340 likes | 560 Views
UC202. Microsoft ® Lync ™ Server 2010: Architecture. Michael Trommsdorff Group Manager Vassili Kaplan Developer Zurich Development Center Microsoft Corporation. Made in Switzerland!.
E N D
UC202 Microsoft® Lync™ Server 2010: Architecture Michael Trommsdorff Group Manager Vassili Kaplan Developer Zurich Development Center Microsoft Corporation
Made in Switzerland! • Lync Server voice-apps (dial-in conferencing, Response Group Service, Announcement Service, Call Park) & Attendant Console
Agenda • Unified Communications Roadmap • Topology related investments • Manageability enhancements + demo • Virtualization • DNS load balancing • PIN Authentication • Location Infrastructure • Cloud Integration • Q&A
November 2010 • December 2008 • July 2007 Unified Communications Roadmap • Web Conferencing • Basic Voice • Video Dial-In Conferencing Advanced Call Features Full Voice support Unified Web conferencing client
Lync Server 2010 Product InvestmentsDeliver the next generation communications system v • Ease of Use Lower TCO Open and Extensible Next Generation Communications Enterprise Voice Platform for Business Processes
Agenda • Unified Communications Roadmap • Topology related investments • Central Management Store • Resiliency • Manageability enhancements • Virtualization • PIN Authentication • Location Infrastructure • Cloud Integration • Q&A
Central Management Store • Schematized definition of deployment topology • Configuration of Lync Server 2010 services and Policies managed by central store • Replication of policies/ configuration to all topology nodes (including Edge) • Validation tools help prevent misconfiguration Service Site A, AVConfServices, 1 depends on Site A, User Services, 1 depends on Site A, Meditation Server, 1 installed on Site A, Pool A Example Service Representation
Topologies Simplified Topologies Servers Optional Servers Front end Mediation Standard Edition Back end Group Chat AV Conf Archiving Edge Monitoring Enterprise Edition Director UM SCOM
Deployment Model • Global Deployment is a collection of Sites • Sites are made of Pools • Pools host users & services (such as conferencing, Voice over Internet Protocol (VoIP))
Design changes to supportVoice high availability User Services Component (Presence & Conferencing) • Registrar Component • Registration and Routing • Each registrar has its SQL Express DB • User Services Component • Presence & Conferencing • Registrar and User Services are collocated in same physical Front End in the DC • All user end points register with same registrar • Users are load balanced by Registrars using a Distributed Hash Algorithm • Registrar can be installed in remote locations Registrar Component Registration & Routing Lync Clients User’s Desktop
Resiliency Architecture • Each user has a “Primary Registrar Pool”. • Discovers through DNS SRV. Directed to “Primary & Backup Registrar Pool” • For Data Center User = Data Center • For Branch User = Survivable Branch Appliance (SBA) • Branch Users always register with the SBA Registrar unless it is unavailable • Each Registrar Pool can have a “Backup Registrar Pool” • Backup Registrar Pool = Data Center CS Pool • Backup Registrar heart-beats Primary Registrar. • If heart-beat not received within Backup starts accepting client registrations • Configurable Failover Interval (default = 120 sec for branch offices)
Resiliency Architecture Data Center - EE Pool 1 Presence Conferencing AD & DNS Registrar (Registration & Routing) Bob’s Primary Registrar & User Services:EE Pool 1 Alice’s Primary Registrar & User Services:EE Pool 2 Backup Registrar Pool Data Center - EE Pool 2 Branch Office Presence Conferencing Registrar AD & DNS Joe’s Primary Registrar: SBA User Services:EE Pool 1 Registrar (Registration & Routing) Survivable Branch Appliance
