Transcript Office 365 for IT Pros

IT Departments need to address both trends to stay relevant
Consumer devices
“Gold Rush”
Server side
“Industrial Revolution”
Proven productivity solutions that are easy to use and manage
Flexible tools to do your best
work, across devices
Enterprise-grade cloud
services & servers
Latest productivity services in Microsoft’s public cloud + the latest apps
Latest productivity services in Microsoft’s public cloud + the latest apps
Standard measurement of datacenter efficiency:
𝑇𝑜𝑡𝑎𝑙 𝐹𝑎𝑐𝑖𝑙𝑖𝑡𝑦 𝑃𝑜𝑤𝑒𝑟
𝑃𝑈𝐸 =
𝐼𝑇 𝐸𝑞𝑢𝑖𝑝𝑚𝑒𝑛𝑡 𝑃𝑜𝑤𝑒𝑟
Minimize Building Load
• Electrical
• Switch Gear
• UPS
• Battery Backup
• Mechanical
• Chillers
• CRACs
Maximize IT Load
• Servers
• Storage
• Networking
2007
2008
2011+
Generation 1
Generation 2
Generation 3
Generation 4
Colocation
Density
Containment
Modular
Server
Capacity
~2 PUE
20 year Technology
Rack
Density and Deployment
1.4 – 1.6 PUE
Minimized Resource Impact
Containers, PODs
Scalability & Sustainability
1.2 – 1.5 PUE
Air & Water Economization
Differentiated SLAs
ITPACs & Colos
Reduced Carbon, Rightsized
1.05 – 1.20 PUE
Faster Time to Market
Outside Air Cooled
1989-2005
Data Center
Data Center
End user clients and devices
SKUs
• Group service plans into packages
• Offered on specific terms: trial, paid, volume
• Examples: Office 365 Small Biz (P1), Office
365 Enterprise (E3)
Service Plans
Services
• Define capabilities that a tenant or
user is entitled to
• Examples: SPO for Enterprise
• SharePoint, Exchange,
Lync & others
• Translate Plans into
experiences & features
Office 365
Portals
Sign Up
Experience
Tenant
Administration
Landing Pages
Office 365
Platform
Services
Commerce &
Billing
Identity Platform
Authentication
Internet DNS
Office 365
Services
SharePoint
Online
Exchange Online
Lync Online
Office Pro
Web Apps
Other
The Bing Maps app in Excel, maps the
addresses highlighted
Identical EAC for Exchange
Online and Exchange 2013
Easily manage enterprise features for
on-prem and cloud Exchange users
No advertising:
We don’t build advertising
products out of customer
data
No data mining:
We don’t scan the contents
of customer email or
documents for analytics
or data mining
No co-mingling:
Business data and
consumer data are stored
separately
Data is portable:
Customer owns the data
and can remove their data
whenever they choose
Customers know where
their data is stored
Customers know who can
access their data and
why
Customers can stay in
the know by choosing to
receive updates
regarding changes to
security, privacy and audit
information
ISO 27001
EU Model Clauses
HIPAA-HITECH
FERPA
FISMA
U.K. G-Cloud IL2
CJIS
24 hour monitored
physical datacenters
Logical isolation of data
between tenants
Segregation of internal
datacenter network from
the external networks.
Encryption at rest and
in transit (AD-RMS)
Securing access to
services via identity
Data loss prevention
Anti-virus/anti spam
99.9% uptime
Financial guarantees
on uptime
Redundancy in both
functionality as well data
Automated monitoring
and recovery systems
24x7 on-call engineering
team available to handle
issues
One Cloud Directory for every organization
Cloud Identity
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Directory & Password Sync
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Federated Identity
OAuth2
Metadata
SAML-P
Graph API
WS-Federation
Cloud Identity
Single identity in the cloud
Suitable for small organizations
with no integration to onpremises directories
Directory & Password
Synchronization*
Single identity
suitable for medium
and large organizations
without federation*
Federated Identity
Single federated identity
and credentials suitable
for medium and large
organizations
Directory synchronization options
PowerShell & Graph API
Active Directory
environments
best experience for most scenarios
Supports Exchange Co-existence
scenarios
Coupled with ADFS, provides best option
for federation and synchronization
Supports Password Synchronization with
no additional cost
Does not require any additional software
licenses
Complex Identity scenarios
Custom Scenarios
multi-forest AD scenarios
not a highly recommended option
compared to DirSync or FIM Connector
Non-AD synchronization through
Microsoft premier deployment support
Requires Forefront Identity Manager and
additional software licenses
Performance limitations apply with
PowerShell and Graph API provisioning
PowerShell requires extensive scripting
experience
PowerShell option can be used where the
customer may have wrappers around
PowerShell scripts (eg: Self Service
Provisioning)
Federation options
Works with AD
Recommended option for Active
Directory (AD) based customers
Single sign-on
Secure token based authentication
Support for web and rich clients
Microsoft supported
Works for Office 365 Hybrid Scenarios
Requires on-premises servers, licenses &
support
Works with AD & Non-AD
Recommended where customers may
use existing non-ADFS Identity
systems with AD or Non-AD
Single sign-on
Secure token based authentication
Support for web and rich clients
Third-party supported
Requires on-premises servers, licenses &
support
Verified through ‘works with Office 365’
program
Works for Office 365 Hybrid Scenarios
Shibboleth
Works with AD & Non-AD
Primarily used in Education
Recommended where customers may use
existing non-ADFS Identity systems
Single sign-on
Secure token based authentication
Support for web clients and outlook only
Microsoft supported for integration only,
no shibboleth deployment support
Requires on-premises servers & support
Works with AD and other directories onpremises
Traditional Enterprise Office Deployment
Volume Licensing
Service Center
Office Home Use
Program Portal
http://www.microsoft.com/Licensing/
https://www.microsofthup.com
Deploy
Patch
Home PC
Work PC
Software Distribution
Office 365 Professional Plus Deployment
Office 365 User Portal
Office Content Delivery
Network
https://c2rsetup.officeapps.live.com
https://portal.microsoftonline.com
http://officecdn.microsoft.com
Deploy
Patch
Personal Devices
Work PC
Software Distribution
Traditional Enterprise Office Activation
Office Activation Service
Multiple Activation Key
https://sls.microsoft.com
https://sls.microsoft.com
Home PC
Work PC
Key Management Service
Office 365 Professional Plus Activation
Office Activation Service
http://ols.officeapps.live.com
Office 365 User Management
Personal Devices
Work PC
Consumer / Windows Live
Publicly available to any Live ID user
Free with SkyDrive & Outlook.com (Hotmail)
Iterative release cadence
On-Premise / Private Cloud
Runs as Office Web Apps Server
Integrates with SharePoint, Exchange,
File shares, etc.
Minimal changes during life cycle
Office 365 / Public Cloud
An option within the service
Monthly per-user subscription
90-day service update cycle
40
Web Apps in the 2010 Era
41
The New Office Web Apps
42
How Office Web Apps Work
WOPI
•
Office 365 is software as a service
•
Office 365 is made up of independent but highly
federated services
•
Cloud computing changes the role of IT, but does
not supersede it