The document provides an agenda for an Office 365 overview presentation. It introduces the presenters Scott Hoag and Dan Usher and covers topics such as Office 365 licensing, service level agreements, authentication options, security and compliance, and considerations for hybrid deployments between Office 365 and on-premises SharePoint. It also discusses application development, branding, search, and migration strategies.
3. Who are we?
Scott Hoag
@ciphertxt
Applied Information
Sciences
Infrastructure Consultant
scott.hoag@appliedis.com
Dan Usher
@binarybrewery
Booz Allen Hamilton
Incorporated
Lead Associate
usher_daniel@bah.com
#SUGDC
9. Service Level Agreement
Office 365 is treated as a component of Microsoft’s
online services
5 day prior notification for scheduled maintenance
99.9% Uptime Percentage
Pods and Failover
Service Credits
http://www.microsoftvolumelicensing.com/Downloader.aspx?DocumentId=6535
#SUGDC
10. What is considered downtime?
“Any period of time when users are unable to read or
write any portion of a SharePoint site collection for
which they have appropriate permissions.”
#SUGDC
11. Authentication Options in The Cloud™
Cloud Identity
Directory and Password Synchronization
Federation
#SUGDC
12. Identity Scenarios
Cloud Identity
Single identity in the cloud with
no integration to on-premises
directories
Directory & Password
Synchronization
Single identity and credentials
Federated Identity
Single federated identity
and credentials
#SUGDC
13. Security & Compliance
Certified for ISO 27001
EU Model Clauses
Data processing agreement
HIPAA Business Associate Agreement
FISMA Moderate
Family Educational Rights and Privacy Act
Office 365 Trust Center
#SUGDC
14. What is included?
Social
SkyDrive Pro, Newsfeeds,
Community Sites/Portals
External Users
Sites
Search
Business Intelligence
Apps
Workflow
Project Sites, Collaboration
Sites/Portal
eDiscovery
#SUGDC
15. Application Development
Apps! Apps! Apps!
Use SharePoint components
Surface remote data
Offload business logic
Access SharePoint list data
Make SharePoint a portal for other applications
Integrate SharePoint with Office applications and
services
Apps for SharePoint overview
#SUGDC
22. Enterprise Metadata
Taxonomies and Folksonomies are not shared
Information architecture dictates where content lives
Similar content can (and should) be managed together
Customizations & Dashboards for targeted content should be
managed in a single environment
Think segmented, not shared
#SUGDC
23. Information Rights Management
Applied to files at the list and library level
Relies on the Windows Azure Active Directory Rights
Management (Windows Azure AD RM)
IRM applies only to files that are attached to list items, not
the actual list items.
Encryption is supported for
PDF
The 97-2003 file formats Word, Excel, and PowerPoint
The Office Open XML formats for Word, Excel, and PowerPoint
#SUGDC
The XML Paper Specification (XPS) format
24. User Profiles
Each environment could host a User Profile and My
Site for each user
Recommend that users have a single My Site and a single User
Profile.
DirSync is unidirectional
Leverage Trusted Host Locations
Tags and Notes are unique to each environment
#SUGDC
25. SharePoint 2010 and Office 365 Search
Not possible to share indexes
Limited options
One search center with side-by-side results
Two search centers with separate results
Best bets can help (point to external sources)
Not possible to consume O365 Federated results onpremises
It is possible to browse to the raw federated results feed
from an O365 Search Center
#SUGDC
26. SharePoint 2013 and Office 365 Search
Authentication
Topologies
One-way outbound
Supported Functionality
SharePoint Server 2013 Search services can query SharePoint
Online site collections and return federated results to
SharePoint Server 2013 Search
One-way inbound
SharePoint Online Search services can query SharePoint
Server 2013 site collections and return federated results to
SharePoint Online Search
Two-way (bidirectional)
Both SharePoint Server 2013 and SharePoint Online Search
services can query site collections in the other environment
and return federated results
#SUGDC
30. Reverse Proxy Requirements
The device must support
Certificate authentication using a wildcard or SAN X.509 certificate as the client
certificate
Allow pass through of OAuth 2.0 redirection-based authentication
Preservation of request headers
If the internal and external URLs of your on-premises SharePoint Server
2013 are different, the device must support path mapping and link
translation.
Forefront Threat Management Gateway (TMG) 2010 is the only reverse
proxy device for which specific configuration guidance is available.
Microsoft Unified Access Gateway (UAG) is not supported for use as a
reverse proxy device in hybrid environments that require certificate
#SUGDC
authentication.
31. SharePoint 2013 and Office 365 Search
On-premises AD DS domain in a forest that has a Windows Server 2008/Windows Server
2008 R2/Windows Server 2012 forest functional level
An on-premises server for
AD FS 2.0
Microsoft Online Services Directory Synchronization tool
An operational on-premises SharePoint Server 2013 farm that has each of the following:
An Enterprise Search site collection configured with a public external URL
An SSL certificate issued by a public root authority
An App Management Service Proxy
A Subscription Settings service application
A Search service application
An Office 365 Enterprise plan (E1/E3)
A reverse proxy device with an Internet connection that permits unsolicited inbound traffic
An Internet domain and access to DNS records for the domain
#SUGDC
32.
33. Business Intelligence
Topologies
One-way inbound
Two-way (bidirectional)
Use App or External list to access data from SPO to
your on-premises environment
BCS Service brokers OData service endpoints
Can be configured to support full CRUDQ functionality
#SUGDC
34. Autohosted Apps
Contains one or more Windows Azure Web Sites
SharePoint provisions and deploys for you
Launched from a SharePoint 2013 host web
May also include
SharePoint components on an app web
Windows Azure SQL Server database
Windows Azure Access Control Services (ACS) brokers OAuth
Requests
#SUGDC
35. Migration Tips
SharePoint Migration Tools
Out in the hallway… be sure to ask about full fidelity of metadata
Migration Techniques and Strategies
Phased typically works better…
Fab 40 - not available… don’t try
Let the Exchange folks go first J
#SUGDC
37. Who are we again?
Scott Hoag
@ciphertxt
Applied Information
Sciences
Infrastructure Consultant
scott.hoag@appliedis.com
Dan Usher
@binarybrewery
Booz Allen Hamilton
Lead Associate
usher_daniel@bah.com
#SUGDC