tag:blogger.com,1999:blog-64077368226650271572024-03-14T02:40:06.441-04:00Unified Communications ServicesIntegrated With Exchange Server, Office365, Active Directory, SfB aka Lync Server, Cloud & Virtualization...Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.comBlogger621125tag:blogger.com,1999:blog-6407736822665027157.post-21307561339117423402019-11-04T21:12:00.000-05:002019-11-04T21:22:06.617-05:00Microsoft Teams enhance collaboration and business processes<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; box-sizing: border-box; color: #333333;">
<span style="font-family: "georgia" , "times new roman" , serif;">At Microsoft Ignite 2019, there are multiple announcement for Teams to help the customers to work in new ways and improve their business, here are the big announcement :</span></div>
<div style="background-color: white; box-sizing: border-box; color: #333333;">
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span></div>
<div style="background-color: white; box-sizing: border-box; color: #333333;">
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span></div>
<div style="background-color: white; box-sizing: border-box;">
<span style="color: #333333; font-family: "georgia" , "times new roman" , serif;"><b>Customize Teams conversations and experience</b></span></div>
<div style="background-color: white; box-sizing: border-box;">
</div>
<ul style="text-align: left;">
<li><span style="color: #333333; font-family: "georgia" , "times new roman" , serif;">Improve the privacy , now users can enable private channels with existing teams and accessed by only select members of that teams.</span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Now Teams will have the multi-window capability, users will have option to pop out chats, meetings, calls or documents in to separate windows.</span></span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Linux Teams client will support main teams capabilities like chats, meetings, callings, etc. and can collaborate with others on teams.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: #333333;">New messaging extensions will available in teams chat such as Polls and </span><span style="color: #333333;">Surveys</span><span style="color: #333333;"> etc.</span></span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Now users can pinned their channels at the top of your teams list for easy access.</span></span></li>
</ul>
<br />
<div style="background-color: white; box-sizing: border-box;">
<span style="color: #333333; font-family: "georgia" , "times new roman" , serif;"><b>Easily manage conversations, tasks, and files from other M365 apps within Teams</b></span></div>
<ul style="text-align: left;">
<li><span style="color: #333333; font-family: "georgia" , "times new roman" , serif;">Integration between outlook and teams will improve the collaboration for conversation, users can move email conversations from outlook, including attachments, into Teams chat or channel conversation by clicking on the share to Teams in outlook vice versa from Teams to outlook. Missed conversations on Teams stay on the top and show the latest replies from the conversation and allow users to respond directly from email.</span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Their will be improvement in Tasks, it will consolidate tasks across Microsoft to do, Teams channels, Planner and Outlook. Users can choose the smart views including task assigned, priority, start and due date.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: #333333;">Yammer app for Teams will improve Yammer communities conversations and live events </span><span style="color: #333333;">accessibility</span><span style="color: #333333;"> right with in Teams.</span></span></li>
</ul>
<div>
<span style="color: #333333; font-family: "georgia" , "times new roman" , serif;"><b>Conduct more inclusive and effective meetings</b></span></div>
<div>
<ul style="text-align: left;">
<li><span style="color: #333333; font-family: "georgia" , "times new roman" , serif;">Now users can share Microsoft Whiteboard in Teams meetings, that gives digital canvas for meeting participants to share the ideas and collaboration whether they are in same room or working remotely.</span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Teams will have Live Captions capability, and address the needs of participants with different hearing abilities or language proficiencies.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: #333333;">Teams will have the </span><span style="box-sizing: border-box; color: #333333;">presenter and attendee controls.</span><span style="color: #333333;"> Designated presenters will have full control over the meeting, whereas participants in “attendee” role won’t have ability to share content, take control, mute or remove other participants, admit people waiting in the lobby, or start/stop recordings.</span></span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Teams will have the ability calling and meetings for Citrix virtual environment both on-premises or Azure VDI/applications.</span></span></li>
<li><span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;">Cloud Video Interop (CVI) partnership improvement, including Cisco, which will help customers use Teams meetings with Cisco WebEx Room device and SIP video conferencing devices in the meeting room.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Teams new improvements that enabling Teams rooms devices to connect to meeting services from other third party vendors via browser-based technologies now users can join directly Cisco and Zoom from video conferencing devices.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Collaboration bars for Teams improved, now new category of devices from partner to convert small spaces into online meetings and collaboration spaces. Also there are dedicates Teams speaker phones available.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Teams will have new enterprise Phone system capabilities, such as emergency calling, call queue functionality, administrative control, phone system for Government client such as GCC high and DoD, as well as advanced functionalities.</span></li>
</ul>
</div>
<div>
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span></div>
<div>
<span style="font-family: "georgia" , "times new roman" , serif;"><b>Give firstline workers easier access to Teams</b></span></div>
<div>
<ul style="text-align: left;">
<li><span style="font-family: "georgia" , "times new roman" , serif;">Teams will have SMS Sign-in features which will give firstline workers a low friction way to sign into Teams with their phone number</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Firstline workers can get the access Teams app on their personal devices outside payable hours and the settings called Off shift access.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="box-sizing: border-box; color: #333333;">Global Sign-Out</span><span style="color: #333333;"> saves time and keeps Firstline Workers secure when they use shared devices at work by enabling them to sign-out at once from all the apps they use on their shift.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="box-sizing: border-box; color: #333333;">Delegated User Management</span><span style="color: #333333;"> enables Firstline managers to manage user credentials and approve password reset requests via the My Staff portal.</span></span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;"><span style="box-sizing: border-box; color: #333333;">Graph API enhancements</span><span style="color: #333333;"> provide two-way communication between a workforce management system of your choosing and Shifts to enable enterprise-scale configuration. And with new </span><span style="box-sizing: border-box; color: #333333;">open source integration templates</span><span style="color: #333333;"> on GitHub, customers can integrate Teams with Kronos and JDA.</span></span></li>
</ul>
</div>
<div>
<span style="color: #333333;"><span style="font-family: "georgia" , "times new roman" , serif;"><br /></span></span></div>
<div>
<span style="box-sizing: border-box; color: #333333;"><span style="box-sizing: border-box; font-family: "georgia" , "times new roman" , serif;"><b>Enable industry-specific scenarios in healthcare and other industries</b></span></span></div>
<div>
<em style="box-sizing: border-box; color: #333333;"><span style="box-sizing: border-box; font-family: "georgia" , "times new roman" , serif;"><br /></span></em></div>
<div>
<ul style="text-align: left;">
<li><span style="box-sizing: border-box; color: #333333;"><span style="box-sizing: border-box; font-family: "georgia" , "times new roman" , serif;">Now Teams will have the capability for virtual consults to schedule and conduct business to client virtual consultations via Teams such as healthcare patient consults, client meetings, job candidate interview.</span></span></li>
<li><span style="box-sizing: border-box;"><span style="box-sizing: border-box; color: #333333; font-family: "georgia" , "times new roman" , serif;">Patient Coordination in Teams enables healthcare professionals to streamline patient care. By entering patient information into Teams’ secure platform, physicians, nurses, and other care team members can centralize and digitize the information they need when communicating and collaborating around patients in various scenarios like patient rounding, multi-disciplinary team meetings, and discharge huddles. Patient Coordination in Teams supports enterprise-grade security and enables HIPAA compliance.</span></span></li>
</ul>
</div>
<div>
<em style="box-sizing: border-box; color: #333333;"><span style="box-sizing: border-box; font-family: "georgia" , "times new roman" , serif;"><br /></span></em></div>
<div>
<span style="font-family: "georgia" , "times new roman" , serif;"><b>New planning and administration tools to easily manage Teams and protect your data</b></span></div>
<div>
<ul style="text-align: left;">
<li><span style="font-family: "georgia" , "times new roman" , serif;">Advisor for Teams assists IT admins in planning a successful Teams deployment for their organization, offering recommended plans and a collaboration space for the deployment team to streamline the roll out of all the Teams workloads, including messaging, meetings and calling workloads. </span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">New certified app catalog helps IT admins get the information they need to confidently enable apps from the Microsoft Teams admin center. </span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Policy packages make it easier to assign policies and ensure your users have access to the Teams capabilities they need. IT Admins can assign a policy package, a collection of predefined policies and policy settings, to users who have similar roles in the organization.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Microsoft Teams Rooms in the Teams Admin Portal will allow the IT admins to manage the device inventory for your organization and do tasks such as assign configurations, restart devices, monitor and diagnose</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Managed Meeting Rooms is a new Microsoft offer for managing meeting rooms as a service. This cloud-based IT management and security monitoring service ensures that Teams meeting rooms are secured, up to date, and proactively monitored for a great in-room experience. To date, we've been working with more than 100 customers to manage more than 1,500 meeting rooms. </span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Safe Links in Microsoft Teams, powered by Office 365 Advanced Threat Protection, now safeguards Teams messages from harmful links in real time. When a web address (URL) is shared in a private chat or channel conversation, Teams will perform a time-of-click verification of web addresses and alert users of any risk such as malware or viruses.</span></li>
</ul>
</div>
<div style="background-color: white; box-sizing: border-box;">
</div>
<div>
<span style="font-family: "georgia" , "times new roman" , serif;"><b>Automate workflows, integrate custom apps and data insights within Teams using Power Platform</b></span></div>
<br />
<div>
<ul style="text-align: left;">
<li><span style="font-family: "georgia" , "times new roman" , serif;">Power Apps creators can now publish their apps as Teams apps for easy use and access when working on Teams. Admins can also publish these custom apps directly to their company’s app library in Teams, making them more discoverable to users. New updates also improve the experience of adding these apps to Teams.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Pinning an app created with Power Apps to Teams left rail will provide users easy access to frequently used apps in everyday use</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Teams-centric actions & triggers with Power Automate allows users to create new kinds of automated workflows within Teams. The user can create a trigger for specific actions when someone new joins their team, notifications within Teams when a certain keyword is mentioned, automatically set focused time and to save notes to OneNote.</span></li>
<li><span style="font-family: "georgia" , "times new roman" , serif;">Power BI interactive cards in Teams chat experience will help users quickly find and take actions on their data. </span></li>
</ul>
</div>
<div style="background-color: white; box-sizing: border-box;">
</div>
<div>
<br />
For more details:</div>
<div>
<a href="https://techcommunity.microsoft.com/t5/Microsoft-Teams-Blog/What-s-New-in-Microsoft-Teams-Ignite-2019/ba-p/937025#customize">https://techcommunity.microsoft.com/t5/Microsoft-Teams-Blog/What-s-New-in-Microsoft-Teams-Ignite-2019/ba-p/937025#customize</a></div>
<div>
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-28349954468786116942019-06-26T16:17:00.001-04:002019-06-26T16:21:34.386-04:00Microsoft Azure Bastion Services<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<a href="https://www.blogger.com/null" name="_GoBack" style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></a><span style="color: black; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">In Microsoft Azure all monitoring and management for the VMs in the Azure should be performed by the jumpbox in the management subnet. Also, implementing a DMZ between Azure and on-premises datacenter, define a single network route from the on-premises network through the gateway to the jumpbox, in order to restrict access.</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">If gateway connectivity from your on-premises network to Azure is down, you can still reach the jumpbox by deploying a public IP address, adding it to the jumpbox, and logging in from the Internet.</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><i>There are multiple options to place the management server (Jumpbox) in Azure Stage environment</i>:</span></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;"></span><span style="font-size: small;"></span><br style="mso-special-character: line-break;" /></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><b><span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Option-1 </span></b></span></span><span style="font-family: "georgia" , "times new roman" , serif;"><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><b><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;">Place JumpBox on Separate Subnet (without PIP) </span></b></span></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">In this option, d</span><span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;">o not create a public IP address for the jumpbox. Instead, create one route to access the jumpbox through the incoming gateway. Create NSG rules so the management subnet only responds to requests from the allowed route.</span></span></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><b><span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Option-2 </span><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;">Place JumpBox on Separate Subnet (with PIP) </span></span></b></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Create a public IP address for the jumpbox. Create NSG rules so the management subnet only responds to requests from the allowed route.</span></span><span style="color: black; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span><br style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;" /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><b><span style="font-family: "georgia" , "times new roman" , serif;"><span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Option-3 </span><span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;">Azure Bastion Host</span></span></b></span><br />
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Microsoft recently released manage PaaS service called Azure “Bastion” service. Azure Bastion is a new managed PaaS service that provides seamless RDP and SSH connectivity to Stage virtual machines over the Secure Sockets Layer (SSL). This is completed without any exposure of the public IPs on virtual machines. Azure Bastion provisions directly in Stage Azure Virtual Network,</span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; white-space: pre-wrap;"><span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">providing bastion host or jump server as-a-service and integrated connectivity to all virtual machines in virtual networking using RDP/SSH directly from and through a browser and the Azure portal.</span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Azure Bastion is provisioned directly in VNet and support all VMs in VNet using the SSL without any exposure through public IP address.</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Azure Bastion is deploying in the virtual network providing RDP/SSH access for all authorization VMs in Azure network, the following diagram will describe more:</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-sycO8PiuPsE/XQvJHef4QaI/AAAAAAAASmc/3_x08GW37RssCnHqdlMYF3vH4MT1Vw_CQCLcBGAs/s1600/1.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="589" data-original-width="847" height="443" src="https://1.bp.blogspot.com/-sycO8PiuPsE/XQvJHef4QaI/AAAAAAAASmc/3_x08GW37RssCnHqdlMYF3vH4MT1Vw_CQCLcBGAs/s640/1.JPG" style="cursor: move;" width="640" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span><br style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;" /></div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><b>Following are the key features</b></span><br />
<b><span style="font-family: Georgia;"></span></b><br />
<b><span style="font-family: "georgia";"></span></b></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><span style="font-family: "georgia";"></span></b></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><b><i>RDP and SSH from the Azure portal</i></b>: You can RDP and SSH sessions directly in the Azure portal.<br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><i>Remote session over SSL and firewall traversal for RDP/SSH</i></b>: You can initiate the RDP/SSH session via HTML5 based web clients over SSL on port 443. This allows easy and securely traversal of corporate firewalls.<br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><i>No public IP required on Azure Virtual Machines</i></b>: Azure Bastion opens the RDP/SSH connection to Azure virtual machine using a private IP, limiting exposure the infrastructure to the public Internet.<br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><i>Simplified secure rules management:</i></b> Simple one-time configuration of Network Security Groups (NSGs) to allow RDP/SSH from only Azure Bastion.<br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><i>Increased protection against port scanning</i></b>: The limited exposure of virtual machines to the public Internet will help protect against threats, such as external port scanning.<br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b><i>Hardening in one place to protect against zero-day exploits</i></b>: Azure Bastion is a managed service maintained by Microsoft. It’s continuously hardened by automatically patching and keeping up to date against known vulnerabilities.</div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: normal; margin-bottom: 12px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: -24px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif;"><b>Registration <span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-size: 14.66px; font-style: normal; font-variant: normal; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">an Azure Bastion</span></span></b></span><br />
<span style="color: black; font-family: "georgia" , "times new roman" , serif; font-size: small; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">1. Signed to Azure account with using the subscription, and then register (enroll)</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-color: transparent; background-image: none; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: #999999; color: #000025; font-family: "georgia";"><i>Register-AzureRmProviderFeature -FeatureName AllowBastionHost -ProviderNamespace Microsoft.Network</i></span><br />
<i><span style="background-color: #999999; color: #000037; font-family: Georgia;"></span></i></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: #fafafa; color: black; display: inline; float: none; font-size: 14px; font-style: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-indent: 0px; text-transform: none; white-space: pre; word-spacing: 0px;"></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-size: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: #fafafa; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-indent: 0px; text-transform: none; white-space: pre; word-spacing: 0px;">2. Register Azure subscription once again with Microsoft.Network provider namespace</span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-color: transparent; background-image: none; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: #999999; color: black; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><i>Register-AzureRmResourceProvider -ProviderNamespace Microsoft.Network</i></span><br />
</div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-clip: border-box; background-color: white; background-image: none; background-origin: padding-box; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="color: black; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">3. Verify the AllowBastionHost feature registered with the subscription</span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-attachment: scroll; background-color: transparent; background-image: none; background-position-x: 0%; background-position-y: 0%; background-repeat: repeat; background-size: auto; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; line-height: 22.06px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: #999999; color: black; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><i>Get-AzureRmProviderFeature -ProviderNamespace Microsoft.Network</i></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span><span style="background-color: #999999;"></span><i style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></i></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<br style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;" /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"> <b>Creating an Azure Bastion</b></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-size: 14.66px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">1. Go to in the <a href="https://portal.azure.com/?feature.canmodifystamps=true&Microsoft_Azure_Compute=flight17&Microsoft_Azure_HybridNetworking=flight3&microsoft_azure_marketplace_itemhidekey=bastionhostv2&microsoft_azure_compute_azbastion=true#home">Azure portal - preview</a> only, click + Create a resource </span></span><br />
</div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-size: 14.66px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">2. Search the Marketplace field, type Bastion, then click Enter to get to the search results</span></span></div>
