1 / 33

How Microsoft IT Implemented Microsoft Exchange Server 2010

SESSION CODE: UNC202. How Microsoft IT Implemented Microsoft Exchange Server 2010. Mahendra Sekaran. Survivable Branch Appliance (SBA).

edda
Download Presentation

How Microsoft IT Implemented Microsoft Exchange Server 2010

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. SESSION CODE: UNC202 How Microsoft IT Implemented Microsoft Exchange Server 2010 MahendraSekaran

  2. Survivable Branch Appliance (SBA) A purpose-built appliance optimized to provide resilient multi-modal communication for maximizing branch office user productivity. Solution re-architected for Registrar to work when UserServices role is unavailable or unaccessible. Data Center Branch Office CS Pool Edge Server SBA WAN PSTN Details? UNC 313

  3. Topologies Simplified Topologies Servers Optional Servers Front end Mediation Standard Edition Back end Group Chat Director Archiving Monitoring Enterprise Edition AV Conf SCOM Edge UM

  4. Deployment Model • Global Deployment is a collection of Sites • Sites are made of Pools • Pools host users & services (such as conferencing, Voice over Internet Protocol (VoIP))

  5. Deployment Options Multi-site Resiliency Pool-level Resiliency Small or Trial Deploy Single Data Center Multiple Data Centers Central Site Branch Office Site Sites which host a pool of either SE or EE Sites that do not host a pool • Branches without redundant WANs will purchase a Survivable Branch Appliance to handle voice resiliency in the branch office • Branches with a redundant WAN connection, still require basic PSTN termination with SIP Gateway. • Standard Edition Server can be utilized for improved Quality of Experience (QoE) in large, distant “branches” (truly a Central Site) with lots of conferencing utilization. • Not all branches will require resiliency – for smaller branches, use Remote User Connectivity over public internet or 3G/4G network. • Smaller organizations not requiring resiliency can choose a Standard Edition Server (SE), a single server with all roles consolidated on that server functioning • Organizations who need resiliency will choose an Enterprise Edition Pool (EE), defining a pool of multiple servers comprised of front end and back end roles • “Paired” Standard Edition can offer failover between two SE servers for lower cost and reduced functionality. • Additional Server roles required include Archiving, Director, Edge and Monitoring

  6. Reference Topologies Small < 5000 users This example 5,000 users, 3 servers 1667 users/server

  7. Reference Topologies Single Datacenter < 100,000 users This example 20,000 users, HA, 14 servers 1429 users/server

  8. Reference Topologies Global, Multi-Site Unlimited Site C Site B This example Site 1: 18 servers Site 2: 11 servers Site3: 1 server 2413 users/server

  9. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  10. Manageability Enhancements • Rich Planning and Topology building tools • Communications Server Control Panel (CSCP) • Silverlight™ based administration console • Task oriented and uses underlying Powershell Infrastructure • PowerShell • Complete access to all administrative tasks • Automation interface • Replaces Windows Management Instrumentation (WMI) • Role Based Access Control (RBAC) • Access controlled by security group membership • New delegation model: site aware • Synthetic Transactions – powershell based framework that allows admins to proactively identify faults in the system, and raise alerts in SCOM Details? UNC 317

  11. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  12. Virtualization • What’s supported? • Virtualization of specific OCS roles • SQL, Exchange, AD virtualization (as per guidelines) • Hyper-V R2 (2008 not supported), VMWare • Client virtualization (except Audio/video - use IP phone) • Not Supported • Branch office/Gateway only/Mediation server+gateway • Standard Edition (single server deployed as production Site) • Live migration of VMs via SCVMM (ongoing calls/sessions will be dropped) • Virtual Deployment Reference Topology • 4 VMs – Front-end, Back-end+ filestore, A/V MCU, Edge • 1 Physical machine – 16 cores, 32 GB with 4 NICs, 1024 GB SAS drive, Intel Xeon E7450 procs. Dedicated to OCS only • Pilot has no HLB or DNS LB. Production – Needs HLB. • Perf reduction (around 50%) compared to non-virtualized topology

  13. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  14. DNS Load Balancing DNS LB Goals • Simplify HLB Configuration • Reduce dependence on HLB • DNS LB supported for Internal Pool, Director Pool, and Edge • All Server-Server and Client-Server SIP traffic • All Server-Server HTTP traffic • Media traffic • Support Draining of Applications • Improve Load balancing of server-server traffic (Ex: Access Edge – Director) • Eliminating HLB is not a goal • HLB still be required for Internal Pools • Client – Server HTTP & HTTP(s) traffic (ABS, DLX, LIS, etc.)