Other Resiliency enhancements • DNS Based Load Balancing for Internal Pools • All traffic can be DNS Load Balanced except Client –> Server HTTP • Still require Hardware Load Balancer (HLB) for this traffic – Windows Network Load Balancing (NLB) not supported for production • Draining: Ability to drain a “server” before taking the server down • Session Dialog Resiliency for Conferencing • Even if the Front End goes down, User can still participate in a conference • Client caches successful connections to Lync Server 2010 • FQDN and IP of SIP Registrar, Media Relay & Media Relay AuthServer • Reconnections are very fast • Lync Server certificate authentication for client to server auth • Certs are issues by Lync and allow for resiliency when AD is down
Branch Resiliency Options Users Small Branch (<25 users) No Local Infrastructure or gateway only 25 Data Center WAN Medium Branch - (25-1000 users) SBA Survivable Branch Appliance(s) 500 PSTN 1000 AD & DNS Large Branch (>1000 users) Survivable Branch Server or Standard Edition Server and Separate Media Gateway Circuit Packet
Survivable Branch Appliance (SBA)Purpose-built appliance optimized to provide resilient multi-modal communication for maximizing branch office user productivity WAN Lync Server Pool Edge Server SBA PSTN Branch Office Data Center
Survivable Branch Appliance (SBA) Voice high availability for branch offices Appliance form factor with Hardened Windows Server 2008 R2 Sold and supported by UC partners Centrally Managed from the Datacenter
Reference Topologies – Standard Edition Central Site Standard Edition Small < 5000 users Branch A CA/DNS tiny.contoso.com Survivable Branch Appliance Edge Server Exchange UM Server PSTN All Server Roles HTTP reverse proxy WAN This example 5,000 users, 3 servers 1667 users/server PSTN Gateway(s)
Reference Topologies – Enterprise Edition Central Site Enterprise Edition Single Datacenter < 100,000 users Branch A CA/DNS contoso.com Survivable Branch Appliance Edge Server Pool retail.contoso.com Exchange UM Server File Share DNS Load Balancing DNS Load Balancing Branch B PSTN AV Conferencing Pool HTTP reverse proxy Front End Pool PSTN Gateway WAN This example 20,000 users, HA, 14 servers, 1429 users/server Director Pool Monitoring Pool PSTN Gateway(s)
Reference Topologies – Multi-site Global, Multi-Site Unlimited Branch A Central Site 1 -Enterprise Edition Exchange UM Server This example Site 1: 18 servers Site 2: 11 servers 2413 users/server (central sites only) CA/DNS Survivable Branch Appliance EU.contoso.com contoso.com “Branch” B Edge Server Pool Edge Server Pool File Share AV Conferencing Pool NA.contoso.com DNS Load Balancing Standard Edition PSTN Gateway DNS Load Balancing Front End Pool Monitoring and Archiving Pool PSTN SIP Trunking HTTP reverse proxy HTTP reverse proxy WAN Central Site 2 -Enterprise Edition DNS LB Branch C CA/DNS Director Pool PSTN Gateway(s) Front End Pool PSTN Gateway File Share AV Conferencing Pool
Agenda • Unified Communications Roadmap • Topology related investments • Manageability enhancements • Virtualization • PIN Authentication • Location Infrastructure • Cloud Integration • Q&A
Manageability Enhancements • Lync Server 2010 Control Panel (CSCP) • Silverlight™ based administration console • Task oriented and uses underlying PowerShell Infrastructure • Replaces MMC • PowerShell • Complete access to all administrative tasks • Automation interface • Replaces Windows Management Instrumentation (WMI) • Role Based Access Control (RBAC) • Access controlled by security group membership • New delegation model: site aware • Synthetic Transactions – powershell based framework that allows admins to proactively identify faults in the system, and raise alerts in SCOM
Demo Manageability enhancements Vassili Kaplan
Agenda • Unified Communications Roadmap • Topology related investments • Manageability enhancements • Virtualization • PIN Authentication • Location Infrastructure • Cloud Integration • Q&A