<div class="separator" style="clear: both; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; text-align: center;">
<a href="https://1.bp.blogspot.com/-47971C8L7Ps/XRO-sNiiGwI/AAAAAAAASng/DR7bwwzNZd0fZO9ucRyK33r9TSveepoJQCLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="182" data-original-width="1071" height="67" src="https://1.bp.blogspot.com/-47971C8L7Ps/XRO-sNiiGwI/AAAAAAAASng/DR7bwwzNZd0fZO9ucRyK33r9TSveepoJQCLcBGAs/s400/2.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">3. F<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-size: 14.66px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">rom the results, click Bastion (preview)</span></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">4. On the Bastion (preview) page, click Create to open the Create a bastion page</span></span><br />
</div>
<div class="separator" style="clear: both; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; text-align: center;">
</div>
<div class="separator" style="clear: both; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; text-align: center;">
</div>
<div class="separator" style="clear: both; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; text-align: center;">
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-size: 13.33px; line-height: 14.66px; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-family: "georgia" , "times new roman" , serif; font-size: small; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">5. On the Create a bastion page, configure a new Bastion resource. Specify the configuration settings for your Bastion resource.</span></span></div>
<div class="separator" style="clear: both; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; text-align: center;">
<a href="https://1.bp.blogspot.com/-Fqo4h-KRkF8/XRPLT26RCsI/AAAAAAAASoU/6oYr4b72gZsl0pU65wC3VWSGhRWJzkm9QCLcBGAs/s1600/10.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="977" data-original-width="1015" height="385" src="https://1.bp.blogspot.com/-Fqo4h-KRkF8/XRPLT26RCsI/AAAAAAAASoU/6oYr4b72gZsl0pU65wC3VWSGhRWJzkm9QCLcBGAs/s400/10.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<br style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;" /></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">6. Provide all required information such as Name, Region, Virtual network information.</span><br />
<span style="font-family: Georgia;"></span><br />
<span style="font-family: "georgia";"></span></div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">7. For Subnet, we have to create a new subnet with name "AzureBastionSubnet" (Azure can identify easily this for Bastion subnet, which is different from gateway subnet). there will be no NSG, route tables associated with this subnet.</span><br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">8. Public IP address- Bastion required a public IP address to access RDP/SSH over 443, so create new Public IP address.</span><br />
</div>
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">9. Review all the information and then click on create.</span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><b style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></b></span><br />
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><b style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></b></span><br />
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><b style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">Create a Bastion host settings</b></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">1. Go to in the </span><a href="https://portal.azure.com/?feature.canmodifystamps=true&Microsoft_Azure_Compute=flight17&Microsoft_Azure_HybridNetworking=flight3&microsoft_azure_marketplace_itemhidekey=bastionhostv2&microsoft_azure_compute_azbastion=true#home" style="background-color: transparent; color: #0066cc; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: underline; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">Azure portal - preview</a><span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"> only, and navigate the virtual machine and click on connect</span></span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-No3gpb892EE/XRPMp2XGC9I/AAAAAAAASog/maVOxp2eRwgm0GynTihYxtBi1Yn4QU5fQCLcBGAs/s1600/5.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="480" data-original-width="1305" height="146" src="https://1.bp.blogspot.com/-No3gpb892EE/XRPMp2XGC9I/AAAAAAAASog/maVOxp2eRwgm0GynTihYxtBi1Yn4QU5fQCLcBGAs/s400/5.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">you can see there is no public IP assigned to a virtual machine </span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">2. There are three options to connect the virtual machine, click on "Bastion" and "Use Bastion"</span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-0Gvd8PSKE2A/XRPNCoxX-tI/AAAAAAAASoo/6yKTFotiVTQgCWgvRFwrU0EW3Fvw0vwhACLcBGAs/s1600/12.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="255" data-original-width="426" height="238" src="https://1.bp.blogspot.com/-0Gvd8PSKE2A/XRPNCoxX-tI/AAAAAAAASoo/6yKTFotiVTQgCWgvRFwrU0EW3Fvw0vwhACLcBGAs/s400/12.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">3. Now we will get the Bastion page and need to fill all the required information, such as subnet information, etc.</span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-bGaicX3MS_0/XRPNbz1g_HI/AAAAAAAASow/bDCGY5pzJIomw1XF9n72-pQM_qFBUoBZACLcBGAs/s1600/13.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="550" data-original-width="588" height="373" src="https://1.bp.blogspot.com/-bGaicX3MS_0/XRPNbz1g_HI/AAAAAAAASow/bDCGY5pzJIomw1XF9n72-pQM_qFBUoBZACLcBGAs/s400/13.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;">4. Once complete the information, we will get another wizard for connecting the virtual machine</span></span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-3fzdMnlicp8/XRPN35ab_yI/AAAAAAAASo4/FzE-UCrsUakewcVLAFDJCCd3LCHKR2gIACLcBGAs/s1600/6.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="545" data-original-width="437" height="400" src="https://1.bp.blogspot.com/-3fzdMnlicp8/XRPN35ab_yI/AAAAAAAASo4/FzE-UCrsUakewcVLAFDJCCd3LCHKR2gIACLcBGAs/s400/6.JPG" style="cursor: move;" width="320" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">5. Provide the credentials and click on connect, and a new browser will open with session initiation</span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-4JtQmfBazz8/XRPOP7BkrhI/AAAAAAAASpA/4MpqVN8TaI4FgTsyagpOHYxQY_95a3SUQCLcBGAs/s1600/7.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="963" data-original-width="1600" height="240" src="https://1.bp.blogspot.com/-4JtQmfBazz8/XRPOP7BkrhI/AAAAAAAASpA/4MpqVN8TaI4FgTsyagpOHYxQY_95a3SUQCLcBGAs/s400/7.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;">6. Now you can see the successfully connect the virtual machine via RDP.</span></span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<a href="https://1.bp.blogspot.com/-IQbvxUjRG-Y/XRPOlIHzyQI/AAAAAAAASpI/n0tjvSVxUwkI17WXeIWfHvGIGxj7EzZ3gCLcBGAs/s1600/8.JPG" imageanchor="1" style="margin-left: 16px; margin-right: 16px;"><span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><img border="0" data-original-height="875" data-original-width="1600" height="218" src="https://1.bp.blogspot.com/-IQbvxUjRG-Y/XRPOlIHzyQI/AAAAAAAASpI/n0tjvSVxUwkI17WXeIWfHvGIGxj7EzZ3gCLcBGAs/s400/8.JPG" style="cursor: move;" width="400" /></span></a></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<br style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;" /></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;"><b>Pricing </b></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;">It will only be billed partially during public preview, for more details <a href="https://azure.microsoft.com/en-us/pricing/details/azure-bastion/">Azure Bastion Pricing</a></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia";"></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><span style="font-family: "georgia" , "times new roman" , serif;">References: <a href="https://azure.microsoft.com/en-us/blog/announcing-the-preview-of-microsoft-azure-bastion/">Microsoft Azure Bastion Services</a></span></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<b style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><u style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><span style="color: #000120; font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"></span></u></b></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></div>
</div>
<div class="separator" style="-webkit-text-stroke-width: 0px; background-color: transparent; clear: both; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: center; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<span style="font-family: "georgia" , "times new roman" , serif; margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;"><iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/eLjuWG-L57Q/0.jpg" frameborder="0" height="266" src="?feature=player_embedded" width="320"></iframe></span></div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div style="margin-bottom: 0px; margin-left: 0px; margin-right: 0px; margin-top: 0px;">
<span style="background-color: transparent; color: black; display: inline; float: none; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span></div>
</div>
<div style="-webkit-text-stroke-width: 0px; background-color: transparent; color: black; font-family: Times New Roman; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10.66px; margin-left: 0px; margin-right: 0px; margin-top: 0px; orphans: 2; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
</div>
<div>
<b></b><i></i><u></u><sub></sub><sup></sup><strike></strike></div>
<div>
Thank you!</div>
<br /></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-53323184179999242532019-02-07T15:54:00.001-05:002019-02-07T15:59:40.632-05:00New OWA-Office 365 Tenants<div dir="ltr" style="text-align: left;" trbidi="on">
Microsoft released updates OWA version, which is available in all Office 365 tenants. New updated version design with some new attractive feature such as supporting Outlook categories in its favorite list, not to mention dark mode, the ability to schedule Teams meetings, and other new stuff.<br />
<br />
Microsoft rolls out an opt-in toggle, so users have new web experience. <br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-uv9n7dabh6s/XFyJvu51JEI/AAAAAAAASSk/c9BkIFAvs04vcl6ArjNXvoKaW7ElKoHqwCLcBGAs/s1600/11.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><span style="background-color: #fff2cc;"><img border="0" data-original-height="440" data-original-width="422" height="400" src="https://2.bp.blogspot.com/-uv9n7dabh6s/XFyJvu51JEI/AAAAAAAASSk/c9BkIFAvs04vcl6ArjNXvoKaW7ElKoHqwCLcBGAs/s400/11.JPG" width="382" /></span></a></div>
<span style="background-color: transparent; color: black; display: inline; float: none; font-family: "times new roman"; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">Also, users have the options to go back to the classic experience if they want. </span><br />
<span style="background-color: transparent; color: black; display: inline; float: none; font-family: "times new roman"; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"><br /></span>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-1GOBKk43T9c/XFyKCehXOaI/AAAAAAAASSs/yInQfFMZBYsHtkhsAeTkSXm_NNv3IyySwCLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="114" data-original-width="642" height="112" src="https://4.bp.blogspot.com/-1GOBKk43T9c/XFyKCehXOaI/AAAAAAAASSs/yInQfFMZBYsHtkhsAeTkSXm_NNv3IyySwCLcBGAs/s640/2.JPG" width="640" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-_pWKwYVXOwk/XFyKID78SPI/AAAAAAAASSw/BxUlu2NDdaU6RYlRW9LbqfRh0WReUdtiQCLcBGAs/s1600/1.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="125" data-original-width="765" height="102" src="https://3.bp.blogspot.com/-_pWKwYVXOwk/XFyKID78SPI/AAAAAAAASSw/BxUlu2NDdaU6RYlRW9LbqfRh0WReUdtiQCLcBGAs/s640/1.JPG" width="640" /></a></div>
<span style="background-color: transparent; color: black; display: inline; float: none; font-family: "times new roman"; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;"></span><b></b><i></i><u></u><sub></sub><sup></sup><strike></strike>The administrator can control the display of the toggle switch in the OWA with assigning the mailbox policy to the mailboxes. If True, OWA displays the toggle. If false, the toggle is invisible. If you look at the OWA mailbox policies in your tenant, you’ll find that Microsoft has enabled the toggle for all policies.<br />
<br />
If you want to check the settings, run the following cmdlet and verify<br />
<br />
<span style="background-color: #999999;"><i><b>Get-OwaMailboxPolicy | fl OutlookBetaToggleEnabled</b></i></span><br />
<span style="background-color: #999999;"></span><i></i><b></b><i></i><b></b><i></i><b></b><br />
<br />
If some organizations want to stop people using the new OWA to allow help desk support and documentation to be prepared. Administrator easily can achieve to run the following cmdlet:<br />
<br />
<span style="background-color: #999999;"><b><i>Get-OWAMailboxPolicy | Set-OWAMailboxPolicy -OutlookBetaToggleEnabled $False</i></b></span><br />
<span style="background-color: #999999;"></span><b></b><i></i><br />
If you want to assign a new OWA mailbox policy with the switch enabled to users that need to access the new UI for testing. And you have a policy is called OWAtestAccess. To set the switch in the policy and assign it to a mailbox, run the commands:<br />
<br />
<span style="background-color: #999999;"><i><b>Set-OWAMailboxPolicy -Identity OWATestAccess -OutlookBetaToggleEnabled $True</b></i></span><br />
<span style="background-color: #999999;"><i><b><br /></b></i></span>
<span style="background-color: #999999;"><i><b>Set-CASMailbox -Identity Dinesh.Singh -OWAMailboxPolicy OWATestAccess</b></i></span><br />
<h3 style="text-align: left;">
</h3>
<h3 style="text-align: left;">
Scheduling a Teams Meetings with OWA</h3>
In new OWA we can schedule a Teams meetings from OWA, We had feature to schedule a Skype for Business Online meeting. In Outlook we have a Teams add-in that work well if we start Outlook with Teams desktop client.<br />
<br />
Now we can have the an options to schedule a Teams meeting, here is the option:<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-cx1p4XHGVqI/XFyWIFgYu6I/AAAAAAAASTc/5vyZ31m__3ssvIelIIoQA-RD8M-0IdgFgCLcBGAs/s1600/6.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1000" data-original-width="1115" height="572" src="https://3.bp.blogspot.com/-cx1p4XHGVqI/XFyWIFgYu6I/AAAAAAAASTc/5vyZ31m__3ssvIelIIoQA-RD8M-0IdgFgCLcBGAs/s640/6.JPG" width="640" /></a></div>
<br />
<h3 style="text-align: left;">
Managing Categories</h3>
<br />
New OWA allows users to mark categories as favorites. When you add categories as favorites, you can create the filters for OWA to apply to the items.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-Lb7Jjvh5cFg/XFyUKyjy_5I/AAAAAAAASTI/uEzIIjItnI4AhE_FS7QtDwQ7qBvTAZJJgCLcBGAs/s1600/3.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="205" data-original-width="951" height="136" src="https://1.bp.blogspot.com/-Lb7Jjvh5cFg/XFyUKyjy_5I/AAAAAAAASTI/uEzIIjItnI4AhE_FS7QtDwQ7qBvTAZJJgCLcBGAs/s640/3.JPG" width="640" /></a></div>
<br />
<span style="background-color: transparent; color: black; display: inline; float: none; font-family: "times new roman"; font-size: 16px; font-style: normal; font-variant: normal; font-weight: 400; letter-spacing: normal; text-align: left; text-decoration: none; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">Also, you can create the new category based on the requirements.</span><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-RTH4Rd_P9Rk/XFyT0oj-p-I/AAAAAAAASTA/tJQcySxBhRIlSKwOXXkQAu6_HVzWKM0pQCLcBGAs/s1600/12.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="549" data-original-width="1195" height="292" src="https://3.bp.blogspot.com/-RTH4Rd_P9Rk/XFyT0oj-p-I/AAAAAAAASTA/tJQcySxBhRIlSKwOXXkQAu6_HVzWKM0pQCLcBGAs/s640/12.JPG" width="640" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Here you can organize you mailbox in a better way </div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-WKjg0pwvWKY/XFyUjGGCvVI/AAAAAAAASTQ/tdN9nKLiIUcWBfYOfqFfNGTbwl12x9N7gCLcBGAs/s1600/13.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="840" data-original-width="813" height="640" src="https://3.bp.blogspot.com/-WKjg0pwvWKY/XFyUjGGCvVI/AAAAAAAASTQ/tdN9nKLiIUcWBfYOfqFfNGTbwl12x9N7gCLcBGAs/s640/13.JPG" width="617" /></a></div>
<br />
<br />
<h3 style="text-align: left;">
Dark Mode</h3>
<br />
Another new feature in OWA is dark mode, you can enable from OWA settings, if like it:<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-HGy6rzG_OMg/XFyWfBsXnQI/AAAAAAAASTk/m5a-XUy7MzAL0k6tksEoYYvNyxSc1oESgCLcBGAs/s1600/7.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="435" data-original-width="782" height="178" src="https://1.bp.blogspot.com/-HGy6rzG_OMg/XFyWfBsXnQI/AAAAAAAASTk/m5a-XUy7MzAL0k6tksEoYYvNyxSc1oESgCLcBGAs/s320/7.JPG" width="320" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-nUEtOdSM1J8/XFyZi8vLxYI/AAAAAAAASUA/YnBqf82DJo4_kCqsGWkBSSqjBGjokHPxgCLcBGAs/s1600/17.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="706" data-original-width="1600" height="282" src="https://1.bp.blogspot.com/-nUEtOdSM1J8/XFyZi8vLxYI/AAAAAAAASUA/YnBqf82DJo4_kCqsGWkBSSqjBGjokHPxgCLcBGAs/s640/17.JPG" width="640" /></a></div>
<br />
<br />
<h3 style="text-align: left;">
</h3>
<h3 style="text-align: left;">
Joy full Animations in Email</h3>
<br />
Another attracted attention feature is Joyful animations on new OWA, now you can enable the Joyful Animations from OWA settings. OWA will show you when you read the email related celebration such as Happy Birthday, Congratulations etc.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-DTbMBjN7eRw/XFyYp1ALeOI/AAAAAAAASTw/EZV7MqycIB0h4hy0W7g-FhAU7x_wTpc5wCLcBGAs/s1600/14.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="570" data-original-width="1250" height="289" src="https://4.bp.blogspot.com/-DTbMBjN7eRw/XFyYp1ALeOI/AAAAAAAASTw/EZV7MqycIB0h4hy0W7g-FhAU7x_wTpc5wCLcBGAs/s640/14.JPG" width="640" /></a></div>
Its good feature to send some good stuffs to your teaTun<a href="https://4.bp.blogspot.com/-ylQISn9EwO4/XFyY9jedNII/AAAAAAAAST4/VPXTqB3XxBYiegaGnpwWQAaSbA4NpAUbwCLcBGAs/s1600/16.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="244" data-original-width="286" height="340" src="https://4.bp.blogspot.com/-ylQISn9EwO4/XFyY9jedNII/AAAAAAAAST4/VPXTqB3XxBYiegaGnpwWQAaSbA4NpAUbwCLcBGAs/s400/16.JPG" width="400" /></a><br />
<h3 style="text-align: left;">
</h3>
<h3 style="text-align: left;">
Turn On The Lights</h3>
<br />
When you enabled the dark mode on in your OWA, and some sent email for celebration etc. you will have the an option to turn on the light<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-YvgbNxEt6CE/XFyaiAL7zyI/AAAAAAAASUM/iRE7lO5KwtUfdJ6cVxZeTCskp9Cla7qoACLcBGAs/s1600/20.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="364" data-original-width="798" height="290" src="https://3.bp.blogspot.com/-YvgbNxEt6CE/XFyaiAL7zyI/AAAAAAAASUM/iRE7lO5KwtUfdJ6cVxZeTCskp9Cla7qoACLcBGAs/s640/20.JPG" width="640" /></a></div>
Also, you can do turn off the light<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-XZepisnEZXU/XFyar6j4SeI/AAAAAAAASUQ/DFPjC_yDPsM0GEqSG893roDPFW-mOLr2QCLcBGAs/s1600/19.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="502" data-original-width="799" height="402" src="https://1.bp.blogspot.com/-XZepisnEZXU/XFyar6j4SeI/AAAAAAAASUQ/DFPjC_yDPsM0GEqSG893roDPFW-mOLr2QCLcBGAs/s640/19.JPG" width="640" /></a></div>
<br />
Hope all your users will enjoy with new OWA.<br />
<br />
Thank you!<br />
<br />
Happy Learning!</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-75506524418524036452018-09-27T12:16:00.001-04:002018-09-27T12:18:27.425-04:00Hybrid Exchange- Organization Configuration Transfer<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="text-align: justify;">
There are continuous improvement on Exchange Online and Microsoft adding new features and trying to reduce the amount of time needed to configure, in adding this new improvement is Exchange Hybrid Organization Configuration "<i><b>Organization Config Transfer Feature (OCT)</b></i>".</div>
<div style="text-align: justify;">
<br /></div>
<h3 style="text-align: justify;">
Phase I</h3>
<div style="text-align: justify;">
<b><br /></b>
In June 18, 2018, Microsoft enabled new feature a one-time transfer of key organization policy objects during the onboarding process from Exchange on-premises to Exchange Online. This is the new feature added on existing Hybrid Configuration Wizard. Administrator have the choice to choose what objects to transfer or not from on-premises to Exchange Online.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
This is the one-time transfer, if any changes after this, administrator need to manually update the configuration on on-premises or Exchange Online.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
This feature will support config transfer from Exchange Server 2010, 2013 or Exchange 2016 migration to Exchange Online.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
HCW will automatically transfer the a copy of settings of the following objects to Exchange Online:</div>
<div style="text-align: justify;">
<br /></div>
<ul style="text-align: left;"><div style="text-align: justify;">
</div>
<li><div style="text-align: justify;">
Retention Policy</div>
</li>
<div style="text-align: justify;">
</div>
<li><div style="text-align: justify;">
Retention Policy Tags</div>
</li>
<div style="text-align: justify;">
</div>
<li><div style="text-align: justify;">
OWA Mailbox Policy</div>
</li>
<div style="text-align: justify;">
</div>
<li><div style="text-align: justify;">
Mobile Device mailbox policy</div>
</li>
<div style="text-align: justify;">
</div>
<li><div style="text-align: justify;">
Active Sync mailbox Policy</div>
</li>
<div style="text-align: justify;">
</div>
</ul>
<div style="text-align: justify;">
Hybrid Configure Wizard only copy the new policies, which are not exist in Exchange Online, if the policy already is in Exchange Online the OCT features will not sync the policy or updates the policies across.</div>
<div style="text-align: justify;">
Here is the how real world works</div>
<div class="separator" style="clear: both; text-align: justify;">
<a href="https://3.bp.blogspot.com/-7BNLXkFQzbg/W6z6T7pb0vI/AAAAAAAASDE/gkQC_UVYiectrxhJPy994WQknIPtiHRtQCLcBGAs/s1600/1.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="638" data-original-width="702" height="290" src="https://3.bp.blogspot.com/-7BNLXkFQzbg/W6z6T7pb0vI/AAAAAAAASDE/gkQC_UVYiectrxhJPy994WQknIPtiHRtQCLcBGAs/s320/1.jpg" width="320" /></a></div>
<div style="text-align: justify;">
here you can see the logs</div>
<div class="separator" style="clear: both; text-align: justify;">
<a href="https://2.bp.blogspot.com/-CKlC8cCLVzM/W6z8EFBxfZI/AAAAAAAASDQ/k3pf_Xa7LpAmjXIEfGojSkQSGVpEFZiYgCLcBGAs/s1600/3.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="184" data-original-width="800" height="73" src="https://2.bp.blogspot.com/-CKlC8cCLVzM/W6z8EFBxfZI/AAAAAAAASDQ/k3pf_Xa7LpAmjXIEfGojSkQSGVpEFZiYgCLcBGAs/s320/3.jpg" width="320" /></a></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Administrators have to spend lot of time to define policies same as how work in on-premises, it's good to use the Hybrid Configuration Wizard to transfer the OCT features and avoid the potential mistakes.</div>
<div style="text-align: justify;">
<br /></div>
<h3 style="text-align: justify;">
Phase II</h3>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
It's Ignite week and lots of new announcements are coming from Microsoft, one of the them is Improvements to Hybrid Publishing and Organization Configuration Transfer, in Phase II Microsoft added seven additional objects on OCT, its called v2. which are:</div>
<div style="text-align: justify;">
<br /></div>
