1 / 28

INF315 - Live Communication Server 2005 Technological Drill Down

INF315 - Live Communication Server 2005 Technological Drill Down. Golan Edri RTC Regional Director Artnet Experts golane@office.artnet.co.il. Agenda. Architecture-Overview Capacity Planning Demo Remote Access Solutions Demo Archiving Services Demo

malo
Download Presentation

INF315 - Live Communication Server 2005 Technological Drill Down

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. INF315 - Live Communication Server 2005TechnologicalDrill Down Golan Edri RTC Regional Director Artnet Experts golane@office.artnet.co.il

  2. Agenda • Architecture-Overview • Capacity Planning • Demo • Remote Access Solutions • Demo • Archiving Services • Demo • Live Communication Server- Security • Resource Kit • Demo,Demo,Demo,Demo,Demo,Demo

  3. Proxy Access Proxy Server Roles Enterprise Pool Director Archiving Service Address Book Service

  4. Enterprise Edition Server • Two Tiered Architecture - Over 120k users in single pool - SQL database stores user info • Scale out - With additional EE servers and hardware load balancer • For Higher Availability - Front End fail-over support - Optional SQL clustering

  5. Load balancer Load balancer Internet Access Proxy • New server role in Live Communications Server 2005 • Deployed in the network perimeter (DMZ) • Controls Federation and Remote Access settings • Message Security • Certificates required • Traffic is always encrypted (TLS) Corporate Network

  6. Proxy • Functionality • forward client requests • Does not • host users • perform authentication • enable federation

  7. AB AB AB Address Book Service AD File Server UR syncs from AD file://internal/share Normalize http://external/path Address Book Service ABS syncs from LCS User Replicator (UR) ISA 2004

  8. MSMQ MSMQ Archiving Service • Archiving Agent / Archiving Service • MSMQ • SQL Server 2000 SP3a+ • Per-user archiving • Global default • User overwrite • Federation notification header (MOC)

  9. Archiving Service • Archiving Service Settings • Retrieving and IM session

  10. Using the Capacity Planning Tools

  11. Capacity Planning Tools • Live Communications Server System Model • User Load Simulation Tool- LcsUserStress • Backend Load Simulation Tool-LcsLoadSim No LCS Required

  12. Configure CapacityPlanning • LCSStressUser Simulation • LCSLoadsim Simulation • Bottle-neck detection situation

  13. Remote Access Solutions

  14. Remote Access Solutions • Remote User Topology • Enterprise to Enterprise Federation

  15. Remote User

  16. Remote User Concepts • YOUR enterprise users, connecting from home or any external network • Without a VPN • Not users (e.g. No AD in the perimeter network) • Features • Presence, IM, User Search, Roaming Contacts • Voice/Video/Data limited by Firewall • Third party- Jasomi,Ingate,Netrake Solutions

  17. Remote User Topology Firewall port 443 or 5061 Office Communicator Trusts the CA of the certificate used by the AP DMZ TLS Director Pool MTLS MTLS Web Client Access Proxy AD Office Communicator Mobile

  18. Remote User Access • Mobile Communicator • Web Client Access

  19. Federation

  20. Enterprise A Enterprise B MTLS AD AD MTLS MTLS LCS 2005 LCS 2005 LCS 2005 Access Proxy LCS 2005 Access Proxy LCS Clients LCS Clients General Federation Concepts • Enables secure communication with other enterprise LCS deployments • Instant Messaging/Presence • Full admin control • Archiving notification

  21. Configure Direct Federation • Enable Federation • Specify Domain to Federate with … • Cross Certificate

  22. 4 Layers of Security

  23. Group Policy (rtcclient.adm) Security related policies • Prevent computer-to-computer audio calls • Prevent computer-to-phone audio calls • Prevent video calls • Prevent file transfer • Specify encryption for computer-to-computer and audio/video calls IMFilter.am • A script that runs on internal servers to: • Block file transfer • Block any IM which contains a clickable URL • Disabled by default Intelligent Instant Message Filter • Enhanced URL filtering • Enhanced file filter control

  24. Resource Kit Tools • Lcsping - Check Connectivity Servers • Lcscheck - Reports warnings an errors • lcswizard - Step-by-Step configuration • Lcsdiag - Diagnostic tool • Lcscertutil - Request Server Certificate

  25. Resource Kit Tools

  26. Summary • Architecture-Overview • Capacity Planning • Demo • Remote Access Solutions • Demo • Archiving Services • Demo • Live Communication Server- Security • Resource Kit • Demo, Demo, Demo, Demo, Demo, Demo

  27. Thank You Golan Edri RTC Regional Director Artnet Experts golane@office.artnet.co.il

More Related