lync'ing it all together

Unified Communications and Collaboration: Lync’ing IT All Together

IlseVan Criekinge

Office365 Technology Advisor

Microsoft BeLux

Ilse Van Criekinge

• Technology Advisor Core UC• Microsoft Belux

http://blogs.technet.com/ilvancri [email protected] @ivcrieki

http://blogs.technet.com/ilvancri

mailto:[email protected]

Agenda

Introduction

Out of the Box

Exchange + RMS

Exchange + SharePoint

Exchange + Lync

Lync + SharePoint

On Premises - Online

Authenticatio

n

Administratio

n

Storage

Compliance

Unified Inbox & Presence

AudioConferencin

gE-mail and

CalendaringWeb

Conferencing Telephony

VideoConferencin

g Voice MailInstant

Messaging (IM)

Communications Today

Authentication

Administration

Storage

User ExperienceAuthenticatio

n

Administratio

n

Storage

UserExperienc

e

Authentication

Administration

Storage

User Experience

Authentication

Administration

Storage

UserExperience Authenticatio

n

Administratio

n

Storage

User Experien

ce

Authenticatio

n

Administratio

n

Storage

UserExperien

ce

Authenticatio

n

Administratio

n

Storage

User Experien

ce

Telephony and

Voice Mail

InstantMessaging

E-mail andCalendarin

g

Unified Conferencin

g: Audio, Video, Web

Future of Communications

On-Premises Hybrid In the Cloud

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Setting the Scene

DC01 = Windows 2008 R2

EX01 = Windows 2008 R2 + Exchange 2010 Sp2

LYNC01 = Lync 2010

SP01 = SharePoint 2010

Out Of The Box

Presence integration = embedded presence and click-to-communicate in SharePoint sites

Out Of The Box, But...

Users must have Office 2010, Office 2007, or Microsoft Office 2003 with the latest service pack installed to view extended presence information on a SharePoint Server page!

The name.dll file is an ActiveX® control that calls the Lync API directly to request and display presence status within SharePoint site collections.

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Information Protection and Control

Exchange Server 2010 helps prevent the unauthorized transmission of sensitive information with tools that can automatically:

MONITOR e-mail for specific content, recipients and other attributes

CONTROL distribution with automated, granular polices

PROTECT access to data wherever it travels using rights management

PREVENT

Violations of corporate policy and best practices

Non-compliance with government and industry regulations

Loss of intellectual property and proprietary information

High-profile leaks of private information and customer records

Damage to corporate brand image and reputation

Benefits of Automated ControlsReduce User Error

• Majority of data loss incidents are accidental• Users forget policies or apply incorrect policy

Enable More Consistent Policy• Automation facilitates rapid policy changes across the

organization• Critical for internal/external governance and compliance

Improve Efficiency • Offload complex data polices from users • Enable centralized policy creation, execution and

management

LESS RESTRICTIVE MORE RESTRICTIVE

Benefits of Granular Controls

Alert “Allow

delivery but add a

warning.”

Append “Allow

delivery but add a

disclaimer.”

Protect“Allow

delivery but prevent

forwarding.”

Redirect“Block

delivery and

redirect.”

Review “Block

delivery until

reviewed.”

Block“Do not deliver.”

Modify “Allow

delivery but modify message.”

Classify “Allow

delivery but apply

classification.”

Mailtips Transport Rules (Exchange/FOPE/EHE)

Moderated Mailbox

Message Classificatio

n

Transport Rules

Transport Rules

Information Rights Management

Persistent protection Protects your sensitive information no matter where it is sent

Usage rights locked within the document itself

Protects online and offline, inside and outside of the firewall

Granular control Users apply IRM protection directly within an e-mail

Organizations can create custom usage policy templates such as "Confidential—Read Only"

Limit file access to only authorized users

Information Rights Management (IRM) provides persistent protection to control who can access,

forward, print, or copy sensitive data within an e-mail.

