Active Directory Cleanup Data cleansing: Data quality, missing attributes UPN – User Principal Name Every user must have a UPN UPN suffixes must match.
Download ReportTranscript Active Directory Cleanup Data cleansing: Data quality, missing attributes UPN – User Principal Name Every user must have a UPN UPN suffixes must match.
Active Directory Cleanup Data cleansing: Data quality, missing attributes UPN – User Principal Name Every user must have a UPN UPN suffixes must match a validated domain in Office 365 Users need to use UPN to log in to Office 365 DNS DNS changes required to validate domains in Office 365 Structure Description Considerations Matching domains Internal domain and external domain are the same e.g. contoso.com No special requirements Sub-domain Internal domain is a sub-domain of the external domain e.g. corp.contoso.com Requires domains to be registered in order, primary and then sub-domains Local domain or single label domain Internal domain is not publicly “registered” e.g. contoso.local Domain ownership can’t be proved, must use a different domain: • Requires all users to get new UPN • Use SMTP address if possible Multiple distinct UPN suffixes in single forest Mix of users having login UPNs under different domains e.g. contoso.com and fabrikam.com • • Multi-forest Multiple AD forests Contact Microsoft ADFS QFE—to resolve this issue. Requires new switch in Windows PowerShell SupportMultipleDomain Set Up ADFS Servers Set Up ADFS Proxies Implement Load Balancing Register DNS Microsoft Online Accounts Federated Identity External Sharing 1. Microsoft Online IDs 2. Microsoft Online IDs and DirSync 3. Federated IDs and DirSync Microsoft Online Services Identity Platform Contoso Customer Premises Trust Authentication Platform AD FS 2.0 IdP AD Microsoft Online Directory Sync Office 365 Desktop Setup Federation Gateway Provisioning Platform Admin Portal Directory Store Exchange Online IdP SharePoint Online Lync Online 1. Microsoft Online IDs 2. Microsoft Online IDs and DirSync 3. Federated IDs and DirSync Appropriate for Appropriate for Appropriate for Pros Pros Pros • Smaller orgs without AD on-premises • No servers required on-premises Cons • No SSO • No two-factor authentication • Two sets of credentials to manage with differing password policies • IDs mastered in the cloud • Medium/large orgs with AD on-premises • Users and groups mastered on-premises • It enables coexistence scenarios Cons • No SSO • No two-factor authentication • Two sets of credentials to manage with differing password policies • Single server deployment • Larger enterprise orgs with AD on-premises • SSO with corporate credentials • IDs mastered onpremises • Password policy controlled on-premises • Two-factor authentication possible • It enables coexistence scenarios Cons • High availability server deployments required Content Assessment • Capture relevant metadata: • Type of data • Size of data • Age of data Migration Planning • Should I move? • Should I move to online services? • What should I do with: • Web apps • Site collections • Sites • Document libraries Define the selection criteria Assess how much content is left when criteria are applied End-User Customizations • Content, Web Parts, etc. Authored Customizations • Page layouts, master pages, etc. Developed Customizations • Compiled code, timer jobs, etc. Custom Data • • • Process Tables Forms Lists • • • Out of the Box/Template Integrations Complex workflows Custom code Users • Provisioning/License impact. Feature usage • Needed for remediation Migration Plan Content Cleanup Migration Tools Information Architecture What How Where • Exclusion criteria • Inclusion criteria • Everything in between Small-midsize content • File Explorer • SharePoint Workspace • Manual upload Large-scale content • Staging environment • Third-party tools • • • • Site collections Sites Managed paths Content types Self-service migration • Manually Tools-based migration • Manually using tools Complex migration • • Includes custom code Involve experts People Source system knowledge Target system knowledge Knowledge Development Knowledge management Realistic Timelines Expectation-setting Commitment Strong steering committee Tue 09:00am – SPC243 - Hybrid Overview Tue 10:30am - SPC125 - Hybrid and Search in the Cloud Wed 1:45pm – SPC218 - SharePoint Online Hybrid: Configuring BCS and Duet Online Wed 3:15pm - SPC150 - Microsoft Early Learning: Moving Search to O365 and Building a Hybrid Experience Thurs 9:00am - SPC140 - Deep dive on Server to Server OAuth Identity Platform MySPC http://myspc.sharepointconference.com