1 / 27

More Power Out: Empowering your mobile workforce

More Power Out: Empowering your mobile workforce. Rick Claus IT Pro Advisor Microsoft Canada rclaus@microsoft.com http://blogs.technet.com/rclaus xBox Live: Rickster CDN. Damir Bersinic IT Pro Advisor Microsoft Canada damirb@microsoft.com http://blogs.technet.com/damirb. Session Goals:.

Download Presentation

More Power Out: Empowering your mobile workforce

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. More Power Out: Empowering your mobile workforce Rick Claus IT Pro Advisor Microsoft Canada rclaus@microsoft.com http://blogs.technet.com/rclaus xBox Live: Rickster CDN Damir Bersinic IT Pro Advisor Microsoft Canada damirb@microsoft.com http://blogs.technet.com/damirb

  2. Session Goals: • Allow your workforce to be mobile and connected • Configure your environment to maximize your mobile workforce experience • Best Practices, Tools and Tips.

  3. Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005

  4. Remote Access ScenariosTraditional Remote Access Methods • File Transfer Protocol (FTP) Sites • Secure connections using the Internet • Lack of functionality • Administrative expense • Dial-up Remote Access Server (RAS) • Secure direct connections • Expensive (server resources) • Administrative expense • Virtual Private Networks (VPN) • Secure connections using the Internet • Expensive (server resources) • Administrative expense

  5. Remote Access ScenariosExtranets • Accessible to Web browsers • HTTP and HTTPS access • Low administrative costs • Secure connections using the Internet • Different authentication mechanisms available • Fully-functional Web-based applications • Line-of-business applications • SharePoint Portal Sites • Collaborative SharePoint team sites • Consistent user-experience • Intranet access • Extranet and Internet access

  6. Remote Access ScenariosRPC over HTTPS Proxies • Allows for VPN-less connections while still providing strong security • More and more applications are supporting RPC proxies via HTTPS using SSL tunnels • Outlook 2003 SP1 can use RPC over HTTPS • Other applications are planned in the future

  7. Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005

  8. ISA Server Web Server Domain Controller Publishing Web Sites with ISA Server 2004ISA Server Firewalls

  9. demonstration • ISA Server 2004 Overview • ISA Management MMC • Rules, Listeners, Publishing

  10. Publishing Web Sites with ISA Server 2004Server Publishing • Typically used for services other than Web or FTP • Examples: SQL Server, SMTP Services • Used for Live Communications Server 2005 TLS • Can be used for publishing Web sites • Not recommended • Lack of configuration flexibility • External HTTP requests can bypass the Web proxy service

  11. Publishing Web Sites with ISA Server 2004Link Translation • Some Web applications use absolute addresses for resources and hyperlinks • Can result in inaccessibility to users on the Internet or extranet • Can expose computer names and IP addresses to hackers • Can be confusing to users on the intranet • SharePoint applications often use a mix of relative and absolute addresses • Server names • IP addresses • ISA Server allows string substitution to resolve absolute address issues

  12. Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005

  13. Authentication Methods for SharePoint Web SitesSecuring SharePoint Applications • SharePoint supports a number of different authentication scenarios • Anonymous access • Basic authentication • Windows authentication • SSL and certificate authentication • SharePoint users and groups are used to control access to sites, libraries, and other resources

  14. Authentication Methods for SharePoint Web SitesAuthentication for Published SharePoint Sites • ISA Server 2004 can: • Pre-authenticate users • Often with basic authentication • Use SSL for basic authentication scenarios • Publishing a secure Web site • User credentials are encrypted by SSL • Use pass-through Windows authentication • Passes authentication to the SharePoint Web server

  15. demonstration • Securing SharePoint with ISA 2004 • Configure SharePoint Security • Configure External DNS for Site Access • Publish SharePoint Site Using ISA 2004 • Connecting to SharePoint Site from External Network

  16. Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005

  17. Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)

  18. demonstration • Configure RPC over HTTPS • Configure Exchange 2003 Server for RPC over HTTPS • Publish RPC over HTTPS in ISA 2004 • Configure Outlook 2003 for RPC over HTTPS

  19. Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)

  20. demonstration • Publishing OWA and OMA • Configure Outlook Web Access • Configure Exchange for Outlook Mobile Access • Publish OWA and OMA in ISA 2004

  21. Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)

  22. demonstration • Publishing Exchange ActiveSync • Configure Exchange for ActiveSync • Publish ActiveSync in ISA 2004

  23. Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005

  24. demonstration • Publishing the LCS 2005 Server • Configure LCS 2005 for External Access • Publish LCS 2005 in ISA 2004

  25. More Power Out:Empowering your mobile workforce • Web-based extranets provide access to business information with low administrative and resource costs • SharePoint Web sites provide ideal extranet solutions for collaborative access to business information • ISA Server 2004 can be used to publish and secure • SharePoint applications for an extranet or over the Internet • Exchange Outlook Web Access / Outlook Mobile Access • Outlook RPC over HTTPS • Live Communication Server 2005

  26. For More Information… • Main TechNet Canada Web site at www.microsoft.ca/technet • Exchange Server 2003 SP2 http://www.microsoft.com/exchange/evaluation/sp2/overview.mspx • Exchange Product Team Blog http://blogs.technet.com/exchange • Live Communications Server 2005 SP1 http://office.microsoft.com/en-ca/FX010908711033.aspx • Sharepoint Portal Server 2003 http://www.microsoft.com/sharepoint/default.mspx

  27. Join us for the next session on: Extending your collaboration platform

More Related