Inside Office 365

Agenda• What is Office 365?• Where does my infrastructure go?• How do all the Office 365 workloads fit together?

How do I manage identities? Does the role of desktop software change? What about filesharing? Real time communications integration?

Server side “Industrial Revolution”

Technology Trends impacting businessIT Departments need to address both trends to stay relevantConsumer devices

“Gold Rush”

Enterprise-grade cloud services & servers

The role of Microsoft TechnologyProven productivity solutions that are easy to use and manage

Flexible tools to do your best work, across

devices

Exchange Online

SharePoint Online

What is Office 365?

LyncOnline

Office 365 ProPlus

Project Online

Visio Pro for Office 365

Latest productivity services in Microsoft’s public cloud + the latest apps

Benefits of Office 365

Office apps and Office Web apps

Reliable servicewith a 99.9% SLA

Industry trusted certifications

Advanced IT controls and configuration

Optimized experiencesfor common devicesAlways up to date

Latest productivity services in Microsoft’s public cloud + the latest apps

Understand where your data is stored

10 – 100 Datacenters (DCs) worldwide

Multiple Content Delivery Network (CDN) “edge nodes” around the world

Datacenter network conn

Microsoft’s Global Footprint

Core: Data centersGlobal Fiber backbone that connects Data Centers

Edge NodesConnect Data Centers to Internet Exchange Points

Metro solutionsConnecting business customers to last mile providers

Last mile and P2PLast mile providers deliver to consumersP2P technology improves last mile delivery

Connecting datacenters to users

Multiple Datacenters

Edge Nodes

Metro solutions

Users/houses

Inside a datacenterMore than just servers

IT Load CRAC

Chiller

Condenser

Cooling towers

Water supply

UPSGenerators

Transformer

Generators

Maximize IT Load

• Servers• Storage• Networking

Minimize Building Load

• Electrical• Switch Gear• UPS• Battery Backup

• Mechanical• Chillers• CRACs

Power Usage Effectiveness (PUE)Standard measurement of datacenter efficiency:

𝑃𝑈𝐸=𝑇𝑜𝑡𝑎𝑙 𝐹𝑎𝑐𝑖𝑙𝑖𝑡𝑦 𝑃𝑜𝑤𝑒𝑟𝐼𝑇 𝐸𝑞𝑢𝑖𝑝𝑚𝑒𝑛𝑡 𝑃𝑜𝑤𝑒𝑟

Adiabatic Units

Chiller

Energy In = Heat Out

• Removing heat is critical• Environmental control is a major source of energy and water consumption

• Innovative approaches increase overall efficiency over traditional computer room air conditioning (CRAC)

Cooling Tower

Air Handling Unit (AHU)

Microsoft’s Datacenter Evolution

Generation 1 Generation 2

Rack Density and Deployment

1.4 – 1.6 PUEMinimized Resource

Impact

ServerCapacity~2 PUE

20 year Technology

2011+20081989-2005 2007Generation 3 Generation 4

Density Containment

Containers, PODsScalability & Sustainability1.2 – 1.5 PUE

Air & Water Economization

Differentiated SLAs

Colocation

ITPACs & ColosReduced Carbon,

Rightsized1.05 – 1.20 PUE

Faster Time to Market Outside Air Cooled

Modular

Example: Quincy Generation 4 DatacenterITPACs Modular Server Building Block

Includes IT, Air Handling, Mixer, UPS

Utilizes Airside Economization PAC with Adiabatic Cooling

Conserves energy and reduces carbon footprint

Less than 1% water used by traditional DCs

Extremely efficient PUE of 1.05 - 1.2

Enterprise-grade reliability

End user clients and devices

Data Center Data CenterData is replicated in geo-redundant data centers to protect against data center–wide failures

Backed by a 99.9% financially backed Service Level Agreement

Office 365 operates as a datacenter within our datacenters• Shared Mechanical & Electrical• Different hardware to consumer services• Separate access control to consumer

services• Separate network to consumer services• Separate storage to consumer services

Which service components will you use?

• Group service plans into packages• Offered on specific terms: trial, paid,

volume• Examples: Office 365 Small Biz (P1),

Office 365 Enterprise (E3)SKUs

• Define capabilities that a tenant or user is entitled to

• Examples: SPO for EnterpriseService Plans

• SharePoint, Exchange, Lync & others

• Translate Plans into experiences & featuresServices

Layers of Office 365

Office 365 Portals

Sign Up Experience

Tenant Administration

Landing Pages

Office 365 Platform Services

Commerce & Billing

Identity Platform

Authentication Internet DNS

Office 365 Services

SharePoint Online

Exchange Online

Lync Online Office ProWeb AppsOther

New Cloud App Model

20

Connect Office to your business

Works across Office apps, Office Web Apps, and SharePoint

App catalog controlled and managed by IT

Click to insert photo.

The Bing Maps app in Excel, maps the addresses highlighted

Hybrid

21

New migration wizard helps streamline setup

Exchange admin portal supports user management across online and on-prem

SharePoint Federated Search

Lync Split-Domain

Click to insert photo.

Easily manage enterprise features for on-prem and cloud

Exchange users

Identical EAC for Exchange Online and

Exchange 2013

Leadership in security, privacy & trust

Customers know where their data is stored

Customers know who can access their data and why

Customers can stay in the know by choosing to receive updates regarding changes to security, privacy and audit information

No advertising: We don’t build advertising products out of customer data

No data mining: We don’t scan the contents of customer email or documents for analytics or data mining

No co-mingling: Business data and consumer data are stored separately

Data is portable: Customer owns the data and can remove their data whenever they choose

ISO 27001

EU Model Clauses

HIPAA-HITECH

FERPA

FISMA

U.K. G-Cloud IL2

CJIS

24 hour monitored physical datacenters

Logical isolation of data between tenants

Segregation of internal datacenter network from the external networks.

