u n c l a s s i f i e d la-ur-09-03103 lanl exchange / blackberry deployment june 2, 2009 anil...
TRANSCRIPT
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
LANL Exchange /Blackberry Deployment
June 2, 2009
Anil Karmel
Solutions Architect
Network and Infrastructure Engineering Production Systems
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Slide 2
Outline
• Exchange Deployment
• Exchange / Blackberry Architecture
• Blackberry Deployment
• Desktop Support
• Questions
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Exchange Deployment Audiences & Prerequisites
• Two Pilot Audiences– Technical Pilot Users– Customer Pilot Users
• Prerequisites– Installation of Office 2007 / Office 2008– Migration to Exchange 2007– Electronically signed Blackberry Request / Rules of Use
– http://int.lanl.gov/orgs/nie/nie4/blackberry/
Slide 3
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Slide 4
Exchange DeploymentExchange 2007
• Exchange Features– Outlook 2007 / Entourage 2008 Client
– Required rollout of Office 2007 Professional (Windows) or Office 2008 (Mac)
– Fully populated LANL Global Address List– CyrusMail and MeetingMaker are systems of record– Approx 1000 Exchange / 200 Blackberry users– ESP 8 for Windows users / EDS 7 for Mac users
• Things to Note– 1GB Mailbox limit– 5000 item limit per folder– 32kb Client Rule limit / 64kb Server Rule limit– Message recall
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Slide 5
Exchange DeploymentExchange 2007
• Alpha, Beta & Production Exchange 2007 Infrastructure implemented
• Outlook 2007 client required for connectivity to Exchange– Required rollout of Office 2007 Professional client– Microsoft Entourage 2008 supported for Macs– Conducting evaluation of potential Linux clients (Novell Evolution)
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Slide 6
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Blackberry DeploymentKey Features
• Secure access to Email & Corporate Data via Blackberry Enterprise Server 4.1 SP6
• Security– Secured with DISA/DoD Secure Technical Implementation Guide– Certified under Network Connected Wireless Site Security Plan
• Devices– Blackberry 8830 World Edition (Verizon Wireless)
Slide 7
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Blackberry DeploymentArchitecture
Slide 8
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Blackberry Deployment Security Implications
• Blackberry can’t connect to a foreign wireless network (no WiFi)
• Only a LANL-supplied SIM can be used on the device
• No third party applications allowed
• USB port and microSD card slot disabled
• 24/7 phone number to call if Blackberry is lost or stolen
• Approved for foreign travel
Slide 9
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Blackberry DeploymentFuture Options
• Blackberry Enterprise Server 5.0– Server Features
– New Administrative Console– Built-in High Availability and Reliability– Blackberry Enterprise Transporter – seamless migration from 4 to 5
– End User Features– Remote File Access– Email Folder Management– Flag emails for follow up
• Blackberry 8830 OS 4.5 (released by Verizon on 4/21/09)– Entrust encryption / decryption now fully functional– Vastly improved Blackberry web browser interface
Slide 10
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Workflow
Slide 11
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Desktop SupportProject Timeline
• Pilot • Approx 45 users and tech support staff• 4/16/08 to 10/31/08
• Controlled Release, Phase 1• Senior Managers only• 11/2/08 to 1/30/09
• Controlled Release, Phase 2• Senior Managers and extensive travel users• 1/30/09 to 6/09
• Full Production – Open to all LANL staff• 6/09
Slide 12
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Desktop SupportStandards & Planning
• Mail migration standards and strategies were documented for Mac and Windows clients
• SWAT team was established and trained
• Support, Communication, Training and Staffing Plans were developed for Controlled Release phases
Slide 13
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Desktop SupportImplementation
• LANL managers were identified and prioritized
• Desktop Support knowledge base established
• Migration Standards• Managers – (Windows only) migrate previous year of e-mail into
Outlook local .pst file. • All others – (Windows only) migrate previous month of e-mail
only. • Leave legacy mail client and all mail on system
• Phase 2 added extensive foreign and domestic travel users
Slide 14
U N C L A S S I F I E D
U N C L A S S I F I E D
LA-UR-09-03103
Slide 15
Questions?