  15. DNS LB Architecture/Design • DNS A Record for FQDN resolves to Multiple IPs • Failover: If connect to an IP fails, failover to the next IP in the list • Load balance across multiple servers (Ex: SIP traffic sent to multiple IPs) • Draining: If Server IP1 being drained (returns 503 with special header), send all traffic to the next IP (IP2) • Honor DNS TTL except • If < 5 min, TTL = 5 min • If > 24 hours, TTL = 24 hours

  16. DNS LB Sample Configuration For a Communications Server Pool ocspool1.contoso.com with 3 FEs: FE1, FE2, FE3 OCS 2007 R2 HLB - DNS Configuration CS “14” DNS LB - DNS Configuration Pool DNS A Entries Machine DNS A Entries

  17. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  18. Authentication • OCS Signed Certificate Authentication – Certificate issued by OCS to a client endpoint, which can then be used by client to authenticate against OCS (no PKI requirements) • Authwithout AD (temporarily) and domain controller for Branch Resiliency • PIN based devices authenticating outside enterprise • PIN based authentication • Inside devices authenticating with keypad • Acquire OCS signed certificate via PIN to use externally. • In order to support these scenarios, we’ve added a new authentication framework called Web-Ticket

  19. Use Web-Ticket to authenticate with other OCS services: ABS/DLX/etc. Web-Ticket Authentication • Service can use NTLM, Kerberos, PIN, or OCS Signed Certificate to get a web-ticket. • Web-ticket auth used for OCS web services. • ABS, DLX, ABS-WQ, RGS, OCS Certificate • Consolidates web service authentication under a single standards-based framework • WS-Transfer, WS-Trust, WS-Security, SAML, SOAP, WS-MetadataExchange

  20. PIN Authentication • Allow PIN based sign on for devices • OCS signed certificates to access OCS web services • Unify PIN for devices and CAA • PIN Management portal in OCS along with appropriate notifications

  21. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  22. Location Infrastructure • Base requirement – provide location with emergency calls (North American), while ensuring that the solution addresses the roaming nature of communicator clients • Added a Location Information Service that is part of the Frontend role • Flexibility in enablement options – user/location • Architecture allows integration with existing LIS systems

  23. Agenda • Communications Server Roadmap • Topology related investments • Manageability enhancements • Virtualization • DNS load balancing • Authentication enhancements • Location Infrastructure • Cloud Integration • Q&A

  24. Cloud IntegrationConnected business and optimized IT Details? UNC 206 • Consistent user experience across delivery options • Common architecture and data model across deployments • Flexibility in deployment – meets your complex needs • Adaptability in deployment – enables changes at any time On-Premise Hosted Service Rapid scalability Advanced manageability Control and ownership Customization

  25. Key Scenarios Cross-Premises Federation • Federation within tenants in the cloud • Federation with on-premises deployments • Cross-premises federation (split-domain) • Federation with Exchange Online

  26. Session Objectives and Key Takeaways • Understand key architectural changes in Communications Server “14” and the benefits of the engineering investments: • Simplified Topologies – fewer number of servers with more functionality • Understand how TCO is lowered by offering a simplified deployment and administration experience • Improved support for Virtualized environments • Great monitoring capabilities to allow for proactive problem detection • Seamless Integration with Cloud infrastructure allowing more choices of deployment across the different workloads

  27. Related Breakout SessionsAll of them in this room You are here

  28. Q&A

  29. Unified Communications Track Call to Action! Learn More! • View Related Unified Communications (UNC) Content at TechEd/after at TechEd Online • Visit microsoft.com/communicationsserver for more Communications Server “14” product information • Find additional Communications Server “14” content in the Technical Library, weekly technical articles at NextHop, and follow DrRez on Twitter • Check out Microsoft TechNet resources for Communications Server and Exchange Server • Visit additional Exchange 2010 IT Professional-focused content • Partner LinkorCustomer Link (Name: ExProPword: EHLO!world) Try It Out! • Exchange 2010 SP1 Beta downloadis now available from the download center!

  30. Required Slide Resources Learning • Sessions On-Demand & Community • Microsoft Certification & Training Resources www.microsoft.com/teched www.microsoft.com/learning • Resources for IT Professionals • Resources for Developers http://microsoft.com/technet http://microsoft.com/msdn

  31. Required Slide Complete an evaluation on CommNet and enter to win!

  32. Sign up for Tech·Ed 2011 and save $500 starting June 8 – June 31st http://northamerica.msteched.com/registration You can also register at the North America 2011 kiosk located at registrationJoin us in Atlanta next year

  33. © 2010 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

More Related