Virtualization • What’s supported? • Virtualization of specific Lync Server 2010 roles • SQL, Exchange, Active Directory® Domain Services (AD DS) virtualization (as per guidelines) • Hyper-V R2 (2008 not supported), VM Ware (per SVVP) • Client virtualization (except Audio/video - use IP phone) • Not Supported • Branch office/Gateway only/Mediation server + gateway • Standard Edition (single server deployed as “Datacenter” site) • Live migration of VMs via SCVMM (ongoing calls/sessions will be dropped) • Virtual Deployment • 4 VMs – Front end, back end+ file store, A/V MCU, Edge • 1 Physical machine – 16 cores, 16 GB, 500 GB SAS drive, Dual NIC, Intel Xeon E7450 procs. Dedicated to Communications Server “14” only • Pilot no HLB or DNS LB. Production – Needs HLB. • Scale reduction (up to 50%) compared to non-virtualized
Allow PIN based sign on for devices Lync Server 2010 signed certificates to access Lync Server 2010 Web services User certificate to access EWS Unified PIN for devices and CAA PIN Management portal in Lync Server 2010 along with appropriate notifications INTERNAL NETWORK ONLY 1a. DHCP Option 43 & 120 PIN Authentication 1b. Lync Cert WS URL & Lync Registrar FQDN DHCP Server/ Lync Registrar INTERNAL NETWORK ONLY 2a. Http: Get Cert Chain 2b. Http: Download Cert Chain 3a. Https: Resolve User (Ext/Phone #, Pin) 3b. Https: SIP URI 4a. Https: Get and Publish Cert (SIP URI, Pin, CSR) 4b. Https: Lync Signed Cert Lync Cert Provisioning Web Service EXTERNAL NETWORK 5. TLS to Lync Registrar FQDN AUTH (SIP URI, Cert) 6. REGISTER (SIP URI) Supported; Cert Lync Registrar SIP 401ww-authenticate: Cert 7. REGISTER (SIP URI) Authorization: Cert, Cert Param 200 OK Lync User Services
Agenda • Unified Communications Roadmap • Topology related investments • Manageability enhancements • Virtualization • PIN Authentication • Location Infrastructure • Cloud Integration
Location Infrastructure • Base requirement – provide location with emergency calls (North American), while ensuring that the solution addresses the roaming nature of communicator clients • Added a Location Information Service that is part of the Frontend role • Flexibility in enablement options – user/location • Architecture allows integration with existing LIS systems
Agenda • Unified Communications Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • PIN Authentication • Location Infrastructure • Cloud Integration
Cloud IntegrationConnected business and optimized IT • Consistent user experience across delivery options • Common architecture and data model across deployments • Flexibility in deployment – meets your complex needs • Adaptability in deployment – enables changes at any time On-Premises Hosted Service Rapid scalability Advanced manageability Control and ownership Customization
Key Takeaways You should now have a better understanding of the key architectural changes in Lync Server 2010 and the benefits of the engineering investments: • Simplified Topologies – fewer number of servers with more functionality • Understand how TCO is lowered by offering a simplified deployment and administration experience • Improved support for Virtualized environments • Great monitoring capabilities to allow for proactive problem detection • Seamless Integration with Cloud infrastructure allowing more choices of deployment across the different workloads
Learn More • View Related Unified Communications (UNC) Content at TechEd Online • Visit microsoft.com/communicationsserver for more Lync Server 2010 product information • Find additional Lync Server 2010 content in the Technical Library, weekly technical articles at NextHop, and follow DrRez on Twitter • Check out Microsoft TechNet resources for Lync Server and Exchange Server • Visit additional Exchange 2010 IT Professional-focused content: Partner Link or Customer Link (Name: ExProPword: EHLO!world) • Try it out! • Exchange 2010 SP1 Beta download is now available from the download center
Обратная связь Ваше мнение очень важно для нас. Пожалуйста, оцените доклад, заполните анкету и сдайте ее при выходе из зала Спасибо!