how microsoft it implemented microsoft exchange server 2010
Download
Skip this Video
Download Presentation
How Microsoft IT Implemented Microsoft Exchange Server 2010

Loading in 2 Seconds...

play fullscreen
1 / 33

How Microsoft IT Implemented Microsoft Exchange Server 2010 - PowerPoint PPT Presentation


  • 162 Views
  • Uploaded on

SESSION CODE: UNC202. How Microsoft IT Implemented Microsoft Exchange Server 2010. Mahendra Sekaran. Survivable Branch Appliance (SBA).

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'How Microsoft IT Implemented Microsoft Exchange Server 2010' - edda


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
survivable branch appliance sba
Survivable Branch Appliance (SBA)

A purpose-built appliance optimized to provide resilient multi-modal communication for maximizing branch office user productivity. Solution re-architected for Registrar to work when UserServices role is unavailable or unaccessible.

Data Center

Branch Office

CS

Pool

Edge

Server

SBA

WAN

PSTN

Details?

UNC 313

topologies simplified
Topologies Simplified

Topologies

Servers

Optional Servers

Front end

Mediation

Standard Edition

Back end

Group Chat

Director

Archiving

Monitoring

Enterprise Edition

AV Conf

SCOM

Edge

UM

deployment model
Deployment Model
  • Global Deployment is a collection of Sites
    • Sites are made of Pools
    • Pools host users & services (such as conferencing, Voice over Internet Protocol (VoIP))
deployment options
Deployment Options

Multi-site Resiliency

Pool-level Resiliency

Small or Trial Deploy

Single

Data Center

Multiple Data Centers

Central Site

Branch Office Site

Sites which host a pool of either SE or EE

Sites that do not host a pool

  • Branches without redundant WANs will purchase a Survivable Branch Appliance to handle voice resiliency in the branch office
  • Branches with a redundant WAN connection, still require basic PSTN termination with SIP Gateway.
  • Standard Edition Server can be utilized for improved Quality of Experience (QoE) in large, distant “branches” (truly a Central Site) with lots of conferencing utilization.
  • Not all branches will require resiliency – for smaller branches, use Remote User Connectivity over public internet or 3G/4G network.
  • Smaller organizations not requiring resiliency can choose a Standard Edition Server (SE), a single server with all roles consolidated on that server functioning
  • Organizations who need resiliency will choose an Enterprise Edition Pool (EE), defining a pool of multiple servers comprised of front end and back end roles
  • “Paired” Standard Edition can offer failover between two SE servers for lower cost and reduced functionality.
  • Additional Server roles required include Archiving, Director, Edge and Monitoring
reference topologies
Reference Topologies

Small

< 5000 users

This example

5,000 users, 3 servers

1667 users/server

reference topologies7
Reference Topologies

Single Datacenter

< 100,000 users

This example

20,000 users, HA, 14 servers

1429 users/server

reference topologies8
Reference Topologies

Global,

Multi-Site

Unlimited

Site C

Site B

This example

Site 1: 18 servers

Site 2: 11 servers

Site3: 1 server

2413 users/server

agenda
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
manageability enhancements
Manageability Enhancements
  • Rich Planning and Topology building tools
  • Communications Server Control Panel (CSCP)
      • Silverlight™ based administration console
      • Task oriented and uses underlying Powershell Infrastructure
  • PowerShell
      • Complete access to all administrative tasks
      • Automation interface
      • Replaces Windows Management Instrumentation (WMI)
  • Role Based Access Control (RBAC)
      • Access controlled by security group membership
      • New delegation model: site aware
    • Synthetic Transactions – powershell based framework that allows admins to proactively identify faults in the system, and raise alerts in SCOM

Details?

UNC 317

agenda11
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
virtualization
Virtualization
  • What’s supported?
    • Virtualization of specific OCS roles
    • SQL, Exchange, AD virtualization (as per guidelines)
    • Hyper-V R2 (2008 not supported), VMWare
    • Client virtualization (except Audio/video - use IP phone)
  • Not Supported
    • Branch office/Gateway only/Mediation server+gateway
    • Standard Edition (single server deployed as production Site)
    • Live migration of VMs via SCVMM (ongoing calls/sessions will be dropped)
  • Virtual Deployment Reference Topology
    • 4 VMs – Front-end, Back-end+ filestore, A/V MCU, Edge
    • 1 Physical machine – 16 cores, 32 GB with 4 NICs, 1024 GB SAS drive, Intel Xeon E7450 procs. Dedicated to OCS only
    • Pilot has no HLB or DNS LB. Production – Needs HLB.
    • Perf reduction (around 50%) compared to non-virtualized topology
agenda13
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
dns load balancing
DNS Load Balancing

DNS LB Goals

  • Simplify HLB Configuration
  • Reduce dependence on HLB
    • DNS LB supported for Internal Pool, Director Pool, and Edge
      • All Server-Server and Client-Server SIP traffic
      • All Server-Server HTTP traffic
      • Media traffic
  • Support Draining of Applications
  • Improve Load balancing of server-server traffic (Ex: Access Edge – Director)
  • Eliminating HLB is not a goal
  • HLB still be required for Internal Pools
    • Client – Server HTTP & HTTP(s) traffic (ABS, DLX, LIS, etc.)
dns lb architecture design
DNS LB Architecture/Design
  • DNS A Record for FQDN resolves to Multiple IPs
  • Failover: If connect to an IP fails, failover to the next IP in the list
  • Load balance across multiple servers (Ex: SIP traffic sent to multiple IPs)
  • Draining: If Server IP1 being drained (returns 503 with special header), send all traffic to the next IP (IP2)
  • Honor DNS TTL except
    • If < 5 min, TTL = 5 min
    • If > 24 hours, TTL = 24 hours
dns lb sample configuration
DNS LB Sample Configuration

For a Communications Server Pool ocspool1.contoso.com with 3 FEs: FE1, FE2, FE3

OCS 2007 R2 HLB - DNS Configuration

CS “14” DNS LB - DNS Configuration

Pool

DNS A Entries

Machine

DNS A Entries

agenda17
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
authentication
Authentication
  • OCS Signed Certificate Authentication – Certificate issued by OCS to a client endpoint, which can then be used by client to authenticate against OCS (no PKI requirements)
    • Authwithout AD (temporarily) and domain controller for Branch Resiliency
    • PIN based devices authenticating outside enterprise
  • PIN based authentication
    • Inside devices authenticating with keypad
    • Acquire OCS signed certificate via PIN to use externally.
  • In order to support these scenarios, we’ve added a new authentication framework called Web-Ticket
web ticket authentication

Use Web-Ticket to authenticate with other OCS services:

ABS/DLX/etc.

Web-Ticket Authentication
    • Service can use NTLM, Kerberos, PIN, or OCS Signed Certificate to get a web-ticket.
  • Web-ticket auth used for OCS web services.
    • ABS, DLX, ABS-WQ, RGS, OCS Certificate
  • Consolidates web service authentication under a single standards-based framework
      • WS-Transfer, WS-Trust, WS-Security, SAML, SOAP, WS-MetadataExchange
pin authentication
PIN Authentication
  • Allow PIN based sign on for devices
  • OCS signed certificates to access OCS web services
  • Unify PIN for devices and CAA
  • PIN Management portal in OCS along with appropriate notifications
agenda21
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
location infrastructure
Location Infrastructure
  • Base requirement – provide location with emergency calls (North American), while ensuring that the solution addresses the roaming nature of communicator clients
  • Added a Location Information Service that is part of the Frontend role
  • Flexibility in enablement options – user/location
  • Architecture allows integration with existing LIS systems
agenda23
Agenda
  • Communications Server Roadmap
  • Topology related investments
  • Manageability enhancements
  • Virtualization
  • DNS load balancing
  • Authentication enhancements
  • Location Infrastructure
  • Cloud Integration
  • Q&A
cloud integration connected business and optimized it
Cloud IntegrationConnected business and optimized IT

Details?

UNC 206

  • Consistent user experience across delivery options
  • Common architecture and data model across deployments
  • Flexibility in deployment – meets your complex needs
  • Adaptability in deployment – enables changes at any time

On-Premise

Hosted Service

Rapid scalability

Advanced manageability

Control and ownership

Customization

key scenarios
Key Scenarios

Cross-Premises Federation

  • Federation within tenants in the cloud
  • Federation with on-premises deployments
  • Cross-premises federation (split-domain)
  • Federation with Exchange Online
session objectives and key takeaways
Session Objectives and Key Takeaways
  • Understand key architectural changes in Communications Server “14” and the benefits of the engineering investments:
    • Simplified Topologies – fewer number of servers with more functionality
    • Understand how TCO is lowered by offering a simplified deployment and administration experience
    • Improved support for Virtualized environments
    • Great monitoring capabilities to allow for proactive problem detection
    • Seamless Integration with Cloud infrastructure allowing more choices of deployment across the different workloads
unified communications track call to action
Unified Communications Track Call to Action!

Learn More!

    • View Related Unified Communications (UNC) Content at TechEd/after at TechEd Online
    • Visit microsoft.com/communicationsserver for more Communications Server “14” product information
    • Find additional Communications Server “14” content in the Technical Library, weekly technical articles at NextHop, and follow DrRez on Twitter
    • Check out Microsoft TechNet resources for Communications Server and Exchange Server
  • Visit additional Exchange 2010 IT Professional-focused content
    • Partner LinkorCustomer Link (Name: ExProPword: EHLO!world)

Try It Out!

    • Exchange 2010 SP1 Beta downloadis now available from the download center!
resources

Required Slide

Resources

Learning

  • Sessions On-Demand & Community
  • Microsoft Certification & Training Resources

www.microsoft.com/teched

www.microsoft.com/learning

  • Resources for IT Professionals
  • Resources for Developers

http://microsoft.com/technet

http://microsoft.com/msdn

slide31

Required Slide

Complete an evaluation on CommNet and enter to win!

slide32

Sign up for Tech·Ed 2011 and save $500 starting June 8 – June 31st

http://northamerica.msteched.com/registration

You can also register at the North America 2011 kiosk located at registrationJoin us in Atlanta next year

slide33

© 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.

The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

ad