VIEWS: 0 PAGES: 29 POSTED ON: 4/28/2013
O365 SharePoint 2013 Online: Multi-tenant Joe Vasil – US East Region Customer Service and Support Agenda What’s New? SPO Admin Center SharePoint Online Management Shell Identity Hybrid scenarios 4 Online vs. On-Premises SharePoint Online SharePoint 2013 Analytics, BI Excel Services, Power View, PowerPivot PerformancePoint Deep refinement, Search People/Expertise, hover card, enterprise search enhance relevancy Developer Cloud app model, Sandbox, CSOM, BCS Full-trust code, BCS+ Admin Tenant-level, PowerShell, IRM, Recycle Bin Central Administration Cross-site scripting, Internet Public Website, Design Manager, apps/store content by search ECM / Social eDiscovery, Records Center, Site Mailbox, Mobile, Newsfeed Storage In-Market Small Business Midmarket Enterprise Item Enterprise 1-50 users 1-250 users 1-500,000+ users Base tenancy storage allocation 10 GB 10GB 10GB 10GB Storage per Standard E & P 500 MB/user 500MB/user 500MB/user 500MB/user SkyDrive Pro 500 MB/user 7 GB 7 GB 7 GB Storage per Kiosk Worker 0 0 0 0 Storage per External User 0 0 0 0 Site Collection storage quotas Up to 100 GB Up to 100 GB Up to 100 GB Up to 100 GB Total max storage per tenant Up to 25 TB Up to 35GB Up to 1.25 TB Up to 25TB Maximum file upload size 250MB 250MB 250MB 250MB Site collections (total #)* 300 1 20 3,000 Additional storage 0.20/GB/month $0.20/GB/month $0.20/GB/month $0.20/GB/month SharePoint Admin Centre Create new site collections (private & public) Recover deleted site collections from the Recycle Bin Manage existing site collections: adjust storage, ownership and control external sharing 7 Demo: SPO Admin Center SharePoint Online Management Shell Download http://www.microsoft.com/en-us/download/details.aspx?id=30359 9 Demo: Administration and PowerShell Identity Directory & Password Cloud Identity Synchronization* Federated Identity Single identity in the cloud Single identity Single federated identity Suitable for small organizations suitable for medium and credentials suitable with no integration to on- and large organizations for medium and large premises directories without federation* organizations needing SSO Directory and Password Sync Directory synchronization Windows Azure Password synchronization Active Directory Sync’ing multiple AD Forests or Non-AD? Directory Synchronization Password Synchronization Must use FIM 2010 w/Windows Azure AD AD Connector Non-AD (LDAP) Cloud Identity On-Premises Identity Ex: email@example.com Ex: Domain\Alice User Federated identity Single identity and sign-on Windows Azure Identities managed on premises Active Directory Directory synchronization Secure Token based authentication Federation Directory Synchronization Client access control based on IP address with ADFS AD Two factor authentication options Non-AD (LDAP) On-Premises Identity Ex: Domain\Alice User High level Hybrid Configuration • Reverse Proxy and certificate authentication • ADFS & SSO with Office365 • DirSync • MSOL Tools • Secure Store • UPA Demo: Setting up Federation Windows Azure AD Powershell Module Windows Azure Active Directory Module for Windows PowerShell (64-bit version) New-MsolFederatedDomain –DomainName fabrikam.com –SupportMultipleDomain Configure server-to-server authentication 1. Replace the default STS certificate of on-premises farm with cert from well- known cert authority or a self-signed certificate Set-SPSecurityTokenServiceConfig -ImportSigningCertificate Step 2. Install Windows Azure AD Module and connect to the online tenancy Step 3. Upload the signing cert of the on-premises server to the SharePoint principal object of the Office 365 tenancy New-MsolServicePrincipalCredential -AppPrincipalId $spoappid (where $spoappid="00000003-0000-0ff1-ce00-000000000000“) Configure Server-to-Server Authentication Step 4. Add the host name of on-prem public SharePoint site to the SharePoint principal object of the Office 365 tenancy Set-MsolServicePrincipal –AppPrincipalId This provisions the ACS Step 5. Get the application principal ID and context ID of the organization’s tenancy On-Prem Farm Config Step 6. Register the SharePoint Online STS principal object with the on-premises SharePoint STS Register-SPAppPrincipal Step 7. Set the SharePoint authentication realm to the context ID of the organization’s Office 365 tenancy Set-SPAuthenticationRealm -realm <ContextID of MSOL Tenant> Configure ACS Trusts Step 8. Configure an on-premises ACS proxy New-SPAzureAccessControlServiceApplicationProxy and Step 9. Set up a trust with the ACS tenancy New-SPTrustedSecurityTokenIssuer Secure Store Config Create a target application to store the SSL certificate We need the cert we used for the HTTPS trunk on UAG Required to enable search results from the on-prem SharePoint farm to be returned to users on SharePoint Online Hybrid scenarios • It saves money for the customers • Existing investments (customized SP • Always have the latest and greatest deployments w/lots of data and settings, collaboration, email and UC tools custom solutions, LOB systems, etc) • Allows to focus on core business, not IT • Microsoft can run SP more reliably and • Can’t do everything in the Cloud that I can efficiently than customers can do on-premise • Can easily scale up/down according to demand • Protect sensitive data by keeping it close • More easily work with customers, partners outside of my company How Hybrid can Help • Users want to easily find content • Migration can be confusing to track what’s being moved • Many customers will never move EVERYTHING to the cloud • Give users everything they need in one place How’s It Work • For hybrid search, each location is used as a Remote SharePoint Index for the other • That means we send queries to them, but they do NOT crawl each other • For hybrid BCS, we add connections to on-prem data sources • They can ONLY be OData sources • You cannot create an OData source in SharePoint Designer – you must do so in Visual Studio • For more details see http://blogs.technet.com/b/speschka/archive/2012/12/06/using-odata-and-ects-in- sharepoint-2013.aspx • You can then create lists and apps that use your data source Demo: Hybrid Search How to Get Started Obtain Enterprise “E3” trial tenant http://office.microsoft.com/en-us/office-365/redir/XT103040305.aspx SharePoint 2013 Hybrid Resources http://go.microsoft.com/fwlink/p/?LinkId=254921 Questions?
"Storage Comparison - SharePoint Saturday"