Encryption at rest and in transit (AD-RMS)

Securing access to services via identity

Data loss prevention

Anti-virus/anti spam

99.9% uptime

Financial guarantees on uptime

Redundancy in both functionality as well data

Automated monitoring and recovery systems

24x7 on-call engineering team available to handle issues

Demonstration

Choose the right Identity Management options

Windows Azure Active DirectoryOne Cloud Directory for every organization

What it is:

• the identity platform behind Office 365 & other Microsoft Cloud Services

• Able to integrate with enterprise identity platforms

• Enabler of single sign-on for Office 365 and other apps

What it isn’t:

• Windows Azure Active Directory is not your AD Domain Controllers running in the Windows Azure

• We do support AD running as a role on a VM in Windows Azure IaaS – but that is a separate discussion

Cloud Identity

Spreadsheet

CSV Import

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

Windows Azure Active Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Authentication

Auth

ori

zati

on

On Premises

Directory & Password Sync

Active Directory

DirSync

Windows Azure Active Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

Authentication

Auth

ori

zati

on

On Premises

Federated Identity

Active Directory

DirSync

Windows Azure Active Directory

OAuth2

SAML-P

WS-Federation

Metadata

Graph API

Active Directory Federation Services

One way trust

Office Activation Service

Office 365 Admin Portal

Exchange Mailbox Access

…

Authentication

Auth

ori

zati

on

Core identity scenarios with Office 365Cloud Identity

Single identity in the cloud Suitable for small organizations with no integration to on-premises directories

Directory & Password Synchronization* 

Single identitysuitable for medium and large organizations without federation*

Federated Identity

Single federated identity and credentials suitable for medium and large organizations

* Password Synchronization targeted for Q2 CY 2013

Directory synchronization options

Custom Scenarios

not a highly recommended option compared to DirSync or FIM Connector

Performance limitations apply with PowerShell and Graph API provisioning

PowerShell requires extensive scripting experience

PowerShell option can be used where the customer may have wrappers around PowerShell scripts (eg: Self Service Provisioning)

PowerShell & Graph API

Active Directory environments

best experience for most scenarios

Supports Exchange Co-existence scenarios

Coupled with ADFS, provides best option for federation and synchronization

Supports Password Synchronization with no additional cost

Does not require any additional software licenses

Complex Identity scenarios

multi-forest AD scenarios

Non-AD synchronization through Microsoft premier deployment support

Requires Forefront Identity Manager and additional software licenses

Federation options

Primarily used in Education

Recommended where customers may use existing non-ADFS Identity systems

Single sign-on

Secure token based authentication

Support for web clients and outlook only

Microsoft supported for integration only, no shibboleth deployment support

Requires on-premises servers & support

Works with AD and other directories on-premises

ShibbolethWorks with AD & Non-AD

Recommended option for Active Directory (AD) based customers

Single sign-on

Secure token based authentication

Support for web and rich clients

Microsoft supported

Works for Office 365 Hybrid Scenarios

Requires on-premises servers, licenses & support

Works with AD

Recommended where customers may use existing non-ADFS Identity systems with AD or Non-AD

Single sign-on

Secure token based authentication

Support for web and rich clients

Third-party supported

Requires on-premises servers, licenses & support

Verified through ‘works with Office 365’ program

Works for Office 365 Hybrid Scenarios

Works with AD & Non-AD

Understand the options that affect your desktop

Office 365 Professional Plus

Easy install Office on demand Save to cloud

5 PC/Mac & mobile Roaming Upgrades included

Traditional Enterprise Office Deployment

Work PC Software Distribution

Deploy

Patch

Home PC

Office Home Use Program Portal

https://www.microsofthup.com

Volume Licensing Service Centerhttp://www.microsoft.com/

Licensing/

Office 365 Professional Plus Deployment

Work PC Software Distribution

Deploy

Patch

Office Content Delivery Network

http://officecdn.microsoft.com

Office 365 User Portalhttps://

c2rsetup.officeapps.live.comhttps://

portal.microsoftonline.com

Personal Devices

Office 365 Professional Plus Activation

Traditional Enterprise Office Activation

Work PC Key Management Service

Office Activation Service

https://sls.microsoft.com

Home PC

Multiple Activation Key

https://sls.microsoft.com

Office 365 User Management

Office 365 Professional Plus Activation

Work PC

Office Activation Service

http://ols.officeapps.live.com

Personal Devices

Office Web AppsConsumer / Windows LivePublicly available to any Live ID userFree with SkyDrive & Outlook.com (Hotmail)Iterative release cadence

On-Premise / Private CloudRuns as Office Web Apps ServerIntegrates with SharePoint, Exchange, File shares, etc.Minimal changes during life cycle

Office 365 / Public CloudAn option within the serviceMonthly per-user subscription90-day service update cycle

• 40

Web Apps in the 2010 Era

41

SharePoint

Office Web Apps

SharePoint

Office Web Apps

SharePoint

Office Web Apps

SharePoint

Office Web Apps

Exchange

Stellant

Lync

PowerPoint 2007

SharePoint

Office Web Apps

The New Office Web Apps

42

Office Web AppsServer

SharePoint

SharePointSharePoint

SharePoint

Exchange

Lync

Open from URL

Exchange

Browser

How Office Web Apps Work

Host Frame

SharePoint (Host)

Office Web Apps Server

App Frame

WOPI

• Office 365 is software as a service

• Office 365 is made up of independent but highly federated services

• Cloud computing changes the role of IT, but does not supersede it

Conclusions

© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.