270 likes | 401 Views
More Power Out: Empowering your mobile workforce. Rick Claus IT Pro Advisor Microsoft Canada rclaus@microsoft.com http://blogs.technet.com/rclaus xBox Live: Rickster CDN. Damir Bersinic IT Pro Advisor Microsoft Canada damirb@microsoft.com http://blogs.technet.com/damirb. Session Goals:.
E N D
More Power Out: Empowering your mobile workforce Rick Claus IT Pro Advisor Microsoft Canada rclaus@microsoft.com http://blogs.technet.com/rclaus xBox Live: Rickster CDN Damir Bersinic IT Pro Advisor Microsoft Canada damirb@microsoft.com http://blogs.technet.com/damirb
Session Goals: • Allow your workforce to be mobile and connected • Configure your environment to maximize your mobile workforce experience • Best Practices, Tools and Tips.
Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005
Remote Access ScenariosTraditional Remote Access Methods • File Transfer Protocol (FTP) Sites • Secure connections using the Internet • Lack of functionality • Administrative expense • Dial-up Remote Access Server (RAS) • Secure direct connections • Expensive (server resources) • Administrative expense • Virtual Private Networks (VPN) • Secure connections using the Internet • Expensive (server resources) • Administrative expense
Remote Access ScenariosExtranets • Accessible to Web browsers • HTTP and HTTPS access • Low administrative costs • Secure connections using the Internet • Different authentication mechanisms available • Fully-functional Web-based applications • Line-of-business applications • SharePoint Portal Sites • Collaborative SharePoint team sites • Consistent user-experience • Intranet access • Extranet and Internet access
Remote Access ScenariosRPC over HTTPS Proxies • Allows for VPN-less connections while still providing strong security • More and more applications are supporting RPC proxies via HTTPS using SSL tunnels • Outlook 2003 SP1 can use RPC over HTTPS • Other applications are planned in the future
Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005
ISA Server Web Server Domain Controller Publishing Web Sites with ISA Server 2004ISA Server Firewalls
demonstration • ISA Server 2004 Overview • ISA Management MMC • Rules, Listeners, Publishing
Publishing Web Sites with ISA Server 2004Server Publishing • Typically used for services other than Web or FTP • Examples: SQL Server, SMTP Services • Used for Live Communications Server 2005 TLS • Can be used for publishing Web sites • Not recommended • Lack of configuration flexibility • External HTTP requests can bypass the Web proxy service
Publishing Web Sites with ISA Server 2004Link Translation • Some Web applications use absolute addresses for resources and hyperlinks • Can result in inaccessibility to users on the Internet or extranet • Can expose computer names and IP addresses to hackers • Can be confusing to users on the intranet • SharePoint applications often use a mix of relative and absolute addresses • Server names • IP addresses • ISA Server allows string substitution to resolve absolute address issues
Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005
Authentication Methods for SharePoint Web SitesSecuring SharePoint Applications • SharePoint supports a number of different authentication scenarios • Anonymous access • Basic authentication • Windows authentication • SSL and certificate authentication • SharePoint users and groups are used to control access to sites, libraries, and other resources
Authentication Methods for SharePoint Web SitesAuthentication for Published SharePoint Sites • ISA Server 2004 can: • Pre-authenticate users • Often with basic authentication • Use SSL for basic authentication scenarios • Publishing a secure Web site • User credentials are encrypted by SSL • Use pass-through Windows authentication • Passes authentication to the SharePoint Web server
demonstration • Securing SharePoint with ISA 2004 • Configure SharePoint Security • Configure External DNS for Site Access • Publish SharePoint Site Using ISA 2004 • Connecting to SharePoint Site from External Network
Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005
Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)
demonstration • Configure RPC over HTTPS • Configure Exchange 2003 Server for RPC over HTTPS • Publish RPC over HTTPS in ISA 2004 • Configure Outlook 2003 for RPC over HTTPS
Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)
demonstration • Publishing OWA and OMA • Configure Outlook Web Access • Configure Exchange for Outlook Mobile Access • Publish OWA and OMA in ISA 2004
Flexible, Secure Access Outlook Clients(RPC/HTTPS) Perimeter Network (DMZ) E2003 Back-End Servers Exch 2003 OWA Clients(HTTPS / HTML) Wireless Carrier and Internet Firewall Firewall ISA Radius (IAS) Server Pocket PC (HTTPS / HTML) ISA 2004 RPC Filtering SMTP Filtering RSA SecurID OWA Access Wizard Windows 2003AD / GC Server WAP 2.0, iMode(xHTML, cHTML)
demonstration • Publishing Exchange ActiveSync • Configure Exchange for ActiveSync • Publish ActiveSync in ISA 2004
Agenda • Remote Access Scenarios • Publishing Web Sites with ISA Server 2004 • Authentication Methods for SharePoint Web Sites • Publishing OWA, OMA, RPC over HTTPS • Publishing Live Communication Server 2005
demonstration • Publishing the LCS 2005 Server • Configure LCS 2005 for External Access • Publish LCS 2005 in ISA 2004
More Power Out:Empowering your mobile workforce • Web-based extranets provide access to business information with low administrative and resource costs • SharePoint Web sites provide ideal extranet solutions for collaborative access to business information • ISA Server 2004 can be used to publish and secure • SharePoint applications for an extranet or over the Internet • Exchange Outlook Web Access / Outlook Mobile Access • Outlook RPC over HTTPS • Live Communication Server 2005
For More Information… • Main TechNet Canada Web site at www.microsoft.ca/technet • Exchange Server 2003 SP2 http://www.microsoft.com/exchange/evaluation/sp2/overview.mspx • Exchange Product Team Blog http://blogs.technet.com/exchange • Live Communications Server 2005 SP1 http://office.microsoft.com/en-ca/FX010908711033.aspx • Sharepoint Portal Server 2003 http://www.microsoft.com/sharepoint/default.mspx
Join us for the next session on: Extending your collaboration platform