tech days 2013 - deploying a hybrid configuration w/ exchange 2013
DESCRIPTION
Hybrid: the cloud at your own terms! In this session you will learn everything there is to know on how to successfully deploy Exchange 2013 in hybrid mode.TRANSCRIPT
![Page 1: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/1.jpg)
Deploying Exchange 2013 in Hybrid ModeMichael Van HorenbeeckTechnology Consultant – Xylos, Exchange Server MVP
@mvanhorenbeeckwww.pro-exchange.bemichaelvh.wordpress.com
![Page 2: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/2.jpg)
Building a hybrid configuration
Expectations… Reality (Ex2013)…
![Page 3: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/3.jpg)
What is a hybrid deployment?
ExchangeOn-Prem
“The Internet”
ExchangeOnline
(Office 365)
“Virtual Exchange Organization”
![Page 4: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/4.jpg)
Why hybrid?
• Long-term coexistence• Take advantages of features like e.g. Exchange Online
Archiving• Large migrations where cutover isn’t possible (e.g. EX2010 +)• Transparent mailbox moves (to or from Exchange Online)• “Online” Mailbox Moves• No OST resync!
• Interaction with 3rd party applications• e.g. Fax Solutions
![Page 5: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/5.jpg)
Hybrid Configuration Primer
Federation
• Delegates• Free/Busy• Calendar
Sharing• Message
Tracking• Mail Tips• …
Secure Mail Flow
• Encrypted mail flow
• Header preservation (“internal”)
• Centralized mail flow
DirSync
• Unified GAL• Exchange
Online Archive (EOA)
• Off-boarding
Mailbox moves
• Online mailbox moves through MRS
![Page 6: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/6.jpg)
DirSync Writeback
Write-Back attribute Exchange "full fidelity" feature
SafeSendersHashBlockedSendersHashSafeRecipientHash
Filtering: Writes back on-premises filtering and online safe and blocked sender data from clients.
msExchArchiveStatus Online Archive: Enables customers to archive mail.
ProxyAddresses (LegacyExchangeDN <online LegacyDn> as X500)
Enable Mailbox: Off-boards an online mailbox back to on-premises Exchange.
msExchUCVoiceMailSettings
Enable Unified Messaging (UM) - Online voice mail: This new attribute is used only for UM-Microsoft Lync Server 2010 integration to indicate to Lync Server 2010 on-premises that the user has voice mail in online services.
![Page 7: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/7.jpg)
![Page 8: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/8.jpg)
A trip down memory lane…
![Page 9: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/9.jpg)
Hybrid Configuration Wizard (SP2)
![Page 10: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/10.jpg)
Introducing the ‘new’ hybrid configuration wizard
• Single-step, adaptive configuration wizard• Enhanced mail-flow capabilities• Improved centralized mail flow
• Easier setup of secure mail flow (no more whitelisting IP’s!)
• Integrated support for Exchange 2010 Edge Transport server• Leverages Exchange Online Protection• Enhanced & more detailed logging
![Page 11: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/11.jpg)
Hybrid Prerequisites
• Directory Synchronization (DirSync)• “Hybrid Server”• Add Office 365 tenant to Exchange Admin Center• Certificates• Exchange Web Services• 3rd party certificates for TLS between Exchange Online & On-Premises• Self-Signed Certificate for use w/ Microsoft Federation Gateway
(automatic)
Optional:• ADFS (though recommended)• Edge Transport Server may make life easier (more about that later)
![Page 12: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/12.jpg)
Typical deployment process
“The Internet”
DeployExchange
1.
ConfigureSSO (optional)
2.
Setup DirSync
3.
Configure Certificates
4.
Configure WebServices
5.
Run Hybrid Configuration Wizard
6.
ConfigureMX Records
MX
7.
![Page 13: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/13.jpg)
Hybrid Configuration Wizard Workflow
Current stateDesired state
Hybrid ConfigWizard
Hybrid ConfigurationEngine
Delta-config
![Page 14: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/14.jpg)
Demo: the new Hybrid Configuration Wizard
![Page 15: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/15.jpg)
Supported topologies
Office 365 (v 2010)
Office 365 (v 2013)w/ On-Prem 2010
Office 365 (v 2013)w/ On-Prem 2013
Exchange 2003 SP2 (X) (X)
Exchange 2007 SP2/SP3
(X) (X)
Exchange 2007 SP3 Urx
(X) (X) (X)
Exchange 2010 SP1 X
Exchange 2010 SP2 X
Exchange 2010 SP3 X X X
Exchange 2013 N/A X
(X) = supported w/ dependencies X = supported
![Page 16: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/16.jpg)
Deployment Considerations
• Delegates• Migrated, but mailboxes must be moved at the same time
• Mailbox Permissions• Cross-premises permissions NOT supported• Only explicit permissions get migrated to Exchange Online.
• Multi-forest scenarios are not supported• Interaction with legacy / 3rd party applications• Web Services?• Use an SMTP gateway?
• Bandwidth
![Page 17: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/17.jpg)
Hybrid mailbox moves
ExchangeOn-Prem
“The Internet”
ExchangeOnline
(Office 365)
MRS
Admin
![Page 18: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/18.jpg)
Demo: cross-premise mailbox move
![Page 19: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/19.jpg)
Mailbox moves: user experience
• When using SSO, moves to Exchange online are fully transparent
• Without SSO, users get a new password
• Outlook profile is updated automatically through Autodiscover
![Page 20: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/20.jpg)
Common mistakes/issues
• Certificates• Expired• Not from a trusted source• Missing/Wrong subject (alternative) name
• Single Sign-On• Free/Busy not working• Peers not recognized as “internal”• Outlook-related (e.g. missing updates)
![Page 21: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/21.jpg)
Troubleshooting
• Hybrid Configuration Log Files• <drive>:\Program Files\Microsoft\Exchange Server\V15\Logging\
Update-HybridConfiguration
• Review Federation Information• Get-FederationInformation –DomainName <domainname>
• Review OrganizationRelationShips• Get-OrganizationRelationShip | fl *
• Troubleshoot connection issues (e.g. AutoDiscover/Web Services)• Remote Connectivity Analyzer (www.testexchangeconnectivity.com)
![Page 22: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/22.jpg)
Ex2013 Deployment Assistant
http://technet.microsoft.com/exdeploy2013
![Page 23: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/23.jpg)
Demo: troubleshooting
![Page 24: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/24.jpg)
Key takeaways
1
2
3
Mind the prerequisites! Check certificates.
Use tools like ExDeploy and remote connectivity analyzer to plan and validate your deployment
Review the hybrid configuration logs for more information.
![Page 25: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/25.jpg)
Related Sessions
• Tuesday• Office 365: Do’s and Don’ts (Ilse Van Criekinge)• Troubleshooting Federation, ADFS and More (John Craddock)
• Wednesday• Office 365 ProPlus: Click-to-run deployment and management (Brian
Shiers)• Office 365 Identity Management Options (Jethro Seghers, Michael Van
Horenbeeck)
![Page 26: Tech days 2013 - Deploying a hybrid configuration w/ Exchange 2013](https://reader034.vdocuments.us/reader034/viewer/2022051817/547a4d68b4af9fa0158b4ab5/html5/thumbnails/26.jpg)
The result
If you follow the advice from this session, you’ll probably end up with something like this ;-)
THANK YOU!