Manage users on-premises and online Enables cross-premises calendaring, smooth migration, and easy off-boarding Exchange 5.5 Exchange 2000 Exchange 2003 Exchange 2007 Exchange 2010 Exchange 2013 Notes/Domino GroupWise Other 2013 Hybrid 2010 Hybrid Good for fast, cutover migrations No migration tool or computer required on-premises Hybrid Deployment Staged migration Cutover Exchange Migration (CEM) No migration tool or computer required on-premises Requires Directory Synchronization with on-premises AD IMAP migration Supports wide range of email platforms Email only (no calendar, contacts, or tasks) Staged Exchange Migration (SEM) Cutover migration Hybrid Simple Migrations IMAP Migration 4 Federation Trust • Delegated authentication for on-premises/cloud web services • Enables Free/Busy, calendar sharing, message tracking, online archive, and more Integrated Admin Experience • Manage all of your Exchange functions, whether cloud or onpremises from the same place - Exchange Administration Center (EAC) Native Mailbox Move Secure Mail Flow • Online mailbox moves • Preserve the Outlook profile and offline file (OST) • Leverages the Mailbox Replication Service (MRS) • Authenticated and encrypted mail flow • Preserves the internal Exchange messages headers • Support for compliance mail flow scenarios (central transport) Hybrid Coexistence Feature Comparison Feature Simple Hybrid Mail routing between on-premises and cloud (recipients on either side) Mail routing with shared namespace (if desired) on both sides Unified GAL Free/Busy and calendar sharing cross-premises Out of Office understands that cross-premises is “internal” to the organization Mailtips, messaging tracking, and mailbox search work cross-premises OWA redirection cross-premise (single OWA URL for both on-premises and cloud) Single tool to manage cross-premises Exchange functions (including migrations) Mailbox moves support both onboarding and offboarding No outlook reconfiguration or OST resync required after mailbox migration Preserve auth header (ensure internal email is not spam, resolve against GAL, etc.) Centralized mail flow , ensures that all email routes inbound/outbound via on-prem Hybrid Coexistence Feature Example Cross-Premises Free/Busy and Calendar Sharing Creates the look and feel of a single, seamless organization for meeting scheduling and management of calendars Works with any supported Outlook client Hybrid Coexistence Feature Example Cross-Premises MailTips Correct evaluation of “Internal” vs. “External” organization context Allows awareness and correct Outlook representation of MailTips Hybrid Coexistence Feature Example Cross-Premises Mail Flow Preserves internal organizational headers (e.g. auth header) Message is considered “trusted” and resolve the sender to rich recipient information in the GAL (not SMTP address) Restrictions specified for that recipient are honored Exchange 2013 CAS/MBX server on-premises Hybrid configuration in place On-premises config, O365 config, federation using MFG, certificates, etc. Much of the config is automated by the Hybrid Configuration Wizard Directory Sync tool enabled in Exchange 2003 is not supported Delegation coexistence cross-premises (delegate permissions are migrated when users are in the same batch) Migration of Send As/Full Access permissions On-premises systems Remote Mailbox Primary SMTP address: user@contoso.com Remote Routing address: user@contoso.mail.onmicrosoft.com Office 365 Mailbox Primary SMTP address: user@contoso.com Secondary SMTP address: user@contoso.mail.onmicrosoft.com AD Forest Exchange 2013 CAS 14 Exchange Online Outlook attempts Where LocaltoExchange Request Authentication Mailbox Outlook isdiscover my server authentication profile mailbox? information success updated. passes endpoint a redirect throughtoDNS record “autodiscover.contoso.mail.onmicrosoft.com” “contoso.mail.onmicrosoft.com” OST rebuild not required! Adaptive HCW Integrated support for Edge Enhanced secure mail Flexible EOP connection and internet mail routing Improved centralized mail transport Integrated mailbox migration and move wizard On-premises Exchange org Office 365 Directory Synchronization app Office 365 Users, Groups, Contacts via DirSync Secure Mail Flow Sharing (free/busy, MailTips, archive, etc.) Existing Exchange 2007 or later Exchange 2013 CAS and MBX Mailbox Data via MRS Clients autodiscover.contoso.com mail.contoso.com 5 2 1 E2010 or E2010 or 2007 Hub 2007 CAS 3 E2013 CAS SP/RU Autodiscover & EWS SMTP 7 Internet facing site E2013 MBX 1. Prepare Install Exchange SP and/or updates across the ORG Prepare AD with E2013 schema 2. Deploy Exchange 2013 servers 4 Install both E2013 MBX and CAS servers Exchange 2010 or 2007 servers SP/RU Intranet site 6 E2010 or 2007 MBX Office 365 Set an ExternalUrl for the Exchange Web Services vdir 3. Obtain and deploy certificates Obtain and deploy certificates on E2013 MBX and CAS servers 4. Publish protocols externally Create public DNS A records for the EWS and SMTP endpoints Validate using Remote Connectivity Analyzer 5. Switch autodiscover namespace to E2013 CAS Change the public autodiscover DNS record to resolve to E2013 CAS 6. Run the Hybrid Configuration Wizard 7. Move mailboxes Clients Office 365 autodiscover.contoso.com mail.contoso.com Autodiscover & EWS SMTP 5 E2010 or E2010 or 2007 Hub 2007 CAS 3 E2010 EDGE SP/RU Install E2010 EDGE servers Exchange 2010 or 2007 servers SP/RU Intranet site 6 E2010 or 2007 MBX 2. Deploy Exchange 2013 servers 4 E2013 CAS 7 Internet facing site Install Exchange SP and/or updates across the ORG Prepare AD with E2013 schema Install both E2013 MBX and CAS servers 2 1 1. Prepare E2013 MBX Set an ExternalUrl for the Exchange Web Services vdir 3. Obtain and deploy certificates Obtain and deploy certificates on E2013 MBX and CAS servers & E2010 EDGE servers 4. Publish protocols externally Create public DNS A records for the EWS and SMTP endpoints Validate using Remote Connectivity Analyzer 5. Switch autodiscover namespace to E2013 CAS Change the public autodiscover DNS record to resolve to E2013 CAS 6. Run the Hybrid Configuration Wizard 7. Move mailboxes Hybrid configuration wizard 1) 2) 3) 4) 5) 6) 7) 8) 9) 10) 11) 12) Start HWC from EAC Confirm running the wizard Select hybrid domain* View/Copy domain proof token* Choose transport options Choose receive 2013 CAS server(s) Choose send 2013 MBX server(s) Select transport certificate Enter external FQDN 2013 CAS Enter Org Management AD account Enter Global Admin O365 account Choose Update to configure hybrid * Adaptive steps Sign up for Office 365 Register your domains with Office 365 Deploy Office 365 Directory Sync Install Exchange 2013 CAS & MBX Servers (Edge opt) Publish the CAS Server (Assign SSL certificate, firewall rules) Run the Hybrid Wizard In EAC, select recipients | migration Start migration wizard Choose hybrid remote move and follow prompts Set of Hybrid Move Cmdlets New-MoveRequest Get-MoveRequest Get-MoveRequestStatistics Suspend-MoveRequest Resume-MoveRequest Remove-MoveRequest http://community.office365.com/enus/wikis/exchange/office-365-move-mailbox-failswith-transient-exception.aspx http://community.office365.com/enus/w/exchange/1042.aspx http://proxy:port www.testexchangeconnectivity.com Exchange Team Blog Introduction to Hybrid Deploying Hybrid (Exchange 2013) Managing Hybrid (Exchange 2013) TechNet Hybrid Deployments Deploying an Hybrid Configuration with the Exchange Hybrid Configuration Wizard 29 Tools https://www.testexchangeconnectivity.com/ http://gallery.technet.microsoft.com/Exchange -Client-Network-8af1bf00 http://www.microsoft.com/enus/download/details.aspx http://technet.microsoft.com/enus/library/hh974318.aspx 30