<ul style="-webkit-text-stroke-width: 0px; background-color: white; box-sizing: border-box; font-family: "Segoe UI","Avenir Book",sans-serif; font-size: 16px; font-style: normal; font-weight: 400; letter-spacing: normal; margin-bottom: 10px; margin-top: 0px; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px;"><div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">All OCTv1 objects</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Active Sync Device Access Rule</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Active Sync Organization Settings</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Address List</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">DLP Policy</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Malware Filter Policy</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Organization Config</span></div>
</li>
<div style="text-align: justify;">
</div>
<li style="box-sizing: border-box;"><div style="text-align: justify;">
<span style="color: black;">Policy Tip Config</span></div>
</li>
<div style="text-align: justify;">
</div>
</ul>
<div style="text-align: justify;">
In V2 if the objects are already exists both on-premises and Exchange Online, now we have choice to choose to either overwrite the values of the objects or keep them as is. If in case those objects are overwrite the Exchange Online settings, you have option to rollback with help of the script.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
In the new Hybris Configure Wizard, there only two options <i>1.Use Exchange Modern Hybrid</i>, <i>2. Use Exchange Classic Hybrid.</i> You can select Exchange Modern Hybrid option to transfer the config to Exchange online.</div>
<div class="separator" style="clear: both; text-align: justify;">
<a href="https://2.bp.blogspot.com/-a1HoKiQouL4/W6z-9DvsqfI/AAAAAAAASDc/yrVBnPnRiFYvmvLkw2fvV2OOeNbxDG7BACLcBGAs/s1600/4.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1085" data-original-width="1233" height="281" src="https://2.bp.blogspot.com/-a1HoKiQouL4/W6z-9DvsqfI/AAAAAAAASDc/yrVBnPnRiFYvmvLkw2fvV2OOeNbxDG7BACLcBGAs/s320/4.jpg" width="320" /></a></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Once, you choose the option <i>"Use Exchange Modern Hybrid"</i> this will install hybrid agent (same as Azure Application Proxy), agent will help to publish on-premise Exchange to Exchange online.</div>
<div style="text-align: justify;">
<br /></div>
<div class="separator" style="clear: both; text-align: justify;">
<a href="https://3.bp.blogspot.com/-GF3JGUBQpnQ/W60ADEVtNeI/AAAAAAAASDk/7XHCcFecemwhB43h93xKPHnTsF3CvJVUgCLcBGAs/s1600/5.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="680" data-original-width="1600" height="136" src="https://3.bp.blogspot.com/-GF3JGUBQpnQ/W60ADEVtNeI/AAAAAAAASDk/7XHCcFecemwhB43h93xKPHnTsF3CvJVUgCLcBGAs/s320/5.jpg" width="320" /></a></div>
<div style="text-align: justify;">
<i> Photo from Microsoft</i></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Soon, Microsoft will release the GA, as of now only public preview is available.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Reference: </div>
<div style="text-align: justify;">
https://myignite.techcommunity.microsoft.com/sessions/65633?source=sessions</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Thanks!</div>
<div style="text-align: justify;">
<b><br /></b></div>
<div style="text-align: justify;">
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-46586444371178590192018-09-25T18:47:00.001-04:002018-09-25T18:50:29.727-04:00Microsoft New Release - Exchange Server 2019 Public Preview<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="text-align: justify;">
People says on-premises Exchange server is dead, it seems false rumors. At the Ignite 2017 Microsoft announced next version of Exchange Server for on-premises environments and the version will be Exchange Server 2019. Microsoft follows the typical release for Exchange Server every three years with RTM etc.</div>
<div style="text-align: justify;">
<br /></div>
<div class="separator" style="clear: both; text-align: justify;">
<a href="https://2.bp.blogspot.com/-iO1zt0JZFrs/W6pPj-1zFAI/AAAAAAAASCo/UVwzyqKe59MfaiQ0mMRbz8emPOSV0LCCwCLcBGAs/s1600/exchange-2019-release-roadmap.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="651" data-original-width="1162" height="358" src="https://2.bp.blogspot.com/-iO1zt0JZFrs/W6pPj-1zFAI/AAAAAAAASCo/UVwzyqKe59MfaiQ0mMRbz8emPOSV0LCCwCLcBGAs/s640/exchange-2019-release-roadmap.png" width="640" /></a></div>
<div style="text-align: justify;">
<i>Image via Microsoft</i></div>
<div style="text-align: justify;">
<i><br /></i></div>
<div style="text-align: justify;">
On September, 24 Microsoft announced a preview build of on-premises <b>Exchange Server 2019</b> in <b>Ignite 2018</b>. Exchange Server 2019 designed to deliver granular security, performance and better administration capabilities.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Microsoft tried to make the best Exchange Server (email server) simple, secure, good performance and better management.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
As everyone know that internet is the dangerous for any of the servers, mainly if you are talking about the email server, hacker can target email server if you don't have solid security in place. Exchange Server 2019 support for installing Exchange Server 2019 onto <b>Windows Server Core</b>, which will provides most secure platform. Exchange Server 2019 have both option to install Core or Desktop experience. One of the best thing to know Exchange Server 2019 will run <b>only on Windows Server 2019</b> so organization have to upgrade the operating system and deploy the latest version of Windows Server.</div>
<div style="text-align: justify;">
Server Core provides better security and most of the Exchange Server are managed remotely via EAC or PowerShell so there is no reason to install bunch of Windows features on Exchange Server, it will free CPU cycle for email processing, which will improve the performance of the Exchange Server.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
There are some recommendation for hardware such as the minimum memory for Exchange Server 2019 is 128 GB and Maximum is 256 GB, 64 GB for Edge Server. If you are talking about the processor count is 48 dual-socket maximum recommendation. Exchange Server 2019 now support <b>SSD technology</b> and adding the tiered storage read/write capacity to Exchange Server 2019. Exchange Server 2019 reduced I/O demand. Metacache database where 10% of mailbox database (indexes, mailbox folder tables) improve the Exchange Server database engine enable better performance.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Exchange Server 2019 using the Bing technology same as Exchange online used which means <b>search indexes </b>are now inside the mailboxes (index data is now within the database) and same as other mailbox content and normal log shipping include database and search data to replication, which will help to make it faster and provides better results. There is no separate Search indexes logs files to manage. It will help faster more reliable failover between the servers.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<b>Unified Communication</b> role is not supported by Exchange Server 2019, only option to use Skype for Business or 3rd party PBX. If you want to upgrade into Exchange Server 2019 than option to upgrade Skype for Business 2019 to use cloud voicemail.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
There are very few improvements on client side such as do not forward <b>calendar invite</b> (blocking the forwarding of meetings), its similar to IRM. And bit improvement on Out of Office such as quick options to cancel/decline the meetings.</div>
<div style="text-align: justify;">
I would say noting great for client prospective improvements on Exchange Server 2019.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Overall, On-premises mailing system never going to dead, as we know most of the small and medium level organization moved to Exchange Online but large enterprises are still running on-premises email systems. Exchange Server 2019 will keep happy on-premises customers.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
References : https://docs.microsoft.com/en-us/Exchange/exchange-server?view=exchserver-2019</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
Thanks!</div>
<div style="text-align: justify;">
Happy Learning.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-26404230547071706692018-05-30T15:34:00.000-04:002018-05-30T15:35:46.205-04:00'what if tool' -Azure Active Directory conditional access<div dir="ltr" style="text-align: left;" trbidi="on">
In a digital Cloud era, security is a top challenges for all the organizations. A key aspect of the cloud security is identity and access when you are using the cloud resources. In digital world , users can access organization's resources anywhere to using a variety of devices and apps.<br />
Organizations having the challenges to focusing on who has access and where, most of the IT administrator need to factor how resource is being accessed into an access control decision.<br />
<br />
Azure Active Directory introduced the conditional access, which will address all the requirement, conditional access is capable to enable to enforce controls on the access to apps in organization based on specific conditions from central location. Example- When the contractor or employee try to access OWA from untrusted networks/devices, block the access, there is two part of this policies control and conditions.<br />
<br />
Conditional Access is a premium feature of Azure Active Directory that allows administrator to specify conditions so that users can get authenticate to the cloud services, administrator also can specify to certain set of users can only authenticate to specific applications from specific IPs or location.<br />
<br />
<b>Controls</b><br />
In the controls section of conditional access policies, there are two types of controls Gran and Session. With grant controls, we can either grant or block access completely or you can allow access with additional requirements.<br />
Session control enable a limited experience within the specific cloud app once the user is authenticated. Session controls are enforced by the cloud app itself once the user is granted access. <br />
<br />
Conditional access configuration and testing is critical and it directly effect to the end users. Azure Active Directory conditional access "What If tool" will help to apply the policies into cloud services.<br />
<br />
The conditional access what if policy tool allow to understand the impact of conditional access policies on cloud environment, tool also evaluate a simulated the sign-in of a user. The simulation estimates the impact this sign in on policies and generate the simulation report. Report will provide quickly determine the policies that apply to specific user.<br />
<br />
<b>How 'What if Tool' Works</b><br />
<br />
First of all we need to configure the settings of the sign-in scenario which we need to test or simulate<br />
<br />
1. Go to the Azure AD Conditional access<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-4zxskt17ZVY/Ww7RqPesAvI/AAAAAAAARt8/LDjsRHSyADERuueCAJ-Ssq_e4IQa-HIEQCLcBGAs/s1600/1.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="453" data-original-width="699" height="258" src="https://3.bp.blogspot.com/-4zxskt17ZVY/Ww7RqPesAvI/AAAAAAAARt8/LDjsRHSyADERuueCAJ-Ssq_e4IQa-HIEQCLcBGAs/s400/1.JPG" width="400" /></a></div>
2. Click on What If<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-5D8D6PYVD28/Ww7RyoZb3hI/AAAAAAAARuA/SNUnPkfHtXcgfMHhTXBwFS4U2gpwdf2KgCLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="213" data-original-width="271" src="https://4.bp.blogspot.com/-5D8D6PYVD28/Ww7RyoZb3hI/AAAAAAAARuA/SNUnPkfHtXcgfMHhTXBwFS4U2gpwdf2KgCLcBGAs/s1600/2.JPG" /></a></div>
<div>
3. Select the user you want to test</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-DnlS1gJdmCU/Ww7SDsbpxOI/AAAAAAAARuM/bFAgY63TlBguBm-WpD_WEvytxYFcyxBwQCLcBGAs/s1600/3.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="506" data-original-width="1021" height="197" src="https://4.bp.blogspot.com/-DnlS1gJdmCU/Ww7SDsbpxOI/AAAAAAAARuM/bFAgY63TlBguBm-WpD_WEvytxYFcyxBwQCLcBGAs/s400/3.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div>
<br /></div>
4. Once you fill all the information click on What if and the evaluation result provide the report<br />
<div class="separator" style="clear: both; text-align: center;">
<img border="0" data-original-height="245" data-original-width="922" height="85" src="https://2.bp.blogspot.com/-17-RAL4678U/Ww7UMhwz_YI/AAAAAAAARuY/Eus3Jf4Mlf0ZdruwafJR9gHrAcqqPhOkQCLcBGAs/s320/4.JPG" width="320" /></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
For more resources :</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-best-practices</div>
<div class="separator" style="clear: both; text-align: left;">
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-mam</div>
<div style="text-align: left;">
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-azure-portal</div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-7488496090195287912018-03-15T19:19:00.001-04:002018-05-23T17:14:36.548-04:00Office 365 Group Expiration Policy<div dir="ltr" style="text-align: left;" trbidi="on">
Almost, every Exchange administrator know we create many Distribution List in Exchange on-premises environment based on business requirement or management of the our users based on department, position, location etc. but some time we create some of the Distribution List which require for very short term or business uses for limited time such as new vendor communication or specific project roll out. Exchange administrator never know when those distribution list not required anymore such as project completed, vendor contact finished etc. and those distribution list always residing in Exchange Server.<br />
<br />
Distribution List now Groups in Office 365, Once we moved the our mailboxes and using the Office 365 Groups and it is increased usage of Groups in Office 365. And same way administrator create multiple Groups in Office 365 as on-premises Exchange server. But administrator never know that when they have to clean up unused Groups.<br />
<br />
Microsoft introduced Office 365 Group Expiration Policy which is now Generally Available (GA). now we can manage the lifecycle of Office 365 Groups by setting as expiration policy. Expiration policy only we can set from Azure Active Directory portal or Azure Active Directory PowerShell also you can create a policy that applies to all the Groups in tenant.<br />
<br />
Expiration policy can help administrator remove inactive Groups from the Office 365 and make clean end users. When the Office 365 Groups reached to expire date it is soft-deleted which means it can still be recover for up to 30 days all its content, including SharePoint, Planner, Outlook etc.<br />
<br />
Administrator can specify an expiration period of any Groups that reaches the end of that period and it is not renewed , will be deleted. Expiration period will start when the Groups created and when last renewed. Owners of the Groups will automatically get the email notification before the expiration which will allow them to renew the Groups.<br />
<br />
Groups Expiration is turned off default. Administrator have to enable for their tenant if you want to use this features. Groups Expiration is an Azure Active Directory premium feature. You must have Azure AD Premium license to use this features.<br />
<br />
<h3 style="text-align: left;">
Privilege to configure Office 365 Groups Expiration Policy</h3>
<br />
<b>Office 365 Global admin</b> - Create, read, update, delete the Office 365 Groups expiration policy <br />
settings.<br />
<br />
<b>Office 365 User administrator</b> - Create, read, update, delete the Office 365 Groups expiration policy <br />
settings.<br />
<br />
<b>User</b> - Renew and Office 365 Groups that they own<br />
Restore and Office 365 Groups that they own.<br />
<br />
<br />
<h3 style="text-align: left;">
How to set the Office 365 Groups Expiration Policy</h3>
First of all enable the expiration policy, Default is disabled, also you can se on top notification details<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-mmN-bVTzMGI/WqrvniiwvzI/AAAAAAAARN4/1EUaCfX5AWMXdVGTai1h-bHpSZKy7AAnACLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="354" data-original-width="825" height="273" src="https://1.bp.blogspot.com/-mmN-bVTzMGI/WqrvniiwvzI/AAAAAAAARN4/1EUaCfX5AWMXdVGTai1h-bHpSZKy7AAnACLcBGAs/s640/2.JPG" width="640" /></a></div>
<br />
<br />
<br />
<br />
Enable the expiration policy, there are three options, custom, 365 and 180 day, select options based on your business requirements, in my case I have selected custom and 45 days also give the Group owner name for notification and select "<b>Enable expiration for these Office 365 Groups</b>" such as All, Selected or None, I have selected option "<b>selected</b>"<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-Te9aC1EjNLc/WqrwJRT-yiI/AAAAAAAAROA/BZsttMSurVIy_n3ugVZOHeRWR4KAnPTuACLcBGAs/s1600/8.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="262" data-original-width="858" height="194" src="https://3.bp.blogspot.com/-Te9aC1EjNLc/WqrwJRT-yiI/AAAAAAAAROA/BZsttMSurVIy_n3ugVZOHeRWR4KAnPTuACLcBGAs/s640/8.JPG" width="640" /></a></div>
<br />
next select the Office 365 Groups click on "<b>Select Office 365 Groups</b>"<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-xvQ6S2smqDw/WqrxFFhsUmI/AAAAAAAAROI/XNDplhSvml0ERgbDo2HHJbfm7i0g4wyTwCLcBGAs/s1600/4.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="363" data-original-width="847" height="274" src="https://4.bp.blogspot.com/-xvQ6S2smqDw/WqrxFFhsUmI/AAAAAAAAROI/XNDplhSvml0ERgbDo2HHJbfm7i0g4wyTwCLcBGAs/s640/4.JPG" width="640" /></a></div>
Here you can select or search the groups name<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-PR2b5ZtrwPA/WqrxTerov1I/AAAAAAAAROM/5VeZfMIn6nEknNftDc7BhUe5p6pg4-xtwCLcBGAs/s1600/5.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="266" data-original-width="448" height="380" src="https://2.bp.blogspot.com/-PR2b5ZtrwPA/WqrxTerov1I/AAAAAAAAROM/5VeZfMIn6nEknNftDc7BhUe5p6pg4-xtwCLcBGAs/s640/5.JPG" width="640" /></a></div>
<br />
<br />
Once, we select the group and save we can see get the notification for success full policy applied.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-6IBHiqS7awg/WqrxtECHz6I/AAAAAAAAROU/Iy36_XFfQ4ks7rwz7gm73Gbcm76OkZq7ACLcBGAs/s1600/6.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="345" data-original-width="782" height="282" src="https://2.bp.blogspot.com/-6IBHiqS7awg/WqrxtECHz6I/AAAAAAAAROU/Iy36_XFfQ4ks7rwz7gm73Gbcm76OkZq7ACLcBGAs/s640/6.JPG" width="640" /></a></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-RhvpMd2FbJo/WqrxcksMyeI/AAAAAAAAROQ/1ng2M-fFFHMo9MEf9B05KxYjApeTwQPLACLcBGAs/s1600/7.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="88" data-original-width="380" height="148" src="https://4.bp.blogspot.com/-RhvpMd2FbJo/WqrxcksMyeI/AAAAAAAAROQ/1ng2M-fFFHMo9MEf9B05KxYjApeTwQPLACLcBGAs/s640/7.JPG" width="640" /></a></div>
<br />
<b>PowerShell</b><br />
<br />
We can also use PowerShell to configure the Office 365 Group Expiration settings:<br />
<br />
Install the PowerShell v2.0<br />
<span style="background-color: #999999;"><i>Install-Module -Name AzureADPreview connect -azuread</i></span><br />
<br />
Configure the expiration settings<br />
<span style="background-color: #999999;"><i>New-AzureADMSGroupLifecyclepolicy -GroupLifetimeInDays 45 -ManagedGroupType All -AlternateNotificationEmail dinesh.singh@tech.com</i></span><br />
<br />
View the existing Policy<br />
<span style="background-color: #999999;"><i>Get-AzureADMSGroupLifecyclePolicy</i></span><br />
<br />
Add specific group to the policy<br />
<span style="background-color: #999999;"><i>Add-AzureADMSLifecyclePolicyGroup -ID "ObjectID" -GroupID "groupID"</i></span><br />
<br />
<br />
<h3 style="text-align: left;">
Renew Office 365 Groups</h3>
<br />
Group owners will get the email notification 30 days, 15 days and 1 day before the Group expiration date, once owner get the email notification they can renew their Group with a single click.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-qcOsa5_a1vQ/Wqrzk--Iq9I/AAAAAAAAROk/NdQg5gkyi0oChbsMrDlEHyq-sfCjJy45ACLcBGAs/s1600/9.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="690" data-original-width="457" height="640" src="https://2.bp.blogspot.com/-qcOsa5_a1vQ/Wqrzk--Iq9I/AAAAAAAAROk/NdQg5gkyi0oChbsMrDlEHyq-sfCjJy45ACLcBGAs/s640/9.JPG" width="422" /></a></div>
Picture curtsy by Microsoft<br />
Also Group owner can delete if they want to delete as indicated on picture.<br />
<br />
<b>PowerShell</b><br />
<br />
Update the existing policy<br />
<span style="background-color: #999999;"><i>Set-AzureADMSGroupLifecyclepolicy -Id "22hjgjgdh234535561-jhg234" -GroupLifetimeInDays 180 -AlternotificationEmails "dinesh.singh@tech.com"</i></span><br />
<br />
<h3 style="text-align: left;">
<b>Restore Office 365 Groups</b></h3>
<br />
When we delete an Office 365 365 Groups in the Azure AD or deleted by expired date, deleted group is retained but not visible for 30 days from deletion date, We can restore the Groups and its contents<br />
<b><br /></b>
<b>Permission Required </b><br />
<br />
<b>Administrator </b>- Can restore any deleted Office 365 Groups.<br />
User Account Administrator- Can restore any deleted Office 365 Group except those assigned to the Administrator role.<br />
<br />
<b>User</b> - Can restore any deleted Office 365 Groups that they owned.<br />
<br />
View the Deleted Office 365 Groups<br />
<br />
<span style="background-color: #999999;"><i>Get-AzureADMSDeletedGroup</i></span><br />
<br />
<span style="background-color: #999999;"><i>Get-AzureADMSDeletedGroup -Id </i></span><objectid></objectid><br />
<br />
Restore Deleted Office 365 Groups<br />
<br />
<span style="background-color: #999999;"><i>Restore-AzureADMSDeletedDirectoryobject -Id </i></span><objectid></objectid><br />
<br />
For Office 365 Group owner- When the Office 365 Group is deleted one day after the expiration date, an email notification sent to the Groups owners informing them about the Group expiration and subsequent deletion of their Group, owner can easily click on "Restore Group" for restoring the deleted Office 365 Group.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-8ynSLbLpfU4/Wqr2YHKb4qI/AAAAAAAAROw/BJ5AYy42qGgOxoTZycFWWlz9tKFjgOK4ACLcBGAs/s1600/10.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="540" data-original-width="456" height="640" src="https://3.bp.blogspot.com/-8ynSLbLpfU4/Wqr2YHKb4qI/AAAAAAAAROw/BJ5AYy42qGgOxoTZycFWWlz9tKFjgOK4ACLcBGAs/s640/10.JPG" width="540" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
Picture Courtesy by Microsoft</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Never use <span style="background-color: #999999;"><i>Remove-MSolGroup</i></span> because it purges the group permanently, make a best practice to use </div>
<div class="separator" style="clear: both; text-align: left;">
<i style="background-color: #999999;">Remove-AzureADMSGroup </i>to delete an Office 365 Group</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<h3 style="clear: both; text-align: left;">
<b>Office 365 Group expiration and Legal hold</b></h3>
<div class="separator" style="clear: both; text-align: left;">
30 days after deletion the group data is permanently deleted after expiration date, but the group mailbox that is on legal hold is retained and not permanently deleted., admin can use cmdlet to restore the mailbox to fetch the data.</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<h3 style="clear: both; text-align: left;">
<b>Office 365 Group with Retention Policy</b></h3>
<div class="separator" style="clear: both; text-align: left;">
