1 / 33

Hybrid Configuration from A to Z

Learn how to set up Azure AD services, identity management, and Office 365 Hybrid using the Hybrid Picker option. Connect SharePoint 2016 and 2019 to get Sites and hybrid services.

matthewsm
Download Presentation

Hybrid Configuration from A to Z

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. JAN 12 SharePoint Saturday Virginia Beach #SPSVB SharePoint and Office 365 LEVEL 100 Hybrid Configuration from A to Z #PowerApps Nicolas GeorgeaultSenior Architect, MuBrain Inc.

  2. SPSVB Sponsors Platinum Gold Silver

  3. SharePint ATC Immediately following SPSVB ClosingSome appetizers will be provided

  4. About me @ngeorgeault Founder and PPM @MuBrain Inc. 20 years of experience in KM 12 years with Microsoft SharePoint Microsoft Specialist and Partner MVP for 8 years Machine Leaning certificate from Stanford University Co-author of books about SharePoint Mad about Jazz music and HorseBall

  5. Objectives • Learn why Hybrid is so important • Discover how to setup Azure AD Services and be sure to get all the details about Identity management • Learn how to setup Office 365 Hybrid using the new Hybrid Picker option • Learn how to connect correctly SharePoint 2016 and 2019 to get Sites and hybrid services

  6. Why it is so important? Hybridization is the result of mixing two animals or plants of different breeds, varieties, species or genera.

  7. So… Why it is so important? • Users have to deal with multiple… …Services • So they usually have multiple… …Identities • And we want to guaranty… …Contextualization

  8. Identity crisis Cloud identity Directory and password synchronization* Federated identity Windows Azure Active Directory Directory and password sync* Federation Directory sync On-premises identity On-premises identity Single identity Suitable for medium and large organizations without federation* Single federated identity and credentials Suitable for medium and large organizations • Single identity in the cloud • Suitable for small organizations with no integration to on-premises directories

  9. Cloud identity Office 365 Admin Portal Windows Azure Active Directory OAuth2 Metadata Office Activation Service SAML-P Exchange Mailbox Access Graph API … WS-Federation Authorization CSV Import Spreadsheet

  10. Directory and password sync (AD connect) Office 365 Admin Portal Windows Azure Active Directory OAuth2 Metadata Office Activation Service SAML-P Exchange Mailbox Access Graph API … WS-Federation Authorization DirectorySync Active Directory On Premises

  11. AD FS Office 365 Admin Portal Windows Azure Active Directory OAuth2 Metadata Office Activation Service SAML-P Exchange Mailbox Access Graph API … WS-Federation Authorization DirectorySync Active Directory Federation Services Active Directory On Premises

  12. How to keep your identities connected and synchronized Azure AD Connect

  13. Deployment Steps Required Tools • Active Directory Connect - Link • Azure Active Directory Module for Windows PowerShell – Link • SharePoint Online Management Shell – Link

  14. Pre-Requisites

  15. SP Service Applications Following your scenarios: • Secure Store • User Profile Service • App Management Service Application • Search Service Application • Business Data Connectivity

  16. Domains • Verify the internal AD domain name with Office 365 – Needs to be a routable domain! • Enables Microsoft to verify that you “own” the domain • If you are using a non-routable domain (.local) for AD – all is not lost! • Verifying a domain increases the Office 365 object limit from 50K to 300K!

  17. Domain Infrastructure Pre-Requisites – Verify Internal Domain • In my environment the AD domain is mubrain.com which is routable! • But if it was mubrain.local, I would had to associated it with my domain mubrain.com by adding a UPN Suffix • And update user accounts to use the gouv365.com domain

  18. Active Directory Infrastructure Pre-Requisites – Active Directory • AD domain must be at least Windows Server 2003 Forest Functional Level • Run IdFixto identify objects that could cause sync issues and remediate • Illegal characters • Duplicate entries • Length • …

  19. Setting up AD Connect

  20. DEMO Setting up Domain and Azure AD Connect. Install and configure the AD Connect tool – Link Assign user licenses in Office 365

  21. Deployment Steps Additional Considerations • For greater control over the attributes that are synchronised to Azure AD select Azure AD app and attribute filtering • Password write-back requires Azure AD Basic or Premium

  22. Deployment Steps Checking Directory Synchronisation

  23. Deployment Steps Directory Synchronisation – Notification e-mail

  24. Deployment Steps Assigning Licenses for the portal or using PowerShell • Licenses all users with a Username (UPN) of *.mubrain.com • Also sets their location to CA Set-MsolUserLicense -UserPrincipalName "<Account>" -AddLicenses "<AccountSkuId>“ #Add Licences $Users = Get-MsolUser | Where {$_.UserPrincipalName –like “*@mubrain.com”} Foreach ($User in $Users) { Set-MsolUser –UserPrincipalName $User.UserPrincipalName –UsageLocation CA Set-MsolUserLicence –UserPrincipalName $User.UserPrincpalName –AddLicences “gouv365:ENTERPRISEPACK” }

  25. Setup your Hybrid mode following most used scenarios Hybrid Picker?!

  26. Existing scenarios • Hybrid OneDrive • Hybrid Sites Features • Hybrid App Launcher • Hybrid Extranet Business to Business sites • Hybrid Auditing • Hybrid Taxonomy

  27. Dive into Office 365 and SharePoint hybrid scenarios (Microsoft Ignite 2017) https://channel9.msdn.com/Events/Ignite/Microsoft-Ignite-Orlando-2017/BRK2225

  28. https://www.hyperfish.com

  29. Any Question?

  30. SPSVB Sponsors Platinum Gold Silver

  31. SharePint ATC Immediately following SPSVB ClosingSome appetizers will be provided

More Related