0 Prettier link
0 ProPlus is
coming soon
4
What exactly is Free
0 Office 365 is Exchange 2013 on the cloud plus other
features
0 Sites (Sharepoint)
0 Skydrive (Sharepoint document library)
0 Online version of Office Suite (Word, Excel,
PowerPoint, OneNote) (via Skydrive)
0 Newsfeed (Sharepoint social site)
0 Lync, workstation download, ties users together via
Office 365 organization
5
What did it look like?
6
First steps, Install guidance
7
Install guidance
8
Install guidance
9
Install guidance
10
Install guidance
11
Install guidance
12
Install guidance
13
Install guidance
14
Install guidance
0 Hybrid Exchange 2013 setup steps are further explained,
including a very helpful “check”.
http://technet.microsoft.com/en-us/exdeploy2013/Checklist
0 Every step of the way can be verified with
https://testconnectivity.microsoft.com/
0 ADFS login status sometimes unclear, check it:
https://sts.contoso.com/adfs/ls/IdpInitiatedSignon.aspx
0 Microsoft Office 365 tech support free 1-800-865-9408
15
What does it look like now?
16
How does the interface look?
A few front doors:
https://portal.microsoftonl
ine.com (username, then
username/password with
ADFS)
Works in Firefox too!
https://outlook.com/owa/
nmmi.edu (SSO if trusted,
otherwise,
username/password with
ADFS)
Errors if MBX on 2007.
https://hybrid.nmmi.edu/o
wa hopefully handles new
and old
17
How does the interface look?
Skydrive
18
How does the interface look?
Newsfeed
19
How does the interface look?
SharePoint
20
How does the interface look?
Lync
(installs with Office 2013
or desktop download)
21
How does the interface look?
Administration
22
How does the interface look?
Sharepoint
Admin
23
Show some PowerShell
From the Exchange 2013 Hybrid server:
Get-OrganizationConfig | fl
get-ActiveSyncVirtualDirectory |
fl identity,externalurl,internalurl
Get-ExchangeCertificate |
select issuer,services,isselfsigned,notafter |
Out-gridview
Get-WebServicesVirtualDirectory | fl
get-OABVirtualDirectory | fl
$OrgRel = Get-OrganizationRelationship
$OrgRel.DomainNames += "nmmi.edu"
Set-OrganizationRelationship $OrgRel.Name -DomainName
$OrgRel.DomainNames
24
Show some PowerShell
From the ADFS server, some local AD stuff:
Get-ADUser -Filter {UserPrincipalName -like "*.local"}
-SearchBase "OU=Users,OU=Cadets,DC=NMMI,DC=local" |
ForEach-Object {
$UPN =
$_.UserPrincipalName.Replace("NMMI.LOCAL","nmmi.edu")
Write-Host $_.Name . " will be " . $UPN
Set-ADUser $_ -UserPrincipalName $UPN
}
25
Show some PowerShell
From the ADFS server, some cloud user stuff:
$cred=Get-Credential [email protected]
Connect-MsolService -Credential $cred
new-item c:\MSOLHelp -type directory
get-command | Where-Object {$_.name -like "*msol*"} |
format-list | Out-File c:\MSOLHelp\msolcmdlets.txt
notepad c:\MSOLHelp\msolcmdlets.txt
Get-MsolUser -All
> users.txt
# careful, this one deletes a user
Remove-MsolUser -UserPrincipalName [email protected]
26
Show some PowerShell
From the ADFS server, cloud user license review:
Get-MsolUser –maxresults 10 | # use –ALL for everyone
Where { $_.IsLicensed -eq $true } |
Where { $_.UserPrincipalName -like "000*" } |
ForEach {
$Upn = $_.UserPrincipalName
$Options = @()
(Get-MsolUser –UserPrincipalName
$Upn).Licenses[0].ServiceStatus |
ForEach {
If ($_.ProvisioningStatus -ne "Disabled") {
$Options += $_.ServicePlan.ServiceName
}
}
echo $Upn $Options >> ~/out.txt
}
27
Show some PowerShell
From the ADFS server, cloud user license assign:
Get-MsolAccountSku | select AccountSkuId
$AccountSkuId = "schoolid:STANDARDWOFFPACK_FACULTY"
$UsageLocation = "US"
$DisabledOptions += "EXCHANGE_S_STANDARD"
$LicenseOptions = New-MsolLicenseOptions -AccountSkuId
$AccountSkuId -DisabledPlans $DisabledOptions
$Users = Import-Csv ~\o365CadetsFirst10.txt
$Users | ForEach-Object {
echo "working on " . $_.UserPrincipalName
Set-MsolUser -UserPrincipalName $_.UserPrincipalName
-UsageLocation $UsageLocation
Set-MsolUserLicense
-UserPrincipalName $_.UserPrincipalName
-AddLicenses $AccountSkuId
-LicenseOptions $LicenseOptions
}
28
What problems did NMMI
have?
0 The SSL Certificate Issuer and Subject fields cannot exceed 255 characters in length
0 Hybrid configuration sets this, our Comodo wildcard cert was 292 and took a call to get
worked out
0 Domain Setup in o365, don’t finish it, it can’t and shouldn’t be done
0 Autodiscover CNAME should Always point to 2013 hybrid server
0 Duplicate emails in AD not available => don’t sync bads
0 Photos for Lync = Photos in AD = Photos in Outlook, but over writable by user, in cloud
0
0
0
0
0
0
0
only
email SPAM appliance filter, issues
Login screen is a little “loopy”
OWA redirect from common site doesn’t work (yet?)
Multiple people on same computer is very difficult
Free/busy exchange from cloud to on-prem took weeks to fix
Droid users having serious problems
Office 2010 users have Lync is “unlicensed” header, and tries to get Activated
29
Questions?
30