Protected messages sent to transport server

Messages and attachments decrypted to enable content filtering, transport rules

Infected messages and spam can be filtered

Messages are re-encrypted and delivered

IRM DecryptionEnable scanning, filtering, journaling

Journaled messages include decrypted clear-text copy

AD RMS Workflow

Information Author Information Recipient

22

33

11

44 55

6688

77

99

Database Server AD RMS Cluster Active Directory

Publishing Consuming

Configuring AD RMS for Exchange

Default Do Not Forward

Give Exchange servers the ability to access AD RMS by setting appropriate permissions on the AD RMS certification pipeline

Give Exchange servers the ability to decrypt protected messages and attachments by configuring the AD RMS super users group

Step1. CerverCertification.asmx

Step2. SuperUsers

Step3. InternalLicensing

Step4. Distribute Templates

Send RMS Protected MessagesThere is more:• TransportRules• Outlook Protection Rules

Receive RMS Protected Messages

Hybrid = Trusted Publishing Domains

MsBelux.Be MicrosoftBelux.OnMicrosoft.Com

1. MsBelux.Be exports private key and SLC

2. Office365 imports private key and SLC

4. Ilse sends PL and RAC with request for UL from O365

5. Office 365 uses imported private key to decrypt PL and issues UL

3. Koen sends IRM-Protected message to Ilse



Step 1: MsBelux.Be exports private key and SLC

Step 2: Office365 Imports Private Key and SLC




Step 3: Send a MailMsBelux.Be MicrosoftBelux.OnMicrosoft.Com




Step 4 + 5: Read MailMsBelux.Be MicrosoftBelux.OnMicrosoft.Com



4. Ilse sends PL and RAC with request for UL from O365

5. Office 365 uses imported private key to decrypt PL and issues UL


Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Exchange - SharePoint

My Picture

Outlook Integration

Indexing Public Folders

Web Parts

My PictureEXCHANGE – SHAREPOINT - LYNC

Lync 2010 and My Picture

Lync can display photo ADDS: thumbnailPhoto (SharePoint/Exchange)

URL (JPEG & publically readable)

thumbnailPhoto Introduced in Active Directory 2000

Default size is 100Kb (EMS limits to 10Kb)

Requires Outlook 2010 and a forest schema extended to the 2008 version or later

Replicate to Global Catalog


Controlling = CsClientPolicy DisplayPhoto MaxPhotoSizeKB (default = 30Kb)

Not stored in GalContacts.db Lync uses Address Book Web Query

PhotoHash PhotoRelPath PhotoSize

Cached client side & server side

Populate Picture

Using Exchange Import-

RecipientDataProperty

Using SharePoint Upload the user’s

picture on “My Site”

Configure SharePoint 2010 to replicate the picture from the user profile to AD

Perform the Full User Profile Synchronization

Outlook integrationEXCHANGE - SHAREPOINT

Outlook Integration Overview

Content is downloaded and stored in a PST file

Outlook Integration Overview

2-Way Synchronization is supported

Supported list types Calendars

Contacts

Tasks

Alerts

Document Libraries

Discussion boards

Indexing?EXCHANGE - SHAREPOINT

Indexing Public Folders

SharePoint’s search engine can index (crawl) Exchange Public Folders

Supported in SharePoint Server but not in SharePoint Foundation Can use Search Server Express 2010 for SPF

Fast Search can index (crawl) Exchange Public Folders as well

Web partsEXCHANGE - SHAREPOINT

Outlook Web App Web Parts

Access OWA content directly from a URL Entered in browser

Embedded in application like SharePoint

Min. Permissions required = Reviewer

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Exchange + Lync

MAPI or EWS

OWA integration

UM integration

Play On Phone

Mapi or ews?EXCHANGE + LYNC

Exchange and Lync: MAPI or EWS Access conversation history and voice mail

Play back voice mail message

Display free/busy information and working hours

Display meeting subject, time, and location

Display Out of Office status and note

Exchange contact sync

Search Outlook personal contacts

Exchange and Lync: Free/Busy

Does not require Outlook if EWS is deployed!

Exchange and Lync: Free/Busy ...

EWS Not Deployed? Verify the InternalURL and ExternalURL for the

Web Services virtual directory are entered

Exchange and Lync: Free/Busy ...

The information discovered by Lync via Autodiscover is cached in the registry

Lync Requires Exchange 2010 For

Presence info in OWA

Single Contact Store

Owa integrationEXCHANGE + LYNC

Lync 2010 Exchange 2010 OWA

Install the necessary updates on your Exchange Server

Configure the Exchange 2010 CAS

Configure Lync 2010

Exchange 2010 Sp2 CAS Updates?

Possible: vcredist_x64.exe Possible:

Office Communications Server 2007 R2 Web Service Provider

Unified Communications API 2.0 Redist (64 Bit) Hotfix KB 2400399

Possible (Win2008R2) Hotfix KB 968802: UcmaRedist.msp (!)

http://www.microsoft.com/download/en/details.aspx?id=14632



http://support.microsoft.com/kb/2400399

http://support.microsoft.com/kb/2400399


Configure Exchange 2010 CAS

Set-OwaVirtualDirectory: InstantMessagingType OCS

InstantMessagingEnabled $True

InstantMessagingCertificateThumbPrint

InstantMessagingServerName

Configure Exchange 2010 CAS

IISRESET

Configure Lync

Topology Builder: New Trusted Application Pool

Lync Management Shell: New Trusted Application

Control?

Unified messagingEXCHANGE + LYNC

Lync And Exchange UM

Exchange UM can service more than Lync Voice

Lync needs Exchange UM as a Voice Mail repository

Configuration

Create Exchange UM + Lync Dial Plan

Run Exchange UC Configuration Script

Run Lync UM Configuration Tool

No UM Integration

Small Note Collocation

Exchange CAS + UM Collocated

OWA Integration Configured

Solution Safe to ignore

Remove the CsTrustedApplication representing Exchange OWA (be careful when no longer collocating)

Small Note Collocation

Play on phoneEXCHANGE + LYNC

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Lync and SharePoint

Skill Search

Access MySite from Lync – Options

On a SharePoint Server page, view a user’s Lync presence indicator and its associated menu or contact card

Skill Search in Lync 2010

Requires SharePoint 2007 or later with maintained MySites

SharePoint search center URL is provisioned via in-band settings

SharePoint must be published to the internet

Requires full version of SharePoint (WSS is not sufficient)

Lync 2010 SharePoint Skill Search Process

Skill Search Config

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


BRINGING TOGETHER CLOUD VERSIONS OF OUR MOST TRUSTED COMMUNICATIONS AND COLLABORATION PRODUCTS WITH THE

LATEST VERSION OF OUR DESKTOP SUITE FOR BUSINESSES OF ALL SIZES.

Integration Possibilities

Exchange OnlineExchange Server (on-

premises)

Lync Online

• Lync client presence integration• IM/Presence in OWA

• Lync client presence integration

Lync Server on-premises

• Lync client presence integration• IM/Presence in OWA• Exchange Voice mail integration

• Lync client presence integration

• IM/Presence in OWA• Exchange Voice mail

integration

SharePoint OnlineSharePoint Server (on-

premises)

Lync Online

• Lync client presence integration • Lync client presence integration

Lync Server on-premises

• Lync client presence integration • Lync client presence integration

• Skill search in Lync client

Presence integration = OOF messages in Lync, calendar-based presence status, embedded presence in Outlook and Office

Presence integration = embedded presence and click-to-communicate in SharePoint sites

Agenda

Introduction

Out of the Box

Exchange + RMS


Exchange + Lync

Lync + SharePoint


Ilse Van Criekinge

• Technology Advisor Core UC• Microsoft Belux http://blogs.technet.com/ilvancri [email protected] @ivcrieki

Thank You!

http://blogs.technet.com/ilvancri

mailto:[email protected]

lync'ing it all together

Technology

rms exchange

sharepoint exchange

box exchange

lync lync

exchange servers

rms protectedmessages

sharepoint sites

ad rms super users group