Once Office 365 Group expired/deleted the group conversation in the group mailbox and file in the group site are retained in the retention container for the specific number of days defined by retention policy but users can not see the group or its content after expiration, but can recover the site and mailbox data via e-discovery.</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Reference :<b> <a href="https://docs.microsoft.com/en-us/azure/active-directory/active-directory-groups-lifecycle-azure-portal" target="_blank">Configure the expiration policy for Office 365 Group</a></b></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Happy Learning!</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Thank you!</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<br />
<br />
<br /></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-45034402863982190392018-03-09T09:39:00.002-05:002018-03-09T09:47:07.246-05:00Office 365 Microsoft Team or Slack- Collaboration<div dir="ltr" style="text-align: left;" trbidi="on">
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">Effective communication is the backbone of the any workplace/organization.
Since, we are working on Microsoft different communication platforms such as
LCS 2003, LCS2005, OCS 2007, OCS R2, Lync 2010, Lync 2013, Skype for Business
and Skype for Business Online now Microsoft Team.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<div style="margin: 0px 0px 11px;">
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">Microsoft announced Microsoft Team November 2016 the new chat
based workspace part of the Office 365, it is completely new experience that
brings together people, conversations and content also integrated with other
tools familiar Office applications. Microsoft Team is the part of the Office
365 Enterprise or Business plans, with general availability in first quarters
2017.</span></div>
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<div style="margin: 0px 0px 11px;">
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">There are lot of collaborative software on the market such as
Asana, Podio, Igloo, Workfront, Cisco Spark and one of the most popular is Slack.</span></div>
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">Slack is the cloud collaboration service for business, can be
truly helpful tool for companies, it’s got the private channels and direction
messages. It makes sharing files very easy also you add some third-party
add-ons. </span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<div style="margin: 0px 0px 11px;">
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">Slack has emerged as a major player in the infra-office
communication space and provide unique chatroom structure which is help workers
to communicate quickly and efficiently in an organized platform.</span><br />
<span style="font-family: "georgia"; font-size: x-small;"><br /></span></div>
<b><span style="font-family: "georgia" , "times new roman" , serif;">Big Market for Microsoft Team (</span></b><a href="https://docs.microsoft.com/en-us/microsoftteams/guest-access" target="_blank"><b><span style="font-family: "georgia" , "times new roman" , serif;">Teams Now Supports Guest Users from Non-Office 365 Domains</span></b></a><b><span style="font-family: "georgia" , "times new roman" , serif;">)</span></b><br />
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<span style="font-family: "georgia" , "times new roman" , serif;">One of the big advantage on Slack is third party integration, user friendly design, Slack was the among the first of it is kind when it was released and has set the standard for office communication platforms.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<span style="font-family: "georgia" , "times new roman" , serif;">Microsoft make a game changing update to introduce third party integration which solved lot of road blocked. Team now integrates with a wide selection of apps and services. Users no longer have to take screenshots of content and upload them into Team to start a discussion, Team also improve the search bar at the top of the interface, which allows for chat-wide searching and information integration.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"></span><br />
<b><span style="font-family: "georgia" , "times new roman" , serif;">Free version of Microsoft Team</span></b><br />
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;">Microsoft releasing the </span><a href="https://www.petri.com/technical-aspects-free-version-teams" target="_blank"><span style="font-family: "georgia" , "times new roman" , serif;"><b>free version of Team</b></span></a><span style="font-family: "georgia" , "times new roman" , serif;"> to take the Slack, It likely to limit functionality available to the free version. There are some functions such as supporting 100 channels in a team, the free version might support only 5 and Instead of being able to create 250 teams but the an MSA account might be limited to 10. Well once, Microsoft release the free version in market we will get the exact functionality of the free versions.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;"><b><br /></b></span>
<span style="font-family: "georgia" , "times new roman" , serif;"><b>Difference between Microsoft Team and Slack</b></span>
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<br />
<div style="margin: 0px 0px 11px;">
<span style="font-family: "georgia" , "times new roman" , serif; font-size: 10pt; line-height: 107%; margin: 0px;">Both Microsoft Team & Slack Apps for Business platforms
look like similar, here we can breakdown what differences between bot tools:</span></div>
<a name='more'></a><br />
<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse; border-image: none; border: medium; margin: 0px;">
<tbody>
<tr style="mso-yfti-firstrow: yes; mso-yfti-irow: 0;">
<td style="border-image: none; border: 1px solid rgb(0, 0, 0); margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px; text-align: center;">
<span style="font-family: "georgia" , serif; font-size: 10pt; margin: 0px;"><b><span style="background-color: white;">Features </span></b></span></div>
</td>
<td style="border-color: rgb(0, 0, 0); border-image: none; border-style: solid solid solid none; border-width: 1px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-family: "georgia" , serif; font-size: 10pt; margin: 0px;"><span style="margin: 0px;"><b><span style="background-color: white;"> </span></b></span><b><span style="background-color: white;">Microsoft Team</span></b></span></div>
</td>
<td style="border-color: rgb(0, 0, 0); border-image: none; border-style: solid solid solid none; border-width: 1px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-family: "georgia" , serif; font-size: 10pt; margin: 0px;"><span style="margin: 0px;"><b><span style="background-color: white;"> </span></b></span><b><span style="background-color: white;">Slack</span></b></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 1;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Infrastructure</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">No server
on-premises infrastructure required.</span></span></div>
<div style="line-height: normal; margin: 0px;">
<br /></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">No server
infrastructure is required unless using Enterprise grid, which enables searches
across on-premises content.</span></span></div>
<div style="line-height: normal; margin: 0px;">
<br /></div>
</td>
</tr>
<tr style="mso-yfti-irow: 2;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Security
and Compliance</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Built Office
365 enterprise-grade cloud security & compliance capabilities featured in
it, Archiving content search, e-discovery, legal hold and audit logs are
available.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Cloud
security alliance, Society organization control 3, SOC 2, NIST 800-53, Health
insurance portability and accountability Act, the EU-US privacy shield and
the Swiss US privacy shield.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 3;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Storage
Capabilities</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="background: white; font-size: 10.5pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Users also
get some or all of Office 365's production apps and up to 1TB of cloud
storage and business class email with either a 50GB or unlimited inbox
capacity.</span></span><span style="color: black; font-family: "georgia" , "times new roman" , serif;"> Depending on the price point.</span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Free plan
includes 5GB of file storage, Standard include 10 GB, Plus includes 20 GB and
new Enterprise grid version shared channels 1 TB of cloud storage per user.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 4;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Integrated
with email, calendar</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Team
integrates with Office 365 by linking chats and archiving them to emails it
also provide the calendar to schedule meetings.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">No native
application, but users can integrate their existing apps such as Dropbox,
Google drive, Gmail, Outlook and other email calendar services and others.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 5;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Presence</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Presence
with different statuses is supported, platform does not support custom
statuses.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Presence
with different statuses is supported within Slack, it also offers custom
statuses.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 6;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Third-Party
App Integration</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Team
support third party support Apps</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Many third
party-party integrations available to Slack users through Apps</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 7;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Mobility</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Apps for
popular mobile platforms such as Android and iOS.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Apps for
popular mobile platforms such as Android and iOS.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 8;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Search and
Indexing of content</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Users are
able to search data or content indexed by SharePoint. Conversations, file and
people are searchable.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Searchable
conversations and enterprise content available only when using the Enterprise
Grid Slack plan.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 9;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Artificial
Intelligence Assistance</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Bots
available in the marketplace are supported, also create within the Microsoft
Bot framework.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Supported
integration of third party chatbots that can take actions such as finding
fights etc.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 10;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Audio/Visual
requirements</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Client
installation required for audio or video chat as well as desktop sharing app.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Client
installation required for audio or video chat.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 11;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">External
user Access</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">External
guest access supported</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">External
guest access supported</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 12;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">LDAP
Integration</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Supported AD
integration through Office 365 AD, Azure AD –AAD Connect.</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Supported
DirSync with Microsoft AD as well as SSo using SAML and open Auth.</span></span></div>
</td>
</tr>
<tr style="mso-yfti-irow: 13; mso-yfti-lastrow: yes;">
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-image: none; border-style: none solid solid; border-width: 0px 1px 1px; margin: 0px; padding: 0in 5.4pt; width: 155.8pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Costs</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Free
edition and with Office 365 Business Premium $12.50, Essentials plan $5 Enterprise
E1 $8 E3 $20 and E5 $35 per user/months</span></span></div>
</td>
<td style="background-color: transparent; border-color: rgb(0, 0, 0); border-style: none solid solid none; border-width: 0px 1px 1px 0px; margin: 0px; padding: 0in 5.4pt; width: 155.85pt;" valign="top" width="208"><div style="line-height: normal; margin: 0px;">
<span style="font-size: 10pt; margin: 0px;"><span style="color: black; font-family: "georgia" , "times new roman" , serif;">Free
edition for small teams, Standard plan is $6.67 Plus plan is $12.50 per user,
per months and New enterprise Grid version price is not disclosed.</span></span></div>
</td>
</tr>
</tbody></table>
<b></b><i></i><u></u><sub></sub><sup></sup><strike><br /></strike>
<br />
<span style="font-family: "georgia" , "times new roman" , serif;">Both Slack and Team are having pros and cons, I would say choosing the apps and services is depends on platform such as Google or Microsoft, if you are already using the Google Drive then Slack is the best option for your organization. If you are already having the Office 365 then Microsoft Team would be default options without any doubts.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;">Final thoughts free version of the Microsoft Team will change the complete market for Microsoft and will affect the Slack and Microsoft continue improving the functionality and feature user friendly.</span><br />
<span style="font-family: "georgia";"><br /></span>
<span style="font-family: "georgia";"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;">Happy Learning.</span><br />
<span style="font-family: "georgia" , "times new roman" , serif;"><br /></span>
<span style="font-family: "georgia" , "times new roman" , serif;">Thank you!</span><br />
<br />
<br />
<br />
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-86552089243646601172018-01-25T12:42:00.000-05:002018-01-25T12:42:16.049-05:00SQL AlwaysOn-Skype For Business III<div dir="ltr" style="text-align: left;" trbidi="on">
Its long finally got some time to continue the series, In <a href="https://ucservice.blogspot.com/2017/12/sql-alwayson-skype-for-business.html" target="_blank">first post</a> we covered Windows Clustering and configuration and<a href="https://ucservice.blogspot.com/2017/12/sql-alwayson-skype-for-business-ii.html" target="_blank"> second part</a> was Installing SQL server, configuration , Skype for business deployment & configuration, now in third post we will cover the specifying the Availability group and other configuration.<br />
<br />
<br />
First of all log in to <b>SQL Server management Studio</b> and we can see that <b>Skype for business server</b> related databases were created successfully on SQL server <b>USSQL1</b>, now time to create a new Availability Group, right click AlwaysOn High Availability and open New Availability Group Wizard<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-VCWuco9nUw4/WmoJ7BUx5bI/AAAAAAAAQ98/5Xi4fbrqa8YgHebphfR0pZLuhL3b821nQCLcBGAs/s1600/55.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="484" data-original-width="753" height="410" src="https://2.bp.blogspot.com/-VCWuco9nUw4/WmoJ7BUx5bI/AAAAAAAAQ98/5Xi4fbrqa8YgHebphfR0pZLuhL3b821nQCLcBGAs/s640/55.JPG" width="640" /></a></div>
<br />
Fill the required information on wizard<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-Nj2ydS3Jjsg/WmoKHL3ALLI/AAAAAAAAQ-A/rQmyZ252D7ssjoXggsTC6FXmk-2C9PjjACLcBGAs/s1600/56.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="625" data-original-width="721" height="552" src="https://4.bp.blogspot.com/-Nj2ydS3Jjsg/WmoKHL3ALLI/AAAAAAAAQ-A/rQmyZ252D7ssjoXggsTC6FXmk-2C9PjjACLcBGAs/s640/56.JPG" width="640" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-dqcVUTFmLj0/WmoKO44WZZI/AAAAAAAAQ-E/tPZIsFQzpuk0i_kNH3pmpkqzUdFAJk_7gCLcBGAs/s1600/57.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="627" data-original-width="719" height="558" src="https://4.bp.blogspot.com/-dqcVUTFmLj0/WmoKO44WZZI/AAAAAAAAQ-E/tPZIsFQzpuk0i_kNH3pmpkqzUdFAJk_7gCLcBGAs/s640/57.JPG" width="640" /></a></div>
<br />
Wizard also check the prerequisites and will let us know the details before proceed the database recovery needs to be changed to full and also perform a full backup. Click on <b>Meet prerequisites</b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-696ZUVwqatk/WmoKo1e_EOI/AAAAAAAAQ-Q/SqUrrVa_fawIk8FE7SXR88gSoHQGYWJfACLcBGAs/s1600/58.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="622" data-original-width="723" height="550" src="https://3.bp.blogspot.com/-696ZUVwqatk/WmoKo1e_EOI/AAAAAAAAQ-Q/SqUrrVa_fawIk8FE7SXR88gSoHQGYWJfACLcBGAs/s640/58.JPG" width="640" /></a></div>
<br />
<br />
On the next step, need to <b>add replica</b> <br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-Nk6DzEQp_Ms/WmoLRtlyyfI/AAAAAAAAQ-c/MKmqmh256l8r_gqzu5B52LNZ-zIZh3yUwCLcBGAs/s1600/59.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="621" data-original-width="726" height="546" src="https://1.bp.blogspot.com/-Nk6DzEQp_Ms/WmoLRtlyyfI/AAAAAAAAQ-c/MKmqmh256l8r_gqzu5B52LNZ-zIZh3yUwCLcBGAs/s640/59.JPG" width="640" /></a></div>
And connect the second <b>SQL server</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-ubqUXqF3yro/WmoLhEgudiI/AAAAAAAAQ-g/4Xi4WtvJ9PgB7nxOTuyCOhesppmF5vQswCLcBGAs/s1600/60.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="401" data-original-width="381" height="640" src="https://3.bp.blogspot.com/-ubqUXqF3yro/WmoLhEgudiI/AAAAAAAAQ-g/4Xi4WtvJ9PgB7nxOTuyCOhesppmF5vQswCLcBGAs/s640/60.JPG" width="608" /></a></div>
<br />
<span id="goog_786712601"></span><span id="goog_786712602"></span>Once you add you can see the both replica<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-ANPtNncgaOw/WmoLvOCbdrI/AAAAAAAAQ-k/as2XGtVXTT0CwhU8j02CxqFktevz8PEowCLcBGAs/s1600/61.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="623" data-original-width="713" height="558" src="https://3.bp.blogspot.com/-ANPtNncgaOw/WmoLvOCbdrI/AAAAAAAAQ-k/as2XGtVXTT0CwhU8j02CxqFktevz8PEowCLcBGAs/s640/61.JPG" width="640" /></a></div>
Now we have to create a <b>listener</b>, select the listener tab and then select <b>Create an availability group listener</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-rKxAr5JwOYg/WmoMFZ7vVgI/AAAAAAAAQ-o/PgXEhoXQvg4iPkgs3ss6hpX3f2_ibRt3gCLcBGAs/s1600/62.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="544" data-original-width="712" height="488" src="https://2.bp.blogspot.com/-rKxAr5JwOYg/WmoMFZ7vVgI/AAAAAAAAQ-o/PgXEhoXQvg4iPkgs3ss6hpX3f2_ibRt3gCLcBGAs/s640/62.JPG" width="640" /></a></div>
<br />
Next specify a temporary file share, select Full synchronization.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-KzRbwtKIrtk/WmoMbF0CddI/AAAAAAAAQ-s/SZ8VF9sUz1sZH7YJlqPp8IiNR6TYsE4kwCLcBGAs/s1600/63.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="620" data-original-width="718" height="552" src="https://3.bp.blogspot.com/-KzRbwtKIrtk/WmoMbF0CddI/AAAAAAAAQ-s/SZ8VF9sUz1sZH7YJlqPp8IiNR6TYsE4kwCLcBGAs/s640/63.JPG" width="640" /></a></div>
<br />
And the wizard will run additional availability group validation checks<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-nSV0G-R55pM/WmoMn592ISI/AAAAAAAAQ-0/lYuS9vU-wxo7Ob6ImWuUCSilJVr_mBRywCLcBGAs/s1600/64.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="623" data-original-width="721" height="552" src="https://1.bp.blogspot.com/-nSV0G-R55pM/WmoMn592ISI/AAAAAAAAQ-0/lYuS9vU-wxo7Ob6ImWuUCSilJVr_mBRywCLcBGAs/s640/64.JPG" width="640" /></a></div>
<br />
Here you view the complete summary<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-YU_yLLi2vok/WmoM5m5WA0I/AAAAAAAAQ-4/Pxq83uWUYtkfkFu_KYEZLTzOegdk9H9ugCLcBGAs/s1600/65.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="625" data-original-width="707" height="564" src="https://3.bp.blogspot.com/-YU_yLLi2vok/WmoM5m5WA0I/AAAAAAAAQ-4/Pxq83uWUYtkfkFu_KYEZLTzOegdk9H9ugCLcBGAs/s640/65.JPG" width="640" /></a></div>
Everything is well, here is the details<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-gSbEX_silAM/WmoOlX1p_fI/AAAAAAAAQ_U/rRgpGsg4cYEzKv7To-rSYTyOuDyf3sIXwCLcBGAs/s1600/70.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="541" data-original-width="717" height="482" src="https://4.bp.blogspot.com/-gSbEX_silAM/WmoOlX1p_fI/AAAAAAAAQ_U/rRgpGsg4cYEzKv7To-rSYTyOuDyf3sIXwCLcBGAs/s640/70.JPG" width="640" /></a></div>
<br />
From Console we can verify the, <b>AlwaysOn High Availability</b> configurations<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-eTXkHzwk1RU/WmoOEJBKSMI/AAAAAAAAQ_M/ab6idLgCJOQzrW7uzNE3UgVRypL7YgvbgCLcBGAs/s1600/71.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="546" data-original-width="409" height="640" src="https://2.bp.blogspot.com/-eTXkHzwk1RU/WmoOEJBKSMI/AAAAAAAAQ_M/ab6idLgCJOQzrW7uzNE3UgVRypL7YgvbgCLcBGAs/s640/71.JPG" width="478" /></a></div>
<br />
Next we have to compare the Security Logins for both servers, if it is not matching with second SQL server we need to change the Primary Replica to the second SQL server, right click on Availability Group and select failover click on next and connect the SQL server, once failover successful we will get the summary wizard and we can review. And we can see that the primary replica is now in the second SQL server.<br />
<br />
Next, go to the Topology builder, select SQL Server Store and edit Properties and change the SQL Server FQDN to the second SQL Server and publish the topology.<br />
<br />
Once Topology published successfully now we have the Skype for Business Server 2015 with an AlwaysOn Availability Group configured.<br />
<br />
Hope entire series might help you.<br />
<br />
Thank you!<br />
<br />
Happy Learning!<br />
<br /></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-63702034436408931352018-01-19T10:58:00.002-05:002018-01-19T10:58:30.612-05:00Office 365 new Cmdlet "Set-User" - Permanently Clear Old Mailbox Info<div dir="ltr" style="text-align: left;" trbidi="on">
Some time we are missing the object Exchange GUID after migrating the mailbox from on-premises to online and does not get the Exchange GUID from on-premise to online in Office 365 hybrid deployment with AAD connect / DirSync due to some on-premises sync or configuration problem.<br />
In process of migration if you assign the Office 365 license to this mailbox/object than user will get the two mailbox, one in on- premise and another is in cloud this will create mail flow issues.<br />
<br />
As you know Exchange GUID is the very important for any mailbox in Exchange/O365.<br />
<br />
One of the immediate fix is remove the O365 license from user's mailbox which will convert as mail user and mail flow will resume, but problem is still mail user have the some attribute on cloud mailbox/mail user which are unclear and it will show user having the mailbox is in cloud.<br />
<br />
One of the permanent fix is delete the object/mailbox in cloud only and re-sync it from on-premises, (<a href="https://ucservice.blogspot.com/2016/09/exchange-hybrid-error-cannot-find.html" target="_blank">as describe on my old post</a>) this will delete the object from cloud but if you have assigned license for OneDrive, SharePoint etc. all data will delete once you delete the mailbox/object in cloud and the data will not recover once you re-create the mailbox/object in cloud.<br />
<br />
Now Microsoft introduce the new parameter "Set- User" cmdlet in Exchange Online PowerShell, this will aloow admin to clean up Exchange Online object/mailbox without having to delete it, here is the command :<br />
<br />
<br />
<span style="background-color: #999999;"><i>PS C:\> Set-User Jon@contoso.com -PermanentlyClearPreviousMailboxInfo</i></span><br />
<br />
<span style="background-color: #cccccc;">Confirm<br />Are you sure you want to perform this action?<br />Delete all existing information about user “Jon@contoso.com"?. This operation will clear existing values from Previous home MDB and Previous Mailbox GUID of the user. After deletion, reconnecting to the previous mailbox that existed in the cloud will not be possible and any content it had will be unrecoverable PERMANENTLY. Do you want to continue?<br />[Y] Yes [A] Yes to All [N] No [L] No to All [?] Help (default is "Y"): Y</span><br />
<div>
<span style="background-color: #cccccc;"><br /></span></div>
<div>
<span style="background-color: #cccccc;"><br /></span></div>
Once, you clean now you can assign re-assign the license without causing.<br />
<br />
Remember, cleaning up the user means that the older associated disconnected (duplicate) cloud mailbox is not recoverable. If you want to keep it or be able to check it’s content, we recommend using Soft Deletion or Inactive Mailboxes to keep the mailbox.<br />
<br />
References: https://blogs.technet.microsoft.com/exchange/2018/01/17/permanently-clear-previous-mailbox-info/<br />
<br />
Happy Learning!<br />
<br />
Thank you!</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-43929227857794830922017-12-28T17:24:00.001-05:002017-12-28T17:24:52.463-05:00Office 365 Multi-Geo<div dir="ltr" style="text-align: left;" trbidi="on">
Microsoft announced Multi-Geo capabilities in Office 365, a new feature in Office 365 which helps multinational customers that have offices around the world and need to store their employee data in specific regions to meet their data residency requirements. It is mainly for customers which have the legal, regional or corporate data residency needs the necessitate that their user's data be stored at rest in specific geographical regions.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-7U-MEBIUVCE/WkUhlbvr_II/AAAAAAAAQ6E/3HjAewfMvQoo_ijygVKVQPh7T9WaSyo6ACLcBGAs/s1600/5.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="809" data-original-width="1466" height="352" src="https://2.bp.blogspot.com/-7U-MEBIUVCE/WkUhlbvr_II/AAAAAAAAQ6E/3HjAewfMvQoo_ijygVKVQPh7T9WaSyo6ACLcBGAs/s640/5.PNG" width="640" /></a></div>
<div style="text-align: left;">
Image courtesy of Microsoft</div>
<br />
Multi-Geo enables a single Office 365 tenant to span across multiple Office 365 data center geographic and gives customers the ability to store their Exchange and OneDrive data, at-rest, on a per-user basis, in their chosen Geos.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-Kc1IugDUrE0/WkUg0OisHjI/AAAAAAAAQ58/s-mKBnTV_DIjmWSvTmMn7k8sVxAKrHrhQCLcBGAs/s1600/4.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="803" data-original-width="1483" height="345" src="https://3.bp.blogspot.com/-Kc1IugDUrE0/WkUg0OisHjI/AAAAAAAAQ58/s-mKBnTV_DIjmWSvTmMn7k8sVxAKrHrhQCLcBGAs/s640/4.PNG" width="640" /></a></div>
<br />
Image courtesy of Microsoft<br />
<br />
As you know lot of changes made on Exchange 2013 (Exchange 2016) such as multi-geo support global front-end service and single namespaces , auto-discovery of mailbox location etc.that's why Microsoft first focusing Exchange, OneDrive and SharePoint.<br />
<br />
<h3 style="text-align: left;">
Difference between Single-Geo and Multi-Geo Office 365 </h3>
<h4 style="text-align: left;">
Office 365 Single-Geo</h4>
Office 365 Single-Geo or regular tenant Azure AD account information synchronizes with the Exchange Online account forest which is local to a region, mailbox data is stored in the Exchange Online resource forest which is also local to a region. This is same kind of the Exchange multi-national organization in Exchange on premises.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-87XpJHkSFxQ/WkVGu7oinNI/AAAAAAAAQ6U/MYKc2_TBvpYUfTFRrjLOEgiRap39vqheQCLcBGAs/s1600/6.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="456" data-original-width="748" height="390" src="https://1.bp.blogspot.com/-87XpJHkSFxQ/WkVGu7oinNI/AAAAAAAAQ6U/MYKc2_TBvpYUfTFRrjLOEgiRap39vqheQCLcBGAs/s640/6.PNG" width="640" /></a></div>
Image courtesy of Microsoft<br />
<br />
<h4 style="text-align: left;">
Office 365 Multi-Geo</h4>
When we enabled the Multi-Geo tenant will be hosted in an Exchange Online resource forest for that Geo only. The account will be hosted in cross region account forest which is spans multi geos so that each resource forest can communication direct to Active Directory in local, it will help to reduce the networking issues.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-5iiO02_0VHs/WkVHB9rPWdI/AAAAAAAAQ6Y/bSjN1rhNUGAgVjWTvraoaahonWeqjREIQCLcBGAs/s1600/7.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="461" data-original-width="740" height="398" src="https://4.bp.blogspot.com/-5iiO02_0VHs/WkVHB9rPWdI/AAAAAAAAQ6Y/bSjN1rhNUGAgVjWTvraoaahonWeqjREIQCLcBGAs/s640/7.PNG" width="640" /></a></div>
Image courtesy of Microsoft<br />
<br />
<h3 style="text-align: left;">
Administration Changes for Multi-Geo</h3>
When we first enable the Multi-Geo, there is no changes to location and Microsoft never allow move user data automatically between the regions. We have to enable the region for our tenant that allow the users data to reside in and each user account is configure with the preferred data location (PDL), if there is no preferred data location specified for user account than default to the geo where we first created the tenant.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-qTwLkwOD-nQ/WkVSr4j8bCI/AAAAAAAAQ6o/jJylLTVbmMAqOsa0PwMR0-S9zW-rcY2iACLcBGAs/s1600/3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="510" data-original-width="1091" height="298" src="https://2.bp.blogspot.com/-qTwLkwOD-nQ/WkVSr4j8bCI/AAAAAAAAQ6o/jJylLTVbmMAqOsa0PwMR0-S9zW-rcY2iACLcBGAs/s640/3.PNG" width="640" /></a></div>
Image courtesy of Microsoft<br />
<br />
<br />
if the preferred data location different to the Geo where the user's data is currently located, Microsoft will work to move the mailbox and OnDrive data to preferred location.<br />
Preferred Data Location attribute is available in Azure AD connect V1.1.524.0 or greater for sync PDL data from on-premises to Office 365. We can select the custom attribute 1-15<br />
<br />
<h3 style="text-align: left;">
User Experience-Multi-Geo</h3>
Users are not interrupted by migration of data from one geo to another. A single GAL is available to users in Outlook for entire organization.<br />
<br />
<h3 style="text-align: left;">
Multi-Geo OneDrive Scenario</h3>
<br />
<ul style="text-align: left;">
<li>Unblock global roll out of OneDrives</li>
<li>Manage OneDrives per Geo</li>
<li>Global Office 365 Portal Center </li>
<li>Global People Picker</li>
<li>Shared-With-Me from all geos</li>
<li>Office, NGSC clients Multi-Geo ready</li>
</ul>
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-XHUbrSf_fW0/WkVsDJHVeII/AAAAAAAAQ64/Tifgl2RdHPEY38DhjE6j-CJOgHgtUHR3wCLcBGAs/s1600/8.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="806" data-original-width="1464" height="352" src="https://1.bp.blogspot.com/-XHUbrSf_fW0/WkVsDJHVeII/AAAAAAAAQ64/Tifgl2RdHPEY38DhjE6j-CJOgHgtUHR3wCLcBGAs/s640/8.PNG" width="640" /></a></div>
Image courtesy of Microsoft<br />
<br />
<h3 style="text-align: left;">
Multi-Geo Share Point Scenario</h3>
<br />
<ul style="text-align: left;">
<li>Manage sites and configs per Geo</li>
<li>Sharing policies per Geo</li>
<li>Easily identifiable unique URL per Geo</li>
<li>Data Loss Prevention (DLP) policies per Site</li>
<li>Unified sites discovery across Geos </li>
<li>Aggregated News from across Geos</li>
<li>SharePoint Mobile is Multi-Geo aware </li>
<li>Single aggregated search results from across Geo</li>
<li>Search indexes follow the content</li>
<li>Centralized enterprise managed metadata</li>
</ul>
<br />
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-3QDO4uQEQUg/WkVsTl6N_CI/AAAAAAAAQ68/QKp1BsItEm8f_RRwjy0YaPJR7_4lcA29QCLcBGAs/s1600/9.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="797" data-original-width="1456" height="350" src="https://1.bp.blogspot.com/-3QDO4uQEQUg/WkVsTl6N_CI/AAAAAAAAQ68/QKp1BsItEm8f_RRwjy0YaPJR7_4lcA29QCLcBGAs/s640/9.PNG" width="640" /></a></div>
Image courtesy of Microsoft<br />
<br />
<b>Building on Existing Exchange Online Capabilities</b><br />
<br />
Global from end service and single namespace<br />
Service access via outlook.office.com<br />
<br />
Auto discovery of mailbox location<br />
Outlook automatically connects to mailbox<br />
<br />
Single view of tenant configuration<br />
Recipient information and tenant configuration stored in Exchange directory.<br />
<br />
<br />
<b>Common Concepts for Admin- Office 365 Multi-Geo</b><br />
<br />
AllowedDataLocation<br />
Tenant level property that specifies the allowed geos for Office 365 applications<br />
PreferredDataLocation<br />
User-level property specifying the location of Mailbox and OneDrive.<br />
Configurable using remote PowerShell for cloud-only identities<br />
Azure AD Connect tool<br />
use this tool to configure PreferredDataLocation on synchronized user objects<br />
<div class="MsoNormal">
<br /></div>
<br />
<h3 style="text-align: left;">
Enable Multi-Geo</h3>
Enable multi-geo is three simple steps<br />
<br />
<ul style="text-align: left;">
<li>Enable your Office 365 tenant for Multi-Geo.</li>
<li>Add your satellite locations.</li>
<li>Configure your user accounts for the appropriate location.</li>
</ul>
<br />
<br />
<b>PowerShell</b><br />
<br />
Set the Multi-Geo for a particular services:<br />
<span style="background-color: #999999;"><b><i>Set-MsolCompanyMultiNationalEnabled -ServiceType "Servicetype" -Enable $true</i></b></span><br />
<br />
Adds additional Geos for particular Office 365 services<br />
<span style="background-color: #999999;"><i><b>Set-MsolCompanyAllowedDataLocations -ServiceType "Servicetype" -Location "RegionCode"</b></i></span><br />
<br />
Display Multi-Geo configuration<br />
<span style="background-color: #999999;"><i><b>Get-MsolCompanyAllowedDataLocations</b></i></span><br />
<br />
<h3 style="text-align: left;">
Network Considaration</h3>
<span style="background-color: white;">Multi-Geo will certainly solve data
sovereignty issues for some companies, but it will never give a poor internal
network sparkling performance. </span><br />
<br />
<h3 style="text-align: left;">
Office 365 License</h3>
<div class="MsoNormal">
<span style="background: white; color: #333333; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin;">Licensing is also an unanswered
question. I fully expect Multi-Geo to come at an additional cost to the
existing Office 365 licenses.<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="background: white; color: #333333; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin;"><br /></span></div>
<div class="MsoNormal">
<span style="background: white; color: #333333; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin;"><br /></span></div>
<div class="MsoNormal">
<span style="background: white; color: #333333; mso-bidi-font-family: Calibri; mso-bidi-theme-font: minor-latin;">Microsoft plan to make Multi-Geo
generally available for Exchange Online and OneDrive in the first half of
calendar year 2018.<o:p></o:p></span></div>
<br />
There are lot of other services still in unclear such as Team, Office 365 groups whether they are same function as other services in Multi-Geo office 365.<br />
<br />
<br />
References :<br />
https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Introducing-Multi-Geo-in-Office-365/ba-p/107016<br />
https://myignite.microsoft.com/videos/54705<br />
https://myignite.microsoft.com/videos/55160<br />
https://myignite.microsoft.com/videos/53873<br />
<br />
Thank you!<br />
<br />
Happy Learning!</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-56589006969067700822017-12-26T14:30:00.000-05:002018-01-28T18:27:15.487-05:00SQL AlwaysOn-Skype For Business- II<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="text-align: left;">
In <a href="https://ucservice.blogspot.com/2017/12/sql-alwayson-skype-for-business.html" target="_blank"><b>first post</b></a> we mainly focused on Windows Clustering and configuration, which is the critical part, in this part i will describe SQL installation and configuration in details.</div>
<h3 style="text-align: left;">
Installing SQL Server</h3>
<br />
Mount SQL server ISO or put DVD and launch the SQL server installation center and select "<b>New SQL Server fail-over cluster installation"</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-FaSz2rPqkLM/WkKTBt-ze9I/AAAAAAAAQ28/eE3Aac_dw9MecYCaLIqZCeyHJ6J1FdTpwCLcBGAs/s1600/33.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="581" data-original-width="772" height="300" src="https://1.bp.blogspot.com/-FaSz2rPqkLM/WkKTBt-ze9I/AAAAAAAAQ28/eE3Aac_dw9MecYCaLIqZCeyHJ6J1FdTpwCLcBGAs/s400/33.JPG" width="400" /></a></div>
<br />
SQL Server Setup files will verify the system<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-qaFRnHKfWPY/WkKTI3BWTwI/AAAAAAAAQ3A/HhZcFPzejGcJUkvZRQ_nkmxl2tJkjjTLACLcBGAs/s1600/34.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="288" data-original-width="1009" height="113" src="https://3.bp.blogspot.com/-qaFRnHKfWPY/WkKTI3BWTwI/AAAAAAAAQ3A/HhZcFPzejGcJUkvZRQ_nkmxl2tJkjjTLACLcBGAs/s400/34.JPG" width="400" /></a></div>
<br />
Setup support rules identify problems<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-YfKM2RnR2Nw/WkKTWcozrTI/AAAAAAAAQ3E/-6C4bi73ebIAnwZXebryUiQTYfycdE1bQCLcBGAs/s1600/35.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="597" data-original-width="801" height="297" src="https://4.bp.blogspot.com/-YfKM2RnR2Nw/WkKTWcozrTI/AAAAAAAAQ3E/-6C4bi73ebIAnwZXebryUiQTYfycdE1bQCLcBGAs/s400/35.JPG" width="400" /></a></div>
Here you need to select "SQL Server Feature Installation"<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-oUnLo5Bkqfk/WkKVxkHj2-I/AAAAAAAAQ3Q/p7-oX4thINQkd4lrSrvMBZnc60ruJIxQgCLcBGAs/s1600/36.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="596" data-original-width="813" height="292" src="https://4.bp.blogspot.com/-oUnLo5Bkqfk/WkKVxkHj2-I/AAAAAAAAQ3Q/p7-oX4thINQkd4lrSrvMBZnc60ruJIxQgCLcBGAs/s400/36.JPG" width="400" /></a></div>
<br />
Now we have to select the features<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-yi9Fb9sdIFo/WkKWMYklNpI/AAAAAAAAQ3U/CK3FNvNsHEooAcWcEPrcERP3sp425Uu2gCLcBGAs/s1600/37.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="608" data-original-width="1026" height="236" src="https://2.bp.blogspot.com/-yi9Fb9sdIFo/WkKWMYklNpI/AAAAAAAAQ3U/CK3FNvNsHEooAcWcEPrcERP3sp425Uu2gCLcBGAs/s400/37.JPG" width="400" /></a></div>
Here we have select the instance or default or new instance and Instance root directory<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-FrEXmrwyF0Y/WkKWakhVEuI/AAAAAAAAQ3c/LIFROPDO3HIsSS2M1mtKkeKcHQmUjpSNQCLcBGAs/s1600/38.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="609" data-original-width="1023" height="237" src="https://3.bp.blogspot.com/-FrEXmrwyF0Y/WkKWakhVEuI/AAAAAAAAQ3c/LIFROPDO3HIsSS2M1mtKkeKcHQmUjpSNQCLcBGAs/s400/38.JPG" width="400" /></a></div>
we have select Server Configuration and select authentication mode<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-0GD4MkRwz24/WkKXCrziZ-I/AAAAAAAAQ3k/pFhYCTta6nUAZU0X1XUPOrSReCLTAdF0QCLcBGAs/s1600/39.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="617" data-original-width="1019" height="241" src="https://2.bp.blogspot.com/-0GD4MkRwz24/WkKXCrziZ-I/AAAAAAAAQ3k/pFhYCTta6nUAZU0X1XUPOrSReCLTAdF0QCLcBGAs/s400/39.JPG" width="400" /></a></div>
here is the Installation progress status<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-79WM6ZZ0GTI/WkKXuTbb0bI/AAAAAAAAQ3s/qHuoIfoPWBgExQnrDBinKAyaoTEbpUwvwCLcBGAs/s1600/40.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="611" data-original-width="1022" height="238" src="https://1.bp.blogspot.com/-79WM6ZZ0GTI/WkKXuTbb0bI/AAAAAAAAQ3s/qHuoIfoPWBgExQnrDBinKAyaoTEbpUwvwCLcBGAs/s400/40.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: left;">
Installation has been completed and we can view the reports </div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-vH7qVnW2_N4/WkKYIDTUEtI/AAAAAAAAQ3w/3CveoUB1FR8xUk1T2OpH0ndN1L8dxWpCwCLcBGAs/s1600/41.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="582" data-original-width="809" height="287" src="https://4.bp.blogspot.com/-vH7qVnW2_N4/WkKYIDTUEtI/AAAAAAAAQ3w/3CveoUB1FR8xUk1T2OpH0ndN1L8dxWpCwCLcBGAs/s400/41.JPG" width="400" /></a></div>
<br />
Now Launch SQL Server Configuration Manager >Click <b>SQL Server Services</b> > Right Click <b>SQL Server (Instance Name)</b> > Properties > <b>AlwaysOn High Availability Tab</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-H9XmpmqKEKE/WkKZpTDabjI/AAAAAAAAQ38/03YQra1puQwhs8Bz-cEeh4CZT7TdHoNnACLcBGAs/s1600/42.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="299" data-original-width="998" height="118" src="https://2.bp.blogspot.com/-H9XmpmqKEKE/WkKZpTDabjI/AAAAAAAAQ38/03YQra1puQwhs8Bz-cEeh4CZT7TdHoNnACLcBGAs/s400/42.JPG" width="400" /></a></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-eB0FD4Y5nmY/WkKZtIcqNhI/AAAAAAAAQ4A/MaGcg7HwNtUIz0SHKJC4gcfZo4OK5dpFACLcBGAs/s1600/43.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="493" data-original-width="415" height="400" src="https://4.bp.blogspot.com/-eB0FD4Y5nmY/WkKZtIcqNhI/AAAAAAAAQ4A/MaGcg7HwNtUIz0SHKJC4gcfZo4OK5dpFACLcBGAs/s400/43.JPG" width="336" /></a></div>
Once you select the "<b>Enable AlwaysOn Availability Groups</b>" you will get the warning click "<b>Ok</b>"<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-8r1adqtsxhc/WkKZ1Y9WxtI/AAAAAAAAQ4E/j3uLNxUyVo8gl1ohSc4fQnrVvZkaWduiACLcBGAs/s1600/44.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="493" data-original-width="510" height="386" src="https://2.bp.blogspot.com/-8r1adqtsxhc/WkKZ1Y9WxtI/AAAAAAAAQ4E/j3uLNxUyVo8gl1ohSc4fQnrVvZkaWduiACLcBGAs/s400/44.JPG" width="400" /></a></div>
Time to restart the <b>SQL Server Agent services</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-B8sRL0hNtpw/WkKaKvW_h9I/AAAAAAAAQ4M/lz0hMJ3XIhQLI-h5E5-0qs1UbKsiXQmygCLcBGAs/s1600/45.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="287" data-original-width="618" height="185" src="https://1.bp.blogspot.com/-B8sRL0hNtpw/WkKaKvW_h9I/AAAAAAAAQ4M/lz0hMJ3XIhQLI-h5E5-0qs1UbKsiXQmygCLcBGAs/s400/45.JPG" width="400" /></a></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-umbh7h2iKug/WkKaYgHIvEI/AAAAAAAAQ4Q/FBVbhEaEpJkIdakbbHzE-phHEMNsAwC1QCLcBGAs/s1600/46.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="313" data-original-width="694" height="180" src="https://3.bp.blogspot.com/-umbh7h2iKug/WkKaYgHIvEI/AAAAAAAAQ4Q/FBVbhEaEpJkIdakbbHzE-phHEMNsAwC1QCLcBGAs/s400/46.JPG" width="400" /></a></div>
<br />
<h3 style="text-align: left;">
<br />Skype for Business Deployment</h3>
<br />
We now move on to the deployment process for the Skype for Business Back End Database, as we already completed the All Front End Servers have been built with prerequisites, Skype for business Management Tools are installed and Skype for business topology has not to be defined<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-QAsspUX44l0/WkKducPKt7I/AAAAAAAAQ48/MK_3oWcf8eUNsDni_qInhQ4p5pIF0oZBQCLcBGAs/s1600/new1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="482" data-original-width="640" height="241" src="https://4.bp.blogspot.com/-QAsspUX44l0/WkKducPKt7I/AAAAAAAAQ48/MK_3oWcf8eUNsDni_qInhQ4p5pIF0oZBQCLcBGAs/s320/new1.png" width="320" /></a></div>
Now press New, give the SQL server FQDN and select the Named Instance, in my case it is default<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-YSE1y3MNZMA/WkKdREjXFgI/AAAAAAAAQ44/-jMI6V-YYm87GpJ7qvKA1aNVN3PdJIoFQCLcBGAs/s1600/73.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="549" data-original-width="688" height="255" src="https://1.bp.blogspot.com/-YSE1y3MNZMA/WkKdREjXFgI/AAAAAAAAQ44/-jMI6V-YYm87GpJ7qvKA1aNVN3PdJIoFQCLcBGAs/s320/73.JPG" width="320" /></a></div>
<br />
Click High Availability Settings, now we can see the SQL Server FQDN filed has now changed to SQL Server Availability Group Listener FQDN and specify the primary SQL Server within the SQL Server FQDN field<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-vxaYuTylcWI/WkKfvrqR0gI/AAAAAAAAQ5I/yv3rNiXq3iYD7dTOTWO6xQokXt1NCX0swCLcBGAs/s1600/New2.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="484" data-original-width="509" height="304" src="https://4.bp.blogspot.com/-vxaYuTylcWI/WkKfvrqR0gI/AAAAAAAAQ5I/yv3rNiXq3iYD7dTOTWO6xQokXt1NCX0swCLcBGAs/s320/New2.png" width="320" /></a></div>
<br />
Once complete publish the topology.<br />
<br />
<br />
<h3 style="text-align: left;">
<b>Configure Skype for Business Databases for SQL AlwaysOn Availability Group</b></h3>
Now Launch SQL Server Manager<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-td9qF3Qs44g/WkKahZt_LhI/AAAAAAAAQ4U/BkU88XX2jn4PuSZ3PLBvmmCrVbaI9D18gCLcBGAs/s1600/47.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="424" data-original-width="634" height="267" src="https://4.bp.blogspot.com/-td9qF3Qs44g/WkKahZt_LhI/AAAAAAAAQ4U/BkU88XX2jn4PuSZ3PLBvmmCrVbaI9D18gCLcBGAs/s400/47.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-yFO2TS7LPys/WkKanY6xXZI/AAAAAAAAQ4Y/2h47o7QPH644H-40gzArOIVjUCsHumibACLcBGAs/s1600/48.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="293" data-original-width="456" height="256" src="https://4.bp.blogspot.com/-yFO2TS7LPys/WkKanY6xXZI/AAAAAAAAQ4Y/2h47o7QPH644H-40gzArOIVjUCsHumibACLcBGAs/s400/48.JPG" width="400" /></a></div>
Connect the SQL database and create New Database for high availability<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-sBUttEZuNE4/WkKbcjlyUGI/AAAAAAAAQ4k/dnzKBo2u0ts7mLnx2Nej1xGG3qCWGYtKgCLcBGAs/s1600/49.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="384" data-original-width="582" height="263" src="https://4.bp.blogspot.com/-sBUttEZuNE4/WkKbcjlyUGI/AAAAAAAAQ4k/dnzKBo2u0ts7mLnx2Nej1xGG3qCWGYtKgCLcBGAs/s400/49.JPG" width="400" /></a></div>
Give the Name etc.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-3Mlnz_Zbj7Y/WkKbmwEKu-I/AAAAAAAAQ4o/Silvqh-awxUOcPGfSjQpvWQH35qpyO6IACLcBGAs/s1600/50.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="587" data-original-width="846" height="277" src="https://3.bp.blogspot.com/-3Mlnz_Zbj7Y/WkKbmwEKu-I/AAAAAAAAQ4o/Silvqh-awxUOcPGfSjQpvWQH35qpyO6IACLcBGAs/s400/50.JPG" width="400" /></a></div>
Here you can see the <b>Newly created Database</b>, Right Click and open the properties > Select <b>Option </b>> Change <b>Recovery Model</b> from <b>Simple to Full</b> and repeat the process <b>QoEMetrics</b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-BR1hcdkJrBI/WkKbuNJnwWI/AAAAAAAAQ4s/t7ZG5eDZEaYfNlKmFDNU9xNvpIQc3DrtwCLcBGAs/s1600/51.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="348" data-original-width="593" height="233" src="https://1.bp.blogspot.com/-BR1hcdkJrBI/WkKbuNJnwWI/AAAAAAAAQ4s/t7ZG5eDZEaYfNlKmFDNU9xNvpIQc3DrtwCLcBGAs/s400/51.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Now we need to backup the databases within SQL Management Console, right click the Database SfBTestDB>Task>BackUp</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-SBKJSGN2v3E/WkKhGRkIyVI/AAAAAAAAQ5U/nRdF4au-5XM8bppDYKCW-0Kz2HOlkrMHwCLcBGAs/s1600/52.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="624" data-original-width="741" height="336" src="https://1.bp.blogspot.com/-SBKJSGN2v3E/WkKhGRkIyVI/AAAAAAAAQ5U/nRdF4au-5XM8bppDYKCW-0Kz2HOlkrMHwCLcBGAs/s400/52.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: left;">
Verify the all settings and Click on Ok.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-lKn8rSTao4g/WkKhUEacnsI/AAAAAAAAQ5Y/-jZGBv0gZCItdZsjGA64KVO5mrufljFzACLcBGAs/s1600/53.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="618" data-original-width="699" height="352" src="https://1.bp.blogspot.com/-lKn8rSTao4g/WkKhUEacnsI/AAAAAAAAQ5Y/-jZGBv0gZCItdZsjGA64KVO5mrufljFzACLcBGAs/s400/53.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Here you will get the confirmation</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-zUgxR0NhVNE/WkKhb2GV6gI/AAAAAAAAQ5c/fmar5LJCoT8tPuBtNBxfMu34-zC1SuBkACLcBGAs/s1600/54.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="139" data-original-width="638" height="86" src="https://3.bp.blogspot.com/-zUgxR0NhVNE/WkKhb2GV6gI/AAAAAAAAQ5c/fmar5LJCoT8tPuBtNBxfMu34-zC1SuBkACLcBGAs/s400/54.JPG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
If you have the more Database you have to repeat the same process, here we have completed converting the Database to Full Recovery mode and backed up.</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Next post <a href="https://ucservice.blogspot.com/2018/01/sql-alwayson-skype-for-business-iii.html" target="_blank">Part-III</a> we will start with configure AlwaysOn High availability.</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Thank you!</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Happy Learning!</div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-66737144528498662142017-12-13T17:16:00.001-05:002017-12-13T17:17:11.630-05:00The Windows Component Server-Gui-Mgmt-Infra isn’t installed on this computer-Exchange 2016<div dir="ltr" style="text-align: left;" trbidi="on">
<b>Issue</b><br />
<br />
Error the Windows component Server-Gui-Mgmt-Infra isn't installed on this computer and need to be installed before Exchange Setup can begin.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-JjdGSxuPJTY/WjGhz6wPeGI/AAAAAAAAQ0Y/aQiYazrdjyUcx_gg8jb2JxCkIQmHN-h_ACLcBGAs/s1600/1.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="368" data-original-width="770" height="190" src="https://4.bp.blogspot.com/-JjdGSxuPJTY/WjGhz6wPeGI/AAAAAAAAQ0Y/aQiYazrdjyUcx_gg8jb2JxCkIQmHN-h_ACLcBGAs/s400/1.PNG" width="400" /></a></div>
i tried to install Server-Gui-Mgmt-Infra, but got error<br />
<br />
<em style="background-color: #999999; border: 0px; box-sizing: border-box; color: #393d3f; font-family: "Archivo Narrow", "Helvetica Neue", Helvetica, Arial, sans-serif; font-size: 15px; margin: 0px; padding: 0px; vertical-align: baseline;"><b>Install-WindowsFeature Server-Gui-Mgmt-Infra, Server-Gui-Shell -Restart</b></em><br />
<em style="background-color: #999999; border: 0px; box-sizing: border-box; color: #393d3f; font-family: "Archivo Narrow", "Helvetica Neue", Helvetica, Arial, sans-serif; font-size: 15px; margin: 0px; padding: 0px; vertical-align: baseline;"><b><br /></b></em>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-dxFR_Si-vkg/WjGjMSIcsPI/AAAAAAAAQ0k/vYBXRrNHZx8mbh1tyGCZKa_DGe8v1O7uwCLcBGAs/s1600/5.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="224" data-original-width="849" height="105" src="https://1.bp.blogspot.com/-dxFR_Si-vkg/WjGjMSIcsPI/AAAAAAAAQ0k/vYBXRrNHZx8mbh1tyGCZKa_DGe8v1O7uwCLcBGAs/s400/5.PNG" width="400" /></a></div>
<em style="background-color: #999999; border: 0px; box-sizing: border-box; color: #393d3f; font-family: "Archivo Narrow", "Helvetica Neue", Helvetica, Arial, sans-serif; font-size: 15px; margin: 0px; padding: 0px; vertical-align: baseline;"><b><br /></b></em>
I tried to install pre-requisite checkup, it was showing clean<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-vJUUgQ7nygw/WjGmGtXSSiI/AAAAAAAAQ1A/ow3DkLUTfqUwW-FtD-zAat3vCElEufZYgCLcBGAs/s1600/3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="434" data-original-width="784" height="221" src="https://4.bp.blogspot.com/-vJUUgQ7nygw/WjGmGtXSSiI/AAAAAAAAQ1A/ow3DkLUTfqUwW-FtD-zAat3vCElEufZYgCLcBGAs/s400/3.PNG" width="400" /></a></div>
<br />
<br />
<br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><b>Resolution</b></span></span><br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">If we have other than Windows Server 2016, we need to install manually those features. When you have Windows Server 2016, In Windows Server 2016 it is different and advance inbuilt features. </span></span><br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">Here we have to Cumulative Updates (CU) for Exchange Server 2016, First download the CU and install from <a href="https://www.microsoft.com/en-us/download/details.aspx?id=54450" target="_blank">here</a> </span></span><br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-Wvj1N7mBmYI/WjGlSVg-FlI/AAAAAAAAQ0w/mHrh9n6kiPgVcoKmjIPGawAmQNiTZlyhQCLcBGAs/s1600/6.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="269" data-original-width="819" height="131" src="https://2.bp.blogspot.com/-Wvj1N7mBmYI/WjGlSVg-FlI/AAAAAAAAQ0w/mHrh9n6kiPgVcoKmjIPGawAmQNiTZlyhQCLcBGAs/s400/6.PNG" width="400" /></a></div>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">Once, download complete try again to install Exchange 2016, this time you can see everything is running smooth.</span></span><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-F5G1yRoidEI/WjGl4kEbjHI/AAAAAAAAQ04/ulaYoLBTYF8jfEO7Fr3IIX9UPIPIPEPTACLcBGAs/s1600/4.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="432" data-original-width="761" height="226" src="https://3.bp.blogspot.com/-F5G1yRoidEI/WjGl4kEbjHI/AAAAAAAAQ04/ulaYoLBTYF8jfEO7Fr3IIX9UPIPIPEPTACLcBGAs/s400/4.PNG" width="400" /></a></div>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">Hope it will help you!</span></span><br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">Happy Learning!</span></span><br />
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;"><br /></span></span>
<span style="color: #393d3f; font-family: "archivo narrow" , "helvetica neue" , "helvetica" , "arial" , sans-serif;"><span style="background-color: white; font-size: 15px;">Thank you!</span></span></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-33407239885153425532017-12-01T14:10:00.000-05:002018-01-28T18:27:58.889-05:00SQL AlwaysOn-Skype For Business Part-I<div dir="ltr" style="text-align: left;" trbidi="on">
There are many changes on Skype for Business included high availability such as server pooling, disaster recovery with pool pairing, and several modes of Back End server high availability such as always on availability groups, database mirroring, and SQL fail over clustering.<br />
<br />
High availability referring to make sure that services are available even one or more servers goes down and disaster recovery means keeping services going in the event of a natural or human caused disaster and preserving as much data from before the disaster as possible.<br />
<br />
Skype for business server providing the high availability options in Front End as pool pairing as well as high availability options are in Back End servers such as database mirroring, Always On availability groups, SQL fail over clustering, Always On fail over cluster instances (FCI).<br />
<br />
Worked on a project for Skype for Business deployment with one of mu customer, and want to share my experience through this post. In this post my main focus on configuring the SQL Server AlwaysOn Availability Group for Skype for Business.<br />
<br />
<h3 style="text-align: left;">
Before Starting </h3>
As always we have to go through the prerequisite, following are the recommendation from Microsoft<br />
<br />
<a href="https://technet.microsoft.com/en-us/library/dn951388.aspx" target="_blank">Server requirements for Skype for Business Server 2015</a><br />
<a href="https://technet.microsoft.com/en-us/library/jj205248.aspx" target="_blank"><br /></a>
<a href="https://technet.microsoft.com/en-us/library/jj205248.aspx" target="_blank">Back End Server high availability in Skype for Business Server</a><br />
<br />
<h3 style="text-align: left;">
Windows Failover Clustering</h3>
Following are the recommendation for configuration of the Windows Failover Clustering<br />
<br />
<a href="https://technet.microsoft.com/en-us/library/jj612869(v=ws.11).aspx" target="_blank">Failover Clustering Hardware Requirements and Storage Options</a><br />
<br />
<a href="https://technet.microsoft.com/en-us/library/cc771404(v=ws.11).aspx" target="_blank">Understanding Requirements for Failover Clusters</a><br />
<br />
<h3 style="text-align: left;">
IPs Address and DNS</h3>
<br />
First of all we need to do ensure that our SQL nodes are configured on the customer LAN and domain joined.<br />
<br />
<h3 style="text-align: left;">
<br />SQL AlwaysOn</h3>
Next we need to decide the IP addressing for the SQL availability group, we need IP address for SQL AlwaysOn Group listener and DNS name for SQL AlwaysOn Group listener.<br />
<br />
<br />
<h3 style="text-align: left;">
Service Accounts</h3>
Again we have to follow the best practice to use Active Directory Service Account where possible.<br />
<br />
<br />
<h3 style="text-align: left;">
Network Configuration</h3>
First we have to configure the Network for public and private network card on both SQL servers.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-SeGNMnQvypk/WiGJmCGd5KI/AAAAAAAAQvU/aQjCktjUnmoS7rv9IUA1KcGa75OfIPNAQCLcBGAs/s1600/1.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="456" data-original-width="670" height="271" src="https://3.bp.blogspot.com/-SeGNMnQvypk/WiGJmCGd5KI/AAAAAAAAQvU/aQjCktjUnmoS7rv9IUA1KcGa75OfIPNAQCLcBGAs/s400/1.JPG" width="400" /></a></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-Bhc6fJ_Az44/WiGJ4bunvwI/AAAAAAAAQvY/X5GeTiyHEEUCZZv1Zscz6BlIQY1LEjUjQCLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="199" data-original-width="752" height="105" src="https://4.bp.blogspot.com/-Bhc6fJ_Az44/WiGJ4bunvwI/AAAAAAAAQvY/X5GeTiyHEEUCZZv1Zscz6BlIQY1LEjUjQCLcBGAs/s400/2.JPG" width="400" /></a></div>
<br />
<br />
<h3 style="text-align: left;">
Windows Failover Clustering </h3>
Now time to install the Windows Failover Clustering role on servers, we have two option, first you can run the PowerShell command<br />
<b><br /></b>
<span style="background-color: #cccccc;"><i><b>Install-WindowsFeature Failover-Clustering</b></i></span><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-wahZZ-QipWQ/WiGK57Hi-iI/AAAAAAAAQvg/9g68LIFIcg0QQGKb5GjBOMxqNYfwka69wCLcBGAs/s1600/Capture.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="191" data-original-width="853" height="88" src="https://2.bp.blogspot.com/-wahZZ-QipWQ/WiGK57Hi-iI/AAAAAAAAQvg/9g68LIFIcg0QQGKb5GjBOMxqNYfwka69wCLcBGAs/s400/Capture.PNG" width="400" /></a></div>
<br />
and 2nd option from GUI<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-20A3VF6VUPY/WiGLBli6azI/AAAAAAAAQvk/aBwwHi4XDSsM7LtqX4e-XEu8yK-LJmj3gCLcBGAs/s1600/5.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="523" data-original-width="769" height="271" src="https://2.bp.blogspot.com/-20A3VF6VUPY/WiGLBli6azI/AAAAAAAAQvk/aBwwHi4XDSsM7LtqX4e-XEu8yK-LJmj3gCLcBGAs/s400/5.JPG" width="400" /></a></div>
<br />
Once complete we can see the "<b>Failover Cluster Manager</b>" in server tools<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-IODGJEnunwQ/WiGLLudqx-I/AAAAAAAAQvo/ialtF6vEttgbnHbqrFE-864aLTxa-oM0QCLcBGAs/s1600/9.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="551" data-original-width="994" height="221" src="https://2.bp.blogspot.com/-IODGJEnunwQ/WiGLLudqx-I/AAAAAAAAQvo/ialtF6vEttgbnHbqrFE-864aLTxa-oM0QCLcBGAs/s400/9.JPG" width="400" /></a></div>
<br />
<br />
Now time to create failover cluster, open from console of <b>failover cluster manager</b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-XBFoIhSmn1g/WiGOBmf_q2I/AAAAAAAAQv0/BKCMxET0RB0V-8s5-BBwTev0Vgp_xds3wCLcBGAs/s1600/10.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="610" data-original-width="1007" height="241" src="https://3.bp.blogspot.com/-XBFoIhSmn1g/WiGOBmf_q2I/AAAAAAAAQv0/BKCMxET0RB0V-8s5-BBwTev0Vgp_xds3wCLcBGAs/s400/10.JPG" width="400" /></a></div>
<br />
Select C<b>reate Cluster</b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-dDmVeNqMZBA/WiGOKx1K1iI/AAAAAAAAQv4/h19RK5hteGwXSBhy1lVGuUm1BGG0oGONACLcBGAs/s1600/11.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="275" data-original-width="369" height="297" src="https://3.bp.blogspot.com/-dDmVeNqMZBA/WiGOKx1K1iI/AAAAAAAAQv4/h19RK5hteGwXSBhy1lVGuUm1BGG0oGONACLcBGAs/s400/11.JPG" width="400" /></a></div>
Click Next on <b>Create Cluster Wizard</b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-NKecXxaQic4/WiGOlA5nC2I/AAAAAAAAQwA/67-ABmp3zYokSskxSYvtBtxS7pzvP1TBACLcBGAs/s1600/12.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="449" data-original-width="664" height="270" src="https://2.bp.blogspot.com/-NKecXxaQic4/WiGOlA5nC2I/AAAAAAAAQwA/67-ABmp3zYokSskxSYvtBtxS7pzvP1TBACLcBGAs/s400/12.JPG" width="400" /></a></div>
<br />
Brows the both nodes from Active Directory and click on <b>add</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-9CXS5VBEtiU/WiGOwSwlbeI/AAAAAAAAQwE/vbWdQMuN9nwvYXfklGNjJIyowo71hj5vwCLcBGAs/s1600/13.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="451" data-original-width="673" height="267" src="https://3.bp.blogspot.com/-9CXS5VBEtiU/WiGOwSwlbeI/AAAAAAAAQwE/vbWdQMuN9nwvYXfklGNjJIyowo71hj5vwCLcBGAs/s400/13.JPG" width="400" /></a></div>
<br />
<br />
Next wizard for validating the cluster configuration test before continue, i have selected Yes<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-qrct-InZIKs/WiGO-ePI9bI/AAAAAAAAQwI/55-GZSm0Gok-OZDHqQFTbOoxRcpNHbKhACLcBGAs/s1600/14.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="454" data-original-width="670" height="270" src="https://2.bp.blogspot.com/-qrct-InZIKs/WiGO-ePI9bI/AAAAAAAAQwI/55-GZSm0Gok-OZDHqQFTbOoxRcpNHbKhACLcBGAs/s400/14.JPG" width="400" /></a></div>
<br />
Now it will start validating the configuration<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-gcGj43Vac3I/WiGPXpKI3bI/AAAAAAAAQwQ/mtBE006Ix8kGJ3DLkhgMi8_bfQoWEc0xwCLcBGAs/s1600/15.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="457" data-original-width="668" height="272" src="https://3.bp.blogspot.com/-gcGj43Vac3I/WiGPXpKI3bI/AAAAAAAAQwQ/mtBE006Ix8kGJ3DLkhgMi8_bfQoWEc0xwCLcBGAs/s400/15.JPG" width="400" /></a></div>
<br />
Select "<b>Run all Test</b>"<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-9i6K6Bj2Ig0/WiGPgMTo89I/AAAAAAAAQwY/VeC0bRAi-kAI0DQDLWdyJVwzGnEdIHbogCLcBGAs/s1600/16.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="462" data-original-width="677" height="271" src="https://2.bp.blogspot.com/-9i6K6Bj2Ig0/WiGPgMTo89I/AAAAAAAAQwY/VeC0bRAi-kAI0DQDLWdyJVwzGnEdIHbogCLcBGAs/s400/16.JPG" width="400" /></a></div>
<br />
next wizard ready for test configuration<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-ZsVjjVVFItU/WiGPqrON45I/AAAAAAAAQwc/OwvkU1G30OMRbsGbDxQ9FH3tQtoUvoDVQCLcBGAs/s1600/17.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="459" data-original-width="674" height="271" src="https://2.bp.blogspot.com/-ZsVjjVVFItU/WiGPqrON45I/AAAAAAAAQwc/OwvkU1G30OMRbsGbDxQ9FH3tQtoUvoDVQCLcBGAs/s400/17.JPG" width="400" /></a></div>
<br />
wizard is running for validating the configuration<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-QaYjXvW_4EY/WiGP3W2lfOI/AAAAAAAAQwk/BAi8PYtCF44H3K1RG_GhRKx4kwTfInY8QCLcBGAs/s1600/18.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="461" data-original-width="661" height="278" src="https://4.bp.blogspot.com/-QaYjXvW_4EY/WiGP3W2lfOI/AAAAAAAAQwk/BAi8PYtCF44H3K1RG_GhRKx4kwTfInY8QCLcBGAs/s400/18.JPG" width="400" /></a></div>
<br />
here is the validation report for cluster configuration.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-U4itp1XnLOo/WiGQAWXx3bI/AAAAAAAAQwo/i1ikkTV3EcAlQ5pzQTU6RT6D9a9zcxKZACLcBGAs/s1600/19.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="464" data-original-width="679" height="272" src="https://1.bp.blogspot.com/-U4itp1XnLOo/WiGQAWXx3bI/AAAAAAAAQwo/i1ikkTV3EcAlQ5pzQTU6RT6D9a9zcxKZACLcBGAs/s400/19.JPG" width="400" /></a></div>
<br />
Next wizard you have to give the <b>Cluster IP address</b> and <b>Cluster Name</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-xvRsNBtSIm0/WiGQMNnPtVI/AAAAAAAAQws/rlEgTlB78Mc5XtIFkMtVGrF7ebL4u_vewCLcBGAs/s1600/20.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="453" data-original-width="676" height="267" src="https://1.bp.blogspot.com/-xvRsNBtSIm0/WiGQMNnPtVI/AAAAAAAAQws/rlEgTlB78Mc5XtIFkMtVGrF7ebL4u_vewCLcBGAs/s400/20.JPG" width="400" /></a></div>
<br />
next we have to make sure uncheck on "<b>Add all eligible storage to the cluster"</b> and press Next to continue<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-a1WTdEVorkA/WiGQl3-TspI/AAAAAAAAQw0/ZSKtW5O67xg1DM75w6_3cWwZkD4V8F1HACLcBGAs/s1600/21.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="459" data-original-width="679" height="270" src="https://2.bp.blogspot.com/-a1WTdEVorkA/WiGQl3-TspI/AAAAAAAAQw0/ZSKtW5O67xg1DM75w6_3cWwZkD4V8F1HACLcBGAs/s400/21.JPG" width="400" /></a></div>
<br />
Once Windows Server Failover Cluster now created and we can get the warning regarding Quorum witness, we can ignore now as we will define latter also we can view the report<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-hEX7LS_J98E/WiGRA3RLgRI/AAAAAAAAQw8/UPK6k9Xcz7gw_04KZDWmTsMFoDpl5HDMgCLcBGAs/s1600/22.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="458" data-original-width="675" height="271" src="https://1.bp.blogspot.com/-hEX7LS_J98E/WiGRA3RLgRI/AAAAAAAAQw8/UPK6k9Xcz7gw_04KZDWmTsMFoDpl5HDMgCLcBGAs/s400/22.JPG" width="400" /></a></div>
<br />
Now we can see all the details from Failover Cluster manager Console<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-ir6Z9V73lwo/WiGRl1etntI/AAAAAAAAQxE/Ej-H26ju2MM5SlQi7sAO6AZ_NG5uhFewACLcBGAs/s1600/23.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="453" data-original-width="799" height="226" src="https://2.bp.blogspot.com/-ir6Z9V73lwo/WiGRl1etntI/AAAAAAAAQxE/Ej-H26ju2MM5SlQi7sAO6AZ_NG5uhFewACLcBGAs/s400/23.JPG" width="400" /></a></div>
<br />
Now we have to define the Quorum\Witness folder and permission.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-it6hMKYWwLM/WiGS3bPLMmI/AAAAAAAAQxQ/U7G4_hKkncsAHuULQYr03WQnbpoLs0e-wCLcBGAs/s1600/24.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="488" data-original-width="370" height="400" src="https://4.bp.blogspot.com/-it6hMKYWwLM/WiGS3bPLMmI/AAAAAAAAQxQ/U7G4_hKkncsAHuULQYr03WQnbpoLs0e-wCLcBGAs/s400/24.JPG" width="302" /></a></div>
<br />
Now create the Cluster Quorum from Failover Cluster Manager<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-LrYw9kCiN10/WiGTP3DZWKI/AAAAAAAAQxU/j-lSJ2IlGpgTQGVW8i15EgV__ZvPnyZRACLcBGAs/s1600/25.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="543" data-original-width="812" height="266" src="https://2.bp.blogspot.com/-LrYw9kCiN10/WiGTP3DZWKI/AAAAAAAAQxU/j-lSJ2IlGpgTQGVW8i15EgV__ZvPnyZRACLcBGAs/s400/25.JPG" width="400" /></a></div>
<br />
<br />
Quorum cluster configure wizard will give all details, click Next<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-7Q_Lr6W-nLA/WiGTe75zfSI/AAAAAAAAQxc/okVTWyEENVYIN9YmqRX5QAgKSTyKmERwwCLcBGAs/s1600/26.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="468" data-original-width="665" height="281" src="https://2.bp.blogspot.com/-7Q_Lr6W-nLA/WiGTe75zfSI/AAAAAAAAQxc/okVTWyEENVYIN9YmqRX5QAgKSTyKmERwwCLcBGAs/s400/26.JPG" width="400" /></a></div>
<br />
here we have option to select the Quorum witness<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-BYRR-51BWIQ/WiGT1KDzAlI/AAAAAAAAQxg/DY3-xD5xyRYAT77MNfMB3kTzO69GmioFwCLcBGAs/s1600/27.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="459" data-original-width="668" height="273" src="https://3.bp.blogspot.com/-BYRR-51BWIQ/WiGT1KDzAlI/AAAAAAAAQxg/DY3-xD5xyRYAT77MNfMB3kTzO69GmioFwCLcBGAs/s400/27.JPG" width="400" /></a></div>
next wizard configure the a file share witness<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-LspMJDxSntA/WiGUJKXgncI/AAAAAAAAQxo/S0n2Z2ZUc_cRbdoNPpEGSIY_syYc9KUcACLcBGAs/s1600/28.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="460" data-original-width="673" height="272" src="https://3.bp.blogspot.com/-LspMJDxSntA/WiGUJKXgncI/AAAAAAAAQxo/S0n2Z2ZUc_cRbdoNPpEGSIY_syYc9KUcACLcBGAs/s400/28.JPG" width="400" /></a></div>
<br />
Next brows and select the file share witness<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-TqxoZA-0j2U/WiGUPuqEWQI/AAAAAAAAQxw/RPAIxhMUFfc41SrVOGUsjuSaK9DLd1eywCEwYBhgL/s1600/29.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="410" data-original-width="391" height="400" src="https://2.bp.blogspot.com/-TqxoZA-0j2U/WiGUPuqEWQI/AAAAAAAAQxw/RPAIxhMUFfc41SrVOGUsjuSaK9DLd1eywCEwYBhgL/s400/29.JPG" width="381" /></a></div>
Once we select the path of the file share witness click on Next<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-yae8k7IbEgg/WiGY9zEkqqI/AAAAAAAAQx8/zFsYYNZGj9wNn8YbQV7e_SQM3oUm8jF7QCEwYBhgL/s1600/30.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="469" data-original-width="681" height="275" src="https://3.bp.blogspot.com/-yae8k7IbEgg/WiGY9zEkqqI/AAAAAAAAQx8/zFsYYNZGj9wNn8YbQV7e_SQM3oUm8jF7QCEwYBhgL/s400/30.JPG" width="400" /></a></div>
Now you can see the Cluster Quorum configuration has been completed and we can view the report also.<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-PN18fZFM5Y4/WiGZXfhNGBI/AAAAAAAAQyA/xlwywDTEVUI0-4gL_r1_zi8gEJfL7gwxwCLcBGAs/s1600/31.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="468" data-original-width="681" height="273" src="https://2.bp.blogspot.com/-PN18fZFM5Y4/WiGZXfhNGBI/AAAAAAAAQyA/xlwywDTEVUI0-4gL_r1_zi8gEJfL7gwxwCLcBGAs/s400/31.JPG" width="400" /></a></div>
<br />
Now we can see the both nodes are online from Failover Cluster manager console<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-NTcKOF2Vv90/WiGZolaj0MI/AAAAAAAAQyI/yHOZrF-LgcsmqVia2-H_e1WkS2lf-NjTACLcBGAs/s1600/32.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="193" data-original-width="829" height="92" src="https://4.bp.blogspot.com/-NTcKOF2Vv90/WiGZolaj0MI/AAAAAAAAQyI/yHOZrF-LgcsmqVia2-H_e1WkS2lf-NjTACLcBGAs/s400/32.JPG" width="400" /></a></div>
<br />
<br />
Now we see the completed the installation and configuration of the Windows Failover Cluster, In <a href="https://ucservice.blogspot.com/2017/12/sql-alwayson-skype-for-business-ii.html" target="_blank"><b>next part 2</b></a> we will start SQL installation and configuration.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<br /></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-45925605161016210592017-11-15T13:26:00.003-05:002017-12-12T14:26:43.018-05:00Email Journaling Options- Office 365<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
Using Journal Rules, organizations can keep track of
correspondences. This can be used to ensure quality by implementing journal
rules that catalog all of the email messages sent by the sales staff to anybody
outside the organization.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Journaling help organization respond to legal, regulatory,
and organizational compliance requirements by recording inbound and outbound
email communication.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Before moving forward we have to understand the difference
between Office 365 and Archiving:<o:p></o:p></div>
<div class="MsoNormal">
<b><i>Journaling</i></b> It is record all communications, including email
communications in an organization for use in the organization’s email retention
or archival strategy.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><i>Data Archive</i></b> It is kind of backing up the data, removing it
from its native environment, and storing it elsewhere for reducing the data
storage.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Journal rule scope:<o:p></o:p></div>
<div class="MsoListParagraphCxSpFirst" style="mso-list: l0 level1 lfo1; text-indent: -.25in;">
</div>
<ul style="text-align: left;">
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">Internal messages only</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">External messages only</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">All messages</span></li>
</ul>
<!--[if !supportLists]--><o:p></o:p><br />
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l0 level1 lfo1; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpLast" style="mso-list: l0 level1 lfo1; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b>Journal Recipient</b><o:p></o:p></div>
<div class="MsoNormal">
We can implement journaling rules by specifying the SMTP
address of the recipient or we can apply on all mailboxes for journal. <o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b>Journaling mailbox</b><o:p></o:p></div>
<div class="MsoNormal">
The journaling mailbox is used to collect journal reports.
How you configure the journaling mailbox depends on your organization's
policies, regulatory requirements, and legal requirements. You can specify one
journaling mailbox to collect messages for all the journal rules configured in
the organization, or you can use different journaling mailboxes for different
journal rules or sets of journal rules. <o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Office 365 does not allow to designate a mailbox which is
hosted on Office 365 as a journaling mailbox. <span lang="EN">The only option we have to designate a mailbox which is located in an
On-Prem Exchange server or a third party journaling solutions provider.<o:p></o:p></span></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
In Office 365, a workaround can be used to get this
done by using Mail Flow Rules in Exchange Online. Below steps provide guidance
to implement it on On-premises Journaling solution.<o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<br />
<div class="MsoNormal">
<span lang="EN">First, log
into the Office 365 Portal using the Admin credentials<o:p></o:p></span></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Exchange
Online Admin Center</span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> Mail
Flow section</span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> <strong>Rules</strong></span></span></div>
<div class="MsoNormal">
<span lang="EN"><strong><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;"><br /></span></strong></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-ES7yFOHq-Ac/WgtmUXOIN5I/AAAAAAAAQrQ/pqnVTlliWgMpbSN9pocJiVZaVoz60X1iQCLcBGAs/s1600/1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="595" data-original-width="1201" height="158" src="https://3.bp.blogspot.com/-ES7yFOHq-Ac/WgtmUXOIN5I/AAAAAAAAQrQ/pqnVTlliWgMpbSN9pocJiVZaVoz60X1iQCLcBGAs/s320/1.png" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Once
inside the Mail Flow rules section, click on the <strong>“</strong></span><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 18.0pt; line-height: 107%;">+</span></strong><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">”</span></strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> sign </span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Create a new rule</span></strong></span></div>
<div class="MsoNormal">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-tgbZJYyF6Fo/WgtmXL_dsEI/AAAAAAAAQrU/aniXLfu9zXEpevvXjQvaA0sCb2Gh09M7QCLcBGAs/s1600/2.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="589" data-original-width="920" height="204" src="https://3.bp.blogspot.com/-tgbZJYyF6Fo/WgtmXL_dsEI/AAAAAAAAQrU/aniXLfu9zXEpevvXjQvaA0sCb2Gh09M7QCLcBGAs/s320/2.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Give
the name of the rule</span></strong><strong><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span></strong><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Apply this rule if</span></strong><strong><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span></strong><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> </span></strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">drop
down options select <strong>“the sender is located”</strong>
(option since we want to have all the emails from senders within the
organization to be recorded)</span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">click on <strong>“Select One”</strong> </span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> <strong>“Select Sender Location”</strong>
option box</span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-OqeOJXTQS78/WgtmqHY2YYI/AAAAAAAAQrY/Q9X_XsdHA5gKTxsnMZiplpPZkgA5yLF9gCLcBGAs/s1600/3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="553" data-original-width="703" height="251" src="https://4.bp.blogspot.com/-OqeOJXTQS78/WgtmqHY2YYI/AAAAAAAAQrY/Q9X_XsdHA5gKTxsnMZiplpPZkgA5yLF9gCLcBGAs/s320/3.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Inside
the organization” </span></strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">option
from the drop down menu</span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Click
OK</span></span></div>
<div class="MsoNormal">
<span lang="EN"><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"><br /></span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-w-MeztRz4aU/Wgtm4Dg2HUI/AAAAAAAAQrg/kavtrK0CgJceraGTjbAPkNicsWUTVF52gCLcBGAs/s1600/4.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="566" data-original-width="689" height="262" src="https://4.bp.blogspot.com/-w-MeztRz4aU/Wgtm4Dg2HUI/AAAAAAAAQrg/kavtrK0CgJceraGTjbAPkNicsWUTVF52gCLcBGAs/s320/4.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Next
we have to go to the <strong>“Do the following”</strong>
section and select <strong>“Bcc the message to”</strong>
option from the drop down menu</span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> select the mailbox that you need to Bcc all the
messages which are sent by the sender of the organization. </span></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-WkEt7hL2YZc/WgtnA1JfCGI/AAAAAAAAQrk/1DPf6O07rBwD9eFefqu54i9YfldDyPhtgCLcBGAs/s1600/5.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="605" data-original-width="783" height="247" src="https://3.bp.blogspot.com/-WkEt7hL2YZc/WgtnA1JfCGI/AAAAAAAAQrk/1DPf6O07rBwD9eFefqu54i9YfldDyPhtgCLcBGAs/s320/5.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;">Select
the mailbox created for the journaling purpose name </span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> </span><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> <strong>“OK”</strong></span><strong><span lang="EN" style="font-family: "wingdings"; font-size: 11.0pt; line-height: 107%;">à</span></strong><strong><span lang="EN" style="font-family: "calibri" , sans-serif; font-size: 11.0pt; line-height: 107%;"> Select enforce—Save.</span></strong></span></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-EEP6XWUpG1U/WgtnJFSfSRI/AAAAAAAAQro/NmvuCFV7fKM2xT1MOkTnXWQX7850LLnjQCLcBGAs/s1600/6.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="579" data-original-width="691" height="268" src="https://3.bp.blogspot.com/-EEP6XWUpG1U/WgtnJFSfSRI/AAAAAAAAQro/NmvuCFV7fKM2xT1MOkTnXWQX7850LLnjQCLcBGAs/s320/6.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN"><br /></span></div>
<div class="MsoNormal">
<span lang="EN"></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Now
organization start getting messages Bcc’ed to the mailboxes</span><b><span lang="EN"><o:p></o:p></span></b></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><b>Setting up a Office365 Journaling Mailbox</b></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">If we want to create the dedicated email journaling with in Office365 and all email exchange will forward to this mailbox.</span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Login to <b>Office365 ECP</b></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Go to <b>Setup</b>--> <b>Quick Start</b>--><b>Start</b></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-1jd9Y2MWVCI/WgyCvI1jwmI/AAAAAAAAQr8/bwQMtYaOEqYf9BK3Ei-zKXv5y4ww52z4wCLcBGAs/s1600/7.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="446" data-original-width="583" height="244" src="https://2.bp.blogspot.com/-1jd9Y2MWVCI/WgyCvI1jwmI/AAAAAAAAQr8/bwQMtYaOEqYf9BK3Ei-zKXv5y4ww52z4wCLcBGAs/s320/7.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Choose <b>default domain</b> and click <b>Next</b></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-brr9u3FmUdQ/WgyD3NwrlvI/AAAAAAAAQsE/TlRhsKMoVQ0cHRx-Bf42j6Z6nzWt0qgpQCLcBGAs/s1600/8.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="520" data-original-width="643" height="258" src="https://2.bp.blogspot.com/-brr9u3FmUdQ/WgyD3NwrlvI/AAAAAAAAQsE/TlRhsKMoVQ0cHRx-Bf42j6Z6nzWt0qgpQCLcBGAs/s320/8.PNG" width="320" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
Click <b>Add users and assign licenses</b> and click Next.</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-gGdlGHP2ux8/WgyEFa_E7DI/AAAAAAAAQsI/rSrCWMlnnTAClnNfxNeY3vIZP1Spy_bPACLcBGAs/s1600/9.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="484" data-original-width="693" height="223" src="https://4.bp.blogspot.com/-gGdlGHP2ux8/WgyEFa_E7DI/AAAAAAAAQsI/rSrCWMlnnTAClnNfxNeY3vIZP1Spy_bPACLcBGAs/s320/9.PNG" width="320" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Select Add users </span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-_qcKZANn5CI/WgyESSpLDRI/AAAAAAAAQsM/yjPBpjmuRxcQ5BK-LqbKK2j4QM9xazfKgCLcBGAs/s1600/10.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="582" data-original-width="815" height="228" src="https://2.bp.blogspot.com/-_qcKZANn5CI/WgyESSpLDRI/AAAAAAAAQsM/yjPBpjmuRxcQ5BK-LqbKK2j4QM9xazfKgCLcBGAs/s320/10.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Click on Next </span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-YtDNpL0U2W8/WgyEacwaaOI/AAAAAAAAQsU/OA3epoigR8YiAQCCz3YZlwsAYbMxJDkugCLcBGAs/s1600/11.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="530" data-original-width="840" height="201" src="https://4.bp.blogspot.com/-YtDNpL0U2W8/WgyEacwaaOI/AAAAAAAAQsU/OA3epoigR8YiAQCCz3YZlwsAYbMxJDkugCLcBGAs/s320/11.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Now you can assign the role and click on Next and assign the Licenses <b>Exchange Online Plan1</b>--Click Next</span></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-B4XYgSPvE0c/WgyEka5ya5I/AAAAAAAAQsY/Elkx4TgV1Fg9OtMie4XnI3x1xXvX2Ve2QCLcBGAs/s1600/12.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="475" data-original-width="643" height="236" src="https://1.bp.blogspot.com/-B4XYgSPvE0c/WgyEka5ya5I/AAAAAAAAQsY/Elkx4TgV1Fg9OtMie4XnI3x1xXvX2Ve2QCLcBGAs/s320/12.PNG" width="320" /></a></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;">Next page you can specify the email address where you would like to receive information about the new users and any email temporary passwords, we can add up to five recipients, Next page note the user name and password and click on finish.</span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;"><span lang="EN"></span></span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;">We can make sure the Journal mailboxes should only authorized people have access to them. They may contain sensitive information in them and should never be left open for everyone in the organization.</span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;">References:</span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;">https://technet.microsoft.com/en-us/library/jj898487(v=exchg.150).aspx</span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;">Thank you!</span></div>
<div class="MsoNormal">
<span style="font-family: "calibri" , sans-serif;">Happy Learning...</span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
<div class="MsoNormal">
<span lang="EN" style="font-family: "calibri" , sans-serif;"><br /></span></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-295301515360161732017-11-03T12:53:00.000-04:002017-12-12T14:23:52.252-05:00ActiveSync now working- Exchange 2007 to Exchange 2013- Office 365/Hybrid <div dir="ltr" style="text-align: left;" trbidi="on">
<b>Problem</b><br />
<br />
Issues with ActiveSync, when I configured mailbox on the Exchange 2013 with Activesync it work without any issues, if the mailbox is in Exchange 2007 server than it get failed<br />
<br />
<b>Background</b><br />
<br />
We are working on migration from Exchange 2007 to Office365 hybrid deployment (Exchange 2013), when we tried to move Client Access Server traffic from Exchange 2007 to Exchange 2013 servers, OWA redirect from Exchange 2013 to Exchange 2007 works without any issues. Autodiscover works fine and autoupdated all outlook profiles. But only issues with Activesync. we already have the updated SAN certificate on both environment and updated DNS records.<br />
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
The Client Access Server attempting to proxy has been denied permissions for the “Exchange Web Services Token Serialization” and/or “Exchange Web Services Impersonation” rights which are required for cross-site proxy, including cross-site availability lookups.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
The resolution is to remove the proxying CAS server or their nested group membership from any group that explicitly denies “Exchange Web Services Token Serialization” and “Exchange Web Services Impersonation” to the CAS being proxied to CrossSite CAS. The default list of security groups with explicit Deny permissions are:</div>
<div class="MsoNormal">
Exchange Organization Administrators</div>
<div class="MsoNormal">
Schema Admins</div>
<div class="MsoNormal">
Domain Admins</div>
<div class="MsoNormal">
Enterprise Admins</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
To be sure there are no other groups that have the explicit deny permissions for the needed rights, run the following command to verify all users/groups on the CAS which are denied these permissions:</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="background-color: #999999;"><i>Get-ADPermission -id CrossSiteCAS | where {$_.ExtendedRights -like "ms-Exch-EPI-Impersonation" -or $_.ExtendedRights -like "ms-Exch-EPI-Token-Serialization" -and $_.Deny -like "True"} | ft -autosize User,ExtendedRights</i></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
if any run the this command giving the exchange 2013 mailbox servers rights to the 2007 CAS servers.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="background-color: #999999;"><i>Get-ClientAccessServer -Identity “Exchange2007-CAS01” | Add-ADPermission -Accessrights Extendedright -Extendedrights "ms-Exch-EPI-Token-Serialization" -User "domain\Exchange2013-MBX01$"</i></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Effective permissions for the CAS can also be verified through ADSIEdit.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Go to the configuration container, Services, Microsoft Exchange, Organization, Administrative Groups, Exchange Administrative Group (FYDIBOHF23SPDLT), Servers, <b>CAS</b></div>
<div class="MsoNormal">
<b>Properties</b> > <b>Security Tab</b> > <b>Advanced button </b>> <b>Effective Permissions tab</b></div>
<div class="MsoNormal">
Select... button > <b>object types button</b> > <b>check computers</b> > <b>ok</b> > enter the CAS</div>
<div class="MsoNormal">
Scrolling down the list about one quarter the way, you should find the "Exchange Web Services Impersonation" and "Exchange Web Services Token Serialization" rights.</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b>Solution</b></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Once we run the below command and see there are some deny</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="background-color: #999999;"><i>Get-ADPermission -id CrossSiteCAS | where {$_.ExtendedRights -like "ms-Exch-EPI-Impersonation" -or $_.ExtendedRights -like "ms-Exch-EPI-Token-Serialization" -and $_.Deny -like "True"} | ft -autosize User,ExtendedRights</i></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
We run below command for resolution:</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="background-color: #999999;"><i>Get-ClientAccessServer -Identity “Exchange2007-CAS01” | Add-ADPermission -Accessrights Extendedright -Extendedrights "ms-Exch-EPI-Token-Serialization" -User "domain\Exchange2013-MBX01$"</i></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Thank you!</div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-11989283865506427972017-07-26T16:20:00.001-04:002017-12-12T14:17:33.446-05:00Skype For Business Cloud Connector Edition version 2.0<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal">
<a href="https://www.blogger.com/null" name="_GoBack"></a><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Microsoft released Skype for
business Cloud Connector Edition in April, 2016 for GA. As we know Cloud
Connector Edition makes it possible to connect any existing telephone circuit
to Cloud PBX in Office 365 using the simple server and minimal configuration.
The availability of Skype for Business Cloud Connector Edition comes with
additional capability of on-premises PSTN connectivity for existing Lync
Server/Skype for Business server deployment. That allows the user’s phone
capability to be managed out of Office 365 while their phone call continue to
use their existing phone number, circuits and PSTN provider contract.<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Click here for releases and features of
<a href="https://blogs.technet.microsoft.com/sfbhybridvoice/2017/03/20/skype-for-business-cloud-connector-version-1-4-2-release/" target="_blank">Skype for Business Cloud Connector Edition</a><o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">For <a href="https://www.microsoft.com/en-us/download/details.aspx?id=52963" target="_blank">Download Skype for Business Cloud Connector Edition</a><o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<h3 style="text-align: left;">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Skype for
Business Cloud Connector Edition Version 2.0</span></b></h3>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></b></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Now Microsoft released Skype for Business Cloud Connector
Edition version 2.0, there are multiple improvement are:<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Media
Bypass</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">: </span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif;"><span style="font-size: 10pt;">Media bypass allows a client to send media directly to the
PSTN next hop a gateway /SBC and removed the CCE from the media path, which will
improve the voice quality, minimum latency, possibility of packet loss and
other failure. It will improve the s</span><span style="font-size: 13.3333px;">calability</span><span style="font-size: 10pt;"> and enables a higher number of
concurrent calls. Also it will reduce the load on Cloud Connector.</span></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Click here for how<a href="https://technet.microsoft.com/en-us/library/mt808733" target="_blank"> Media bypass affects media and signalingpath </a><o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><a href="https://technet.microsoft.com/en-us/library/mt808734" target="_blank">Deploying Media bypass </a><o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Support
of 16 Cloud Connector Edition per one PSTN Site</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">: <o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Initial released of Cloud Connector Edition support only 4
instances of CCE are supported per PSTN site, means each Cloud Connector can
support up to 500 simultaneous calls, it means one site can support 1500
simultaneous call/lines (1 instance reserved for HA). The ratio of 1:10 means
we had support for 9000 to 15000 of available line to users.<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Now many organization want to centralize Cloud Connectors in
one location for cost save and the number of the users can exceed 15000 and
need more Cloud Connector instances per site. In new released Cloud Connector
Edition version 2.0 can support 45,000 to 75,000 simultaneous call/lines.<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<b><span style="line-height: 107%;"><span style="font-family: "georgia" , serif;"><span style="font-size: 10pt;">Ability
to manipulate SIP headers for billing or </span><span style="font-size: 13.3333px;">interoperability</span><span style="font-size: 10pt;"> purposes</span></span></span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">:<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Cloud Connector Edition version 2.0 enable manipulate of SIP
header via the INI file. We can manipulate following headers from INI file:<o:p></o:p></span></div>
<div class="MsoNormal">
<i><span style="line-height: 107%;"><span style="font-family: "georgia" , serif;"><span style="font-size: 10pt;">Enable
Fast </span><span style="font-size: 13.3333px;">Fail-over</span><span style="font-size: 10pt;"> Timer</span></span></span></i><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">- Default value is “TRUE” if outbound calls, if
you not answered by the gateway within 10 seconds, call will routed to the next
available gateway, if the no addition trunks than call will dropped, in this
case slow networks and gateway response when the call take more than 10
seconds. Now we need to change the value to “FALSE” same time we have to change
the value from connected SBC or Gateway also.<o:p></o:p></span></div>
<div class="MsoNormal">
<i><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Forward
Call History</span></i><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">: These parameter turn on SIP headers that are
used to report the initial caller in simultaneous ringing, Call forwarding and
Call Transfer scenario, setting the parameters to true will turn on two SIP
headers History-Info & Referred-By.<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<i><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Forward
PAI:</span></i><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">
PAI is a private extension to SIP which enables SIP servers to assert the
identity of authenticated users.<o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Use of
Office 365 Skype for Business account instead of a Global Administrator account</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">: </span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Now any
account of with Skype for Business administrator role to perform management
task, this will help larger organization with many administrator to easily management
to keep secure access rights.<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Auto-generated
passwords for local administrator of Cloud Connector instances</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">: <o:p></o:p></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">No longer required the manually create a password for the
forest administrators. Password for those accounts are generated during the
installation. In initial released of CCE during the deployment, there were two
account created at the forest level and one account for each Domain Account
(VM).<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Hybrid
Voice flag in Mediation Service User Agent to better distinguish Cloud
Connector calls in the Call Quality Dashboard</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"> means when a call is
placed every server or client reports its name in SIP user-Agent header for
diagnostics purposes.<o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">Improvements
to self-monitoring and self-troubleshooting process</span></b><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">:</span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">One of
the critical improvement is self-monitoring and troubleshooting mechanism. New
release added following events, if one of the events outlined above is
detected, the entire instance of the Cloud Connector is drained and marked as
offline:<o:p></o:p></span></div>
<div class="MsoListParagraphCxSpFirst" style="mso-list: l2 level1 lfo1; text-indent: -.25in;">
<!--[if !supportLists]--><span style="font-family: "symbol"; font-size: 10.0pt; line-height: 107%;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"> </span></span><!--[endif]--><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">One or
more Virtual Machines of a Cloud Connector instance are not connected to internal
or internet virtual switch.<o:p></o:p></span></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l2 level1 lfo1; text-indent: -.25in;">
<!--[if !supportLists]--><span style="font-family: "symbol"; font-size: 10.0pt; line-height: 107%;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"> </span></span><!--[endif]--><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">One or
more Virtual Machines of a Cloud Connector instance are in saved or stopped
status.<o:p></o:p></span></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l2 level1 lfo1; text-indent: -.25in;">
<!--[if !supportLists]--><span style="font-family: "symbol"; font-size: 10.0pt; line-height: 107%;">·<span style="font-family: "times new roman"; font-size: 7pt; font-stretch: normal; line-height: normal;"> </span></span><!--[endif]--><span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;">The
following services are not running:<o:p></o:p></span></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l2 level1 lfo1; text-indent: -.25in;">
<br /></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif;"><span style="font-size: 13.3333px;">On Central Management Store Virtual Machine:</span></span></div>
<div class="MsoNormal">
</div>
<ul style="text-align: left;">
<li>Skype for Business Master Replicator Agent</li>
<li>Skype for Business Replica Replicator Agent</li>
</ul>
<br />
<div class="MsoNormal">
<span style="font-family: "georgia" , serif;"><span style="font-size: 13.3333px;">On Mediation Server Virtual Machine:</span></span></div>
<div class="MsoNormal">
</div>
<ul style="text-align: left;">
<li>Skype for Business Replica Replicator Agent</li>
<li>Skype for Business Server Mediation</li>
</ul>
<br />
<div class="MsoNormal">
<span style="font-family: "georgia" , serif;"><span style="font-size: 13.3333px;">On Edge Server Virtual Machine:</span></span></div>
<div class="MsoNormal">
</div>
<ul style="text-align: left;">
<li>Skype for Business Replica Replicator Agent</li>
<li>Skype for Business Server Access Edge</li>
<li>Skype for Business Server Audio/Video Edge</li>
<li>Skype for Business Server Audio/Video Authentication</li>
<li><span style="font-family: "georgia" , serif;">Skype for Business Server Web Conferencing Edge</span><span style="font-family: "georgia" , serif; font-size: 10pt; line-height: 107%;"> </span></li>
</ul>
<br />
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><br /></span></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><a href="https://technet.microsoft.com/library/security/3009008" target="_blank">Disabling SSL 3.0 by default for all services used by CloudConnector Edition</a></span><o:p></o:p></div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
References:<o:p></o:p></div>
<div class="MsoNormal">
<span style="font-family: "georgia" , serif; font-size: 10.0pt; line-height: 107%;"><a href="https://technet.microsoft.com/en-us/library/mt605227.aspx">https://technet.microsoft.com/en-us/library/mt605227.aspx</a><o:p></o:p></span></div>
<div class="MsoNormal">
<br /></div>
<br />
<div class="MsoNormal">
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-58371328189153563332017-06-26T17:03:00.000-04:002017-06-26T17:03:04.187-04:00Password Synchronization- Password Hash Sync -Office365<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal" style="text-align: justify;">
SaaS applications are different, they are not installed on a local machine and don’t have the access to local Active Directory domain controller that’s why SaaS application often use disjoint identity providers and user have to maintain separate username and passwords multiple cloud-based applications. Single Sign-On (SSO) is the common answer to resolving this. SSO is defined as the ability for two disjoint identity provider to trust one another so that as a user can log in IDP and then when trying to access resources secured by the second IDP and not need to log in again. That trust called federation trust.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Office 365 is the one of the popular SaaS application, which has the three identity models for Office 365, and we have to determine the successful Office 365 onboarding is start with the simple identity model that meet organizational needs. Once you finalize the identity model then you have to think another part of the Office 365. Let’s take a look at each one in a brief detail:<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<b>Cloud identity</b>: In this model user is created and managed in Office 365 and store in Azure Active Directory and the password is verified by Azure Active Directory. There are no equivalent user account on-premises.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<b>Synchronized Identity</b>: In this model, the user identity is managed in On-Premises server and the accounts and password hashes are synchronized to the cloud. The user can enter the same password on-premises and in the cloud also, the password is verified by Azure Active Directory. In this model, we need to use sync tool such as AAD, DirSync.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<b>Federated identity</b>: This model requires a synchronized identity but one changes, the user password is verified by the on-premises identity provider. No need to password hash synchronized to Azure Active Directory. We can use Active Directory Federation Services or any third party federation provider.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
In this article I will try to explain the Synchronized Identity (Password Hash Sync), let’s start:<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<b>What is Password Hash Sync<o:p></o:p></b></div>
<div class="MsoNormal" style="text-align: justify;">
We have involved from plain text password storage to hashing a password, to appending salts etc. When a password has been hashed it means it has been turned into a scrambled representation of itself. Password hashing is one of the most basic security considerations that must be made when designing any application that accepts passwords from users, without hashing any password that is stored in your application's database can be stolen if the database is compromised. <o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Hashing is a type of algorithm which takes size of data and turns it into a fixed-length of data. This is often used to ease the retrieval of data as you can shorten large amounts of the data to a shorter string. <o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
Now a question is what is the difference between hashing and encryption, simple is hash is not reversible.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
You cannot directly turn a hashed value into the password, but you can work out what the password is if you continually generate hashes from passwords until you find one that matches a so-called brute-force attack or similar methods.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Following if the workflow for account registration and authentication in a hash-based account system:<o:p></o:p></div>
<div class="MsoListParagraphCxSpFirst" style="mso-list: l0 level1 lfo1; text-align: justify; text-indent: -.25in;">
</div>
<ul>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">The user creates an account.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">Users password is hashed and stored in the database.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">When a </span>user<span style="text-indent: -0.25in;"> tries to log in, the hash of the password they entered is checked against the hash of their real password (retrieve from the Database).</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">If the hashes match, the user is granted access, if the not user will get the message “Invalid login credentials”.</span></li>
</ul>
<!--[if !supportLists]--><o:p></o:p><br />
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l0 level1 lfo1; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l0 level1 lfo1; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpLast" style="mso-list: l0 level1 lfo1; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
When the username or password they got wrong, always give a generic message “Invalid username or password” this will prevent attackers from enumerating valid username without knowing their passwords.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<b>Modern Hashing Algorithms<o:p></o:p></b></div>
<div class="MsoNormal" style="text-align: justify;">
MD-5, SHA-1, SHA-2, SHA-3<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<a href="https://en.wikipedia.org/wiki/Cryptographic_hash_function">https://en.wikipedia.org/wiki/Cryptographic_hash_function</a><o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<b>When & Why use the Password Hash Sync <o:p></o:p></b></div>
<div class="MsoNormal" style="text-align: justify;">
We are using password hash sync because to implement simple then federation service, Microsoft always want to integrate on-premises AD to Azure AD and password hash sync does this without the need for some multiple servers. Password hash sync provides a smooth path for these organizations to move to the cloud. Also, the advantage of password sync is that, unlike a federation, it does not depend upon an external federation service to process authentications. There is only one configuration option to add password hash sync to Directory Sync tool this is done during the configuration wizard and is a small checkbox where we can choose password hashes in addition to the users’ profile attributes. If enabled password hash sync applies to all synchronized users. While a Federation deployments take some efforts due to additional servers and network implementation, on-premises servers also required internet access through any corporate firewalls in a secure way, and they also have to be highly available since logins are not possible if internet connectivity is offline. Password Hash Sync is the feature of directory synchronization it only required a single server with outgoing access to the Internet in order to connect to Azure AD there is no requirement for inbound connections, custom firewall openings or highly available configurations.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-4MG6inumTKU/WVF2Cu40rYI/AAAAAAAAQME/sjccSq6M3YQHtY9wXGshuR2KfbBN8HANgCLcBGAs/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="530" data-original-width="751" height="225" src="https://3.bp.blogspot.com/-4MG6inumTKU/WVF2Cu40rYI/AAAAAAAAQME/sjccSq6M3YQHtY9wXGshuR2KfbBN8HANgCLcBGAs/s320/2.JPG" width="320" /></a></div>
<div class="MsoNormal" style="text-align: justify;">
Photo courtesy of Microsoft</div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<b>How Password Synchronization works<o:p></o:p></b></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoListParagraphCxSpFirst" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
</div>
<ul>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">Every two minute the password sync agent on the DC connect server request stored password hashes from DC with help of the replication protocol (MS-DRSR) to sync the data between the DCs.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">DC encrypts the MD5 hash from DC4 password hash before sending of the RPC session key and a salt. The DC also passes the salt to the synchronization agent by using the DC replication protocol so that agent will decrypt the envelope.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">MD5crryptoServiceProvider and salt to generate a key to decrypt the received data back to its original MD4 format, password synchronization agent does not have the access to the clear text password.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">The Password synchronization agent’s use the MD5 for replication protocol compatibility with the DC and only use on-premises between the DC and the password synchronization agent.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">Password sync agent expands the 16-byte binary password hash to 64 bytes by first converting the hash to a 32-byte hexadecimal string, then converting this string back into binary with UTF-16 encoding.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">Password sync agent adds a salt, consisting of a 10-byte length salt, to the 64-byte binary to further protect the original hash. Then combines the MD4 hash plus salt and input into the PBKDF2 function.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">Password sync agent takes the resulting 32-byte hash, concatenates both the salt and the number of SHA256 iterations to transmits the string from Azure AD Connect to Azure AD over SSL.</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal; text-indent: -0.25in;"> </span><span style="text-indent: -0.25in;">Now when the </span>user<span style="text-indent: -0.25in;"> tries to sign in to Azure AD and give the password, the password is run through the same MD4+Salt+PBKDF2+HMAC-SHA256 process, if the hash matches the hash stored in Azure AD, the user has entered the connect password and is authenticated.</span></li>
</ul>
<!--[if !supportLists]--><o:p></o:p><br />
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="mso-list: l1 level1 lfo2; text-align: justify; text-indent: -.25in;">
<o:p></o:p></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-fRoGHn9fivs/WVF2OJ2rhQI/AAAAAAAAQMI/AsQ8-euVOuIgwduI_-g8wQLEFGVGRoCqgCLcBGAs/s1600/arch3.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="670" data-original-width="1600" height="133" src="https://2.bp.blogspot.com/-fRoGHn9fivs/WVF2OJ2rhQI/AAAAAAAAQMI/AsQ8-euVOuIgwduI_-g8wQLEFGVGRoCqgCLcBGAs/s320/arch3.png" width="320" /></a></div>
<div class="MsoListParagraphCxSpMiddle" style="text-align: justify;">
<o:p> Photo courtesy of Microsoft </o:p></div>
<div class="MsoListParagraphCxSpMiddle" style="text-align: justify;">
<o:p><br /></o:p></div>
<div class="MsoListParagraphCxSpLast" style="text-align: justify;">
<o:p> References:-</o:p></div>
<div class="MsoListParagraphCxSpLast" style="text-align: justify;">
https://docs.microsoft.com/en-us/azure/active-directory/connect/</div>
<div class="MsoListParagraphCxSpLast" style="text-align: justify;">
http://security.blogoverflow.com/2013/09/about-secure-password-hashing/</div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<br />
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-18471304875087703382017-05-25T15:06:00.000-04:002017-12-12T14:27:01.135-05:00Multi-Factor Authentication Setup-Office 365<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="MsoNormal" style="text-align: justify;">
<h3>
<b>What is Multi-Factor Authentication</b></h3>
</div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Two –step verification is a method of authentication that requires more than one verification method and adds a critical second layer of security to user sign-in and transaction. <a href="https://docs.microsoft.com/en-us/azure/multi-factor-authentication/multi-factor-authentication" target="_blank">Azure multi-factor authentication</a> is the method of verifying who you are that requires the use of more than just a username and password. Users are required to acknowledge a phone call, text message, or app notification from their smartphone after entering their passwords and they can only login after second authentication factor has been satisfied.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
There are multiple options for verification methods: <o:p></o:p></div>
<div class="MsoListParagraphCxSpFirst" style="text-align: justify; text-indent: -0.25in;">
</div>
<ul>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">Typical Password</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">Trusted device that is not easily duplicate such as a Phone</span></li>
<li><span style="font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span><span style="text-indent: -0.25in;">Biometrics</span></li>
</ul>
<br />
<o:p></o:p>
<div class="MsoNormal" style="text-align: justify;">
<h3>
<b>Why use Azure Multi-Factor Authentication</b></h3>
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br />
Today, every organization having the facilities to work from anywhere, connected from anywhere and people are increasingly connected with their smartphones, tablets, laptops and PCs, which means they need more security to access the company’s application, email etc. <a href="https://docs.microsoft.com/en-us/azure/multi-factor-authentication/multi-factor-authentication" target="_blank">Azure multi-factor authentication</a> is an easy to use and reliable solution for accessing your emails & applications. Azure multi-factor authentication is very simple to set up and use, it can set up with just a few simple clicks with extra protection to allows users to manage their devices. Azure MFA integrated cloud and on-premises Active Directory and Apps it also good for mission critical scenario. Azure MFA provide strong authentication using highest industry standards.</div>
<div class="MsoNormal" style="text-align: justify;">
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<o:p><br /></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<o:p><br /></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<h3>
<b>How Azure Multi-Factor Authentication Works</b></h3>
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Azure Active Directory is the authentication authority for Office365, this application developed to support MFA use the Active Directory Authentication Library (ADAL) to authenticate to services using <a href="https://www.digitalocean.com/community/tutorials/an-introduction-to-oauth-2" target="_blank"><b>OAuth 2.0</b></a>. OAuth is an open standard for authentication that is supported by many other third party vendors. The client application such as Outlook, OWA use Active Directory Authentication Library(ADAL) to get access to users’ data using the access tokens acquired through the authentication process. Using access tokens means that the applications can continue to access data without having to store or provide user credentials. There is two type of the tokens are used, a refresh token is issued following a successful user authentication. This is the master token that is used to acquire the access tokens necessary to access user data. For example, when the Outlook first connects and authenticates with Office365 a refresh token to get an access token that’s valid for Exchange, the same token is valid across the Office 365. A refresh token lasts two weeks; refresh tokens generate by Azure Active Directory. If you are not using /office 365 the more than two weeks, the refresh tokens with expiring and will need to be reestablished through authentication.<o:p></o:p><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-T7WfHutkLh0/WScnzrCNrpI/AAAAAAAAQEM/vHWyE1HjCqQs8W4iKgpgwk9y9PF25JplQCLcB/s1600/ms.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="544" data-original-width="498" height="400" src="https://1.bp.blogspot.com/-T7WfHutkLh0/WScnzrCNrpI/AAAAAAAAQEM/vHWyE1HjCqQs8W4iKgpgwk9y9PF25JplQCLcB/s400/ms.PNG" width="365" /></a></div>
<div style="text-align: center;">
Photo courtesy of Microsoft</div>
</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div style="text-align: center;">
<iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/FVEJvtZRa3g/0.jpg" frameborder="0" height="266" src="https://www.youtube.com/embed/FVEJvtZRa3g?feature=player_embedded" width="320"></iframe></div>
<div class="MsoNormal" style="text-align: justify;">
<div style="text-align: center;">
<o:p> <a href="https://channel9.msdn.com/Events/TechEd/Europe/2014/EM-B313?ocid=player" target="_blank">Azure Multi-Factor Authentication Deep Dive</a></o:p></div>
</div>
<div class="MsoNormal" style="text-align: justify;">
<o:p><b><br /></b></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<o:p><b><br /></b></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<h3>
<b>Methods available for two-step verification</b></h3>
</div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
When a user signs in, an additional verification is sent to the user. The following are a list of methods that can be used for this second verification.</div>
<div style="text-align: justify;">
<br /></div>
<div style="text-align: justify;">
<div style="text-align: left;">
<i><b>Phone Call</b> </i> </div>
<div style="text-align: left;">
A call is placed to a user’s registered phone asking them to verify that they are signing in by pressing the # sign or entering a PIN. </div>
<div>
<b><i>Text Message</i></b><span class="Apple-tab-span" style="white-space: pre;"> </span></div>
<div>
A text message will be sent to a user’s mobile phone with a six-digit code.Enter this code in to complete the verification process.</div>
<div>
<b><i>Mobile App Notification </i></b></div>
<div>
A verification request is sent to a user’s smartphone asking them to complete the verification by selecting Verify from the mobile app. This will occur if you selected app notification as your primary verification method. Example -<a href="https://ucservice.blogspot.com/2017/04/enable-phone-sign-in-microsoft.html" target="_blank">Phone Sign In -Microsoft Authenticator</a></div>
<div>
<b><i>Mobile app verification code</i></b><span class="Apple-tab-span" style="white-space: pre;"> </span></div>
<div>
The mobile app, which is running on a user’s smartphone, displays a 6-digit verification code that changes every 30 seconds. The user finds the most recent code and enters it on the sign-in page to complete the verification process. This will occur if you selected a verification code as your primary verification method.</div>
<div>
<b><i>3rd party OATH tokens</i></b><span class="Apple-tab-span" style="white-space: pre;"> </span></div>
<div>
Azure Multi-Factor Authentication can be configured to accept 3rd party verification methods.</div>
<div>
<br /></div>
</div>
<div class="MsoNormal" style="text-align: justify;">
<h3>
<br /><b>Set up Multi-Factor Authentication in the Office 365</b></h3>
</div>
<div class="MsoNormal" style="text-align: justify;">
<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Go to the Office 365 admin center.<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
Navigate to Users and select Active Users then click on more option and select Setup <b>Azure multi-factor auth</b>, Your screen should look like one of the following:<o:p></o:p></div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-WBCecUetShM/WSbwIpe5muI/AAAAAAAAQCA/xunYQVQ56SYsvNTKjZbZz-QGAw-EVDpUwCLcB/s1600/5.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="366" data-original-width="838" height="173" src="https://2.bp.blogspot.com/-WBCecUetShM/WSbwIpe5muI/AAAAAAAAQCA/xunYQVQ56SYsvNTKjZbZz-QGAw-EVDpUwCLcB/s400/5.PNG" width="400" /></a></div>
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
Once clicked on <b>Azure multi-factor auth, </b>you will see the all users list</div>
<div class="MsoNormal" style="text-align: justify;">
<br /></div>
<div class="MsoNormal" style="text-align: justify;">
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-Y_5SlfvBtdw/WSbwOWDRKBI/AAAAAAAAQCE/M28o6yYHNm4XEmGI-ITdzYZV7Eg5QfXQgCLcB/s1600/1.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="486" data-original-width="911" height="212" src="https://4.bp.blogspot.com/-Y_5SlfvBtdw/WSbwOWDRKBI/AAAAAAAAQCE/M28o6yYHNm4XEmGI-ITdzYZV7Eg5QfXQgCLcB/s400/1.PNG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Now we need to enable MFA for one particular user, we can search and select user and enabled MFA</div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-uWPUfUPR6kM/WSbw6-EAF1I/AAAAAAAAQCM/SBdXjSy49ZktMDaK36m3np6Pckylw1C7wCLcB/s1600/6.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="522" data-original-width="969" height="215" src="https://3.bp.blogspot.com/-uWPUfUPR6kM/WSbw6-EAF1I/AAAAAAAAQCM/SBdXjSy49ZktMDaK36m3np6Pckylw1C7wCLcB/s400/6.PNG" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
Once click on enable multi-factor auth you will get the confirmation.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-Q-5spu9m_mQ/WSbxRHS309I/AAAAAAAAQCQ/EAdx-ET0L3AyOtsl4wB2zMNae96NL6pQACLcB/s1600/7.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="489" data-original-width="984" height="198" src="https://3.bp.blogspot.com/-Q-5spu9m_mQ/WSbxRHS309I/AAAAAAAAQCQ/EAdx-ET0L3AyOtsl4wB2zMNae96NL6pQACLcB/s400/7.PNG" width="400" /></a></div>
Here you can see the users status<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-Pu2n9coXwko/WSbxeGA17fI/AAAAAAAAQCU/YcUzyuytkO4pFsei0OVL67yFDpp73EZLQCLcB/s1600/8.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="305" data-original-width="733" height="166" src="https://1.bp.blogspot.com/-Pu2n9coXwko/WSbxeGA17fI/AAAAAAAAQCU/YcUzyuytkO4pFsei0OVL67yFDpp73EZLQCLcB/s400/8.PNG" width="400" /></a></div>
Also, you can set the setting from manage user settings<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-nLovJI4Hvz0/WSbxq5CU1bI/AAAAAAAAQCY/dnXy_a0_xksBTSgcBurPxVIaVsM24oXFwCLcB/s1600/2.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="474" data-original-width="968" height="195" src="https://2.bp.blogspot.com/-nLovJI4Hvz0/WSbxq5CU1bI/AAAAAAAAQCY/dnXy_a0_xksBTSgcBurPxVIaVsM24oXFwCLcB/s400/2.PNG" width="400" /></a></div>
<br />
Here are the user's settings for MFA<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-w8qFqpCR4pc/WSbx4A4YFTI/AAAAAAAAQCc/qdFLwRkX3485EFIO9GvZ1zjc8h3dtdCkACLcB/s1600/3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="310" data-original-width="667" height="185" src="https://1.bp.blogspot.com/-w8qFqpCR4pc/WSbx4A4YFTI/AAAAAAAAQCc/qdFLwRkX3485EFIO9GvZ1zjc8h3dtdCkACLcB/s400/3.PNG" width="400" /></a></div>
<br />
Also, you can set the service settings<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-N0vDAiii3GE/WSbx-82bpHI/AAAAAAAAQCg/VmNmFHNbcw8J013FLNJDCdEzbwAYzfMcACLcB/s1600/4.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="498" data-original-width="588" height="338" src="https://1.bp.blogspot.com/-N0vDAiii3GE/WSbx-82bpHI/AAAAAAAAQCg/VmNmFHNbcw8J013FLNJDCdEzbwAYzfMcACLcB/s400/4.PNG" width="400" /></a></div>
<br />
Now time to log in with account, we have given the account<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-gePrbF44fV0/WSbz_1UWzGI/AAAAAAAAQCw/8_IQyJthE8IziGJ6JI528hkAwsQIgJ1OQCLcB/s1600/9.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="459" data-original-width="504" height="291" src="https://3.bp.blogspot.com/-gePrbF44fV0/WSbz_1UWzGI/AAAAAAAAQCw/8_IQyJthE8IziGJ6JI528hkAwsQIgJ1OQCLcB/s320/9.PNG" width="320" /></a></div>
<br />
Now here you can see asking for security verification and click on setup<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-dUp2Hxfx7FA/WSb0HgE5XHI/AAAAAAAAQC0/XJVsOk3wm8wfUsptLeP0uHl7EGl1aMLjwCLcB/s1600/10.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="749" data-original-width="782" height="306" src="https://3.bp.blogspot.com/-dUp2Hxfx7FA/WSb0HgE5XHI/AAAAAAAAQC0/XJVsOk3wm8wfUsptLeP0uHl7EGl1aMLjwCLcB/s320/10.PNG" width="320" /></a></div>
Now set the additional security verification<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-wlmc_oaf3dY/WSb0d-20v6I/AAAAAAAAQC4/yfE5XCyPQwc1Ioil39IwBgGcWUsChdBSwCLcB/s1600/11.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="410" data-original-width="842" height="193" src="https://2.bp.blogspot.com/-wlmc_oaf3dY/WSb0d-20v6I/AAAAAAAAQC4/yfE5XCyPQwc1Ioil39IwBgGcWUsChdBSwCLcB/s400/11.PNG" width="400" /></a></div>
<br />
Set up the Phone Authentication preferences<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-iQhrtuld56o/WSb09FE9eXI/AAAAAAAAQDA/AcYHiA9UcqoSJJINO2K88TK0p37ztyMKgCLcB/s1600/12.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="409" data-original-width="851" height="191" src="https://3.bp.blogspot.com/-iQhrtuld56o/WSb09FE9eXI/AAAAAAAAQDA/AcYHiA9UcqoSJJINO2K88TK0p37ztyMKgCLcB/s400/12.PNG" width="400" /></a></div>
<br />
Set up the Office Phone Authentication preferences<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-Dgvx5HZDLtQ/WSb1HUQG3uI/AAAAAAAAQDE/G47DTNoOviQ6qiM1r1VRF86D7EvVSmOaQCLcB/s1600/13.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="380" data-original-width="854" height="177" src="https://3.bp.blogspot.com/-Dgvx5HZDLtQ/WSb1HUQG3uI/AAAAAAAAQDE/G47DTNoOviQ6qiM1r1VRF86D7EvVSmOaQCLcB/s400/13.PNG" width="400" /></a></div>
<br />
Here you can set up Mobile App notification if you want<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-eEU-i_JqENo/WSb1PD4AXfI/AAAAAAAAQDI/-NzvlQjeTXQqMLEawXzN27gSmyvVvusnwCLcB/s1600/14.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="325" data-original-width="820" height="157" src="https://1.bp.blogspot.com/-eEU-i_JqENo/WSb1PD4AXfI/AAAAAAAAQDI/-NzvlQjeTXQqMLEawXzN27gSmyvVvusnwCLcB/s400/14.PNG" width="400" /></a></div>
Now set the additional security verification and set the phone number whare you will get text or call, as I choose the "<i>Authentication Phone"</i> number<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-aWXwoRVyd7k/WSb1kZTyiVI/AAAAAAAAQDM/vailvATZb8clyLSPfsdaWsovEVjefAGDwCLcB/s1600/15.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="360" data-original-width="840" height="171" src="https://3.bp.blogspot.com/-aWXwoRVyd7k/WSb1kZTyiVI/AAAAAAAAQDM/vailvATZb8clyLSPfsdaWsovEVjefAGDwCLcB/s400/15.PNG" width="400" /></a></div>
<br />
Now you can see the text message has been sent to selected mobile number<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-QxgiCA0-osQ/WSb12WJ3gDI/AAAAAAAAQDQ/Y_zgn2lEa5YJ-iNUvaHTs3VRvh7CzfVEACLcB/s1600/16.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="373" data-original-width="838" height="177" src="https://1.bp.blogspot.com/-QxgiCA0-osQ/WSb12WJ3gDI/AAAAAAAAQDQ/Y_zgn2lEa5YJ-iNUvaHTs3VRvh7CzfVEACLcB/s400/16.PNG" width="400" /></a></div>
<br />
Now you can see the app password has been received<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-59wAHizj0w4/WSb2A3O_ZrI/AAAAAAAAQDU/EbIppnTF0n0XiEf0ivSlVHcBD611uLHdwCLcB/s1600/17.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="389" data-original-width="848" height="182" src="https://3.bp.blogspot.com/-59wAHizj0w4/WSb2A3O_ZrI/AAAAAAAAQDU/EbIppnTF0n0XiEf0ivSlVHcBD611uLHdwCLcB/s400/17.PNG" width="400" /></a></div>
Once we set up the security, now this will be my login page, where I have to put the verification code<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-b6bdZYgLWmo/WSb5FIv8QgI/AAAAAAAAQDk/d1EagiRvHYU4hxPFcO9H3WLjLQrrjh5GACLcB/s1600/123016_1157_MultiFactor19.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="578" data-original-width="443" height="400" src="https://4.bp.blogspot.com/-b6bdZYgLWmo/WSb5FIv8QgI/AAAAAAAAQDk/d1EagiRvHYU4hxPFcO9H3WLjLQrrjh5GACLcB/s400/123016_1157_MultiFactor19.png" width="306" /></a></div>
<br />
<br />
We can also verify via <b>Power Shell</b><br />
<br />
<span style="background-color: #cccccc;"><i>C:\>Import-module msonline</i></span><br />
<span style="background-color: #cccccc;"><i>C:\>Connect-MSolService</i></span><br />
<br />
We will get the following log in windows<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-ojEmyOytTOc/WSb6cd5V_yI/AAAAAAAAQDs/rmjc-rD_CFI72eLPwAHnidMeBCBpMCmUwCLcB/s1600/18.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="619" data-original-width="539" height="400" src="https://2.bp.blogspot.com/-ojEmyOytTOc/WSb6cd5V_yI/AAAAAAAAQDs/rmjc-rD_CFI72eLPwAHnidMeBCBpMCmUwCLcB/s400/18.PNG" width="347" /></a></div>
Here we will get the got the verification code and after entering the verification code we logged in<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-GKt8ag0vev8/WSb6gaN6mhI/AAAAAAAAQD0/TToCISrhS14S4k3Byzd4LAh5u7fcjVJAACLcB/s1600/19.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="632" data-original-width="539" height="400" src="https://2.bp.blogspot.com/-GKt8ag0vev8/WSb6gaN6mhI/AAAAAAAAQD0/TToCISrhS14S4k3Byzd4LAh5u7fcjVJAACLcB/s400/19.PNG" width="340" /></a></div>
<br />
<br />
<br />
There are three versions of multi-factor authentication:<br />
<br />
<ul>
<li>Multi-Factor Authentication for Office 365</li>
<li>Multi-Factor Authentication for Azure Administrators</li>
<li>Azure Multi-Factor Authentication</li>
</ul>
<br />
<br />
<a href="https://docs.microsoft.com/en-us/azure/multi-factor-authentication/multi-factor-authentication-versions-plans" target="_blank">here is the feature comparison of versions</a><br />
<br />
Azure Multi-Factor Authentication provides selectable verification methods for both cloud and on-premises.<br />
<div>
<br /></div>
<div>
Happy Learning!</div>
<div>
<br /></div>
<div>
Thank you!</div>
<div>
<br /></div>
</div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-8468095363744416642017-05-03T13:03:00.003-04:002017-12-12T14:27:13.724-05:00Disable E-mail Signature changes in Outlook Web App-Office 365<div dir="ltr" style="text-align: left;" trbidi="on">
After the migration of mailboxes into cloud i was checking the disclaimer Cloud and found that by default the end-user has the ability to configure signatures and kind of messes up an e-mail signature solution. And my customer want to disable this feature. Now we do have option to disable such feature of OWA, we can also disable signature on the Outlook client using Group Policies.<br />
<br />
<br />
<b>Workaround:</b><br />
<br />
Logged on the EAC (Exchange Admin Center), click on permissions, and then click on Outlook Web App policies.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-YwBnM0ruso8/WQoMLv69lyI/AAAAAAAAP_8/tTxX89Bg_6oKZAR87XibjGVnoSaR-cRUgCLcB/s1600/2.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="200" src="https://3.bp.blogspot.com/-YwBnM0ruso8/WQoMLv69lyI/AAAAAAAAP_8/tTxX89Bg_6oKZAR87XibjGVnoSaR-cRUgCLcB/s400/2.JPG" width="400" /></a></div>
<br />
<br />
<br />
Double click on Outlook Web App policies than features and you can see the default Email Signature is checked<br />
<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-Nw6gd0esfSc/WQoMWIVuYOI/AAAAAAAAQAA/G2wqg8dgkxU9uulgKQwaanJZ1WU94uCggCLcB/s1600/3.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://3.bp.blogspot.com/-Nw6gd0esfSc/WQoMWIVuYOI/AAAAAAAAQAA/G2wqg8dgkxU9uulgKQwaanJZ1WU94uCggCLcB/s400/3.JPG" width="386" /></a></div>
<br />
Now time to disable the "Email signature" just unchecked the option.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-b7IuOJKn9po/WQoMrDouTAI/AAAAAAAAQAE/bbSDvQ9-lFIVPeYOzKbHfJCP4tcTm0QDQCLcB/s1600/4.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="362" src="https://3.bp.blogspot.com/-b7IuOJKn9po/WQoMrDouTAI/AAAAAAAAQAE/bbSDvQ9-lFIVPeYOzKbHfJCP4tcTm0QDQCLcB/s400/4.JPG" width="400" /></a></div>
<br />
<br />
Now user does not have the option to configure the email signature.<br />
<br />
Thank you!<br />
<br />
Happy Learning!</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-59412250852277408972017-04-20T14:58:00.001-04:002017-12-12T14:15:06.369-05:00Enable Phone Sign In -Microsoft Authenticator<div dir="ltr" style="text-align: left;" trbidi="on">
Recently, Alex Simons has blogged on "<a href="https://blogs.technet.microsoft.com/enterprisemobility/2017/04/18/no-password-phone-sign-in-for-microsoft-accounts/" target="_blank">No password, phone sign in for Microsoft accounts</a>". This a great enhancement in Microsoft second factor or "no password" technology.<br />
<br />
With phone sign-in, Microsoft shifting the security burden from our memory to our device. Just add our account to the Android or iOS Microsoft Authenticator app, then enter our username as usual when signing in somewhere new. Instead of entering our password, we’ll get a notification on our phone. Unlock our phone, tap “Approve”, and we’re in.<br />
<br />
This process is easier than standard two-step verification and significantly more secure than only a password, which can be forgotten, phished, or compromised. Using your phone to sign in with PIN or fingerprint is a seamless way to incorporate two account “proofs” in a way that feels natural and familiar.<br />
<br />
There are a few things you need to consider to complete "phone sign" option.<br />
<br />
First download Microsoft Authenticator app from store than configured for personal account, you will see an option from the drop-down menu to select Enable phone sign-in.<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<br />
If you don't configure or add your Microsoft account in your Authenticator App, you don't see a "use the Microsoft Authenticator app instead" option. Instead, you will have only see the password sign-in option as shown below:<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-WR6NMqy4H5M/WPj_OQar7wI/AAAAAAAAP-M/bHistuL4ipYnAZxLgvEdIs4RZchxlwVMACEw/s1600/image1.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://2.bp.blogspot.com/-WR6NMqy4H5M/WPj_OQar7wI/AAAAAAAAP-M/bHistuL4ipYnAZxLgvEdIs4RZchxlwVMACEw/s400/image1.PNG" width="225" /></a></div>
<br />
<br />
You will see the following verification message on your login screen and on your mobile device.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-_atgAOX17zk/WPj_WqT9xSI/AAAAAAAAP-Q/8SMkRGWaBmIgerLIqWikGEKnUhv6ddj8gCLcB/s1600/image2.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://3.bp.blogspot.com/-_atgAOX17zk/WPj_WqT9xSI/AAAAAAAAP-Q/8SMkRGWaBmIgerLIqWikGEKnUhv6ddj8gCLcB/s400/image2.PNG" width="225" /></a></div>
<br />
Open your Microsoft account and click on next<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-hMM6hpbi_Ag/WPj_nwSG0UI/AAAAAAAAP-U/SG5YJWcIocYXNNQnY6mHFQ2YypKV0UZtwCLcB/s1600/2.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="283" src="https://1.bp.blogspot.com/-hMM6hpbi_Ag/WPj_nwSG0UI/AAAAAAAAP-U/SG5YJWcIocYXNNQnY6mHFQ2YypKV0UZtwCLcB/s400/2.PNG" width="400" /></a></div>
<br />
Now you will see the option "Use the Microsoft Authenticator app instead", once you click you will get<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-ZeF90dNsNI4/WPj_8_PJ6nI/AAAAAAAAP-c/aAsuV8hpZ0gOTDhymlxwmteDqublkWkCwCLcB/s1600/1.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://2.bp.blogspot.com/-ZeF90dNsNI4/WPj_8_PJ6nI/AAAAAAAAP-c/aAsuV8hpZ0gOTDhymlxwmteDqublