Transcript Ben Walters Jeff Medford Mark Rhodes Yoni Kirsh Introducing the new Office 365

Ben Walters
Jeff Medford
Mark Rhodes
Yoni Kirsh
Introducing the new Office 365
Essential for business of all sizes
Enterprise-grade
cloud services
Comprehensive tools
To do your best work
Dynamic
workplace
Making
sense of it all
Merging
home & work
Natural
expression
Responsible
organization
Setup on day 1
Sign-on
Pilot the service quickly
Full use of the service
Mail
Pilot the new Exchange mailbox
Pilot setup continues to
step 2 deploy
Collaboration
Pilot the new collaboration tools
Limited on-premises
requirements
Clients
Office across multiple devices
Mobile
Experience Office anywhere
Administration
Control & manage your pilot
User driven pilot
User signs into Office 365 with a Cloud ID ([email protected])
New mailbox in the cloud
Inbox content populated via Connected account
User sends/receives email as [email protected]
User PST import option for additional content migration (mail/calendar/contacts)
Run online meetings with any user with computer & app sharing, video conferencing, and PC-to-PC calling
Collaborate using SharePoint Online team site and newsfeeds
Easily store files in the cloud with SkyDrive Pro and share file with external users
Access the service via a browser - Office Web Apps across devices and platforms – no client required
User self-install of Office 365 ProPlus side-by-side with existing Office client installations
Mobile connectivity options are built into the service – just start connecting devices
Connect to Office 365 via mobile devices with Exchange Active Sync for mail
Platform specific mobile apps bring best experience where it makes sense - i.e. OneNote, Lync
Centralized administration from the Office 365 admin center in the service.
Online management centers for Exchange, SharePoint, and Lync.
Service health dashboard to monitor service maintenance and incidents.
Service use reporting available in the service admin center including service activity.
Setup in days
Sign-on
Adds on-premises
integration
Pilot user and info is
sustained
Sign-on with the same user and password as on premises
Integrated mail flow and migration
Global address list
Full mail content migration – mail, calendar, contacts
Mail
IT driven migration
Mail migration that
best fits environment
Integrated identity management
Sharing and working with others
Collaboration
Lync business partner federation
Site governance and provisioning support
Setup of Apps for Office corporate app catalog
Clients
IT managed client productivity
Mobile
Managed mobile connectivity
Administration
Office 365 ProPlus deployed to user desktop via IT process
Send and receive mail from mobile device as on-prem email
Control & monitor
Data loss prevention configuration (limited)
Exchange Online Protection mail protection configuration (limited)
Enhance
Enhance
Cloud identity
Synchronized identity
Enhance
Enhance
Identifies and remediates AD object issues that will fail Windows
Azure AD Dirsync
Built on analysis of Dirsync daily error volumes and is targeted at
fixing the majority of errors quickly
Provides a datagrid with the ability to scroll, sort and edit
Suggested fixes are provided for known errors
Customer change confirmation change and undo/rollback
functionality
Available for download from TechNet
Across all objects:
Well know exclusions (“Admini*”, “CAS_{“, etc.)
Distinguised name contains “\OACNF:”
isCriticalSystemObject
Looks for invalid characters, checks length constraints, format and
duplicate values across:
c, co, displayName, givenName, Mail, mailNickName, proxyAddress,
sAMAccountName, sn, targetAddress, userPrincipalName
Adds scenarios
Sign-on
Extended durations
Customer specific
implementation
Ability to add to
deployed clients at point
in the future
Mail
Collaboration
Advanced integration
Single sign-on / ADFS
3rd Party identity providers – “Works with program”
Advance migration scenarios
Notes migrations
Hybrid Exchange for 2007 or 2003
Advanced integration and solution building
Lync or SharePoint hybrid
SharePoint solutions – including BCS, Duet, etc.
Clients
Advanced client management capabilities
Mobile
Connect to the service
Administration
Virtual desktop and virtual application scenarios
Blackberry Enterprise Sever integration
Leverage advanced service controls
Data loss prevention configuration
Exchange Online Protection mail protection configuration
Windows Azure
Active Directory
Authentication
platform
Directory
store
Cloud Identity
no integration to onpremises directories
Directory & Password
Synchronization
Federated Identity
Integration without
federation
Single federated
identity
Cloud Identity
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Directory & Password Sync
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Directory Synchronization Options
PowerShell & Graph API
Suitable for Organizations using
Active Directory (AD)
Provides best experience to most
customers using AD
Supports Exchange Co-existence scenarios
Coupled with ADFS, provides best option
for federation and synchronization
Supports Password Synchronization with
no additional cost
Does not require any additional software
licenses
Suitable for large organizations
with certain AD and Non-AD
scenarios
Suitable for small/medium size
organizations with AD or NonAD
Complex multi-forest AD scenarios
Performance limitations apply with
PowerShell and Graph API provisioning
Non-AD synchronization through Microsoft
premier deployment support
Requires Forefront Identity Manager and
additional software licenses
PowerShell requires scripting experience
PowerShell option can be used where the
customer/partner may have wrappers
around PowerShell scripts (eg: Self Service
Provisioning)
Federated Identity
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Federation options
Works with AD
Suitable for medium, large enterprises including educational organizations
Recommended option for Active Directory (AD) based customers
Single sign-on
Secure token based authentication
Support for web and rich clients
Microsoft supported
Active Auth (Phone Factor) can be used for two factor auth
Works for Office 365 Hybrid Scenarios
Requires on-premises servers, licenses & support
Identity federation
Authentication flow (passive/web profile)
Customer
Microsoft Online Services
Active Directory
Logon (SAML 1.1) Token
AD FS 2.0 Server
UPN:[email protected]
Authentication platform
Source User ID: ABC123
Auth Token
UPN:[email protected]
Unique ID: 254729
`
Client
(joined to CorpNet)
Exchange Online or
SharePoint Online
Identity federation
Authentication flow (MEX/rich client profile)
Customer
Microsoft Online Services
Active Directory
Logon (SAML 1.1) Token
AD FS 2.0 Server
UPN:[email protected]
Authentication platform
Source User ID: ABC123
Auth Token
UPN:[email protected]
Unique ID: 254729
`
Client
(joined to CorpNet)
Lync Online
Identity federation
Active flow (Outlook/Active Sync) always external
Customer
Microsoft Online Services
Active Directory
Logon (SAML 1.1) Token
AD FS 2.0 Proxy
UPN:[email protected]
Authentication platform
Source User ID: ABC123
Auth Token
UPN:[email protected]
Unique ID: 254729
`
Basic Auth Credentilas
Username/Password
Client
(joined to CorpNet)
Exchange Online
Block all external access to Office 365
Block all external access to Office 365 except Exchange Active
Sync
Block all external access to Office 365 except browser-based
applications such as OWA or SharePoint Online
http://technet.microsoft.com/enus/library/hh526961(WS.10).aspx
http://www.microsoft.com/enau/download/confirmation.aspx?id=38845
http://channel9.msdn.com/Events/TechEd/Australia/2013
http://www.microsoftvirtualacademy.com/
http://technet.microsoft.com/en-au/
http://msdn.microsoft.com/en-au/
1.
Keep up to date with all the latest Office 365 information at
http://ignite.office.com
http://fastTrack.office.com
http://office.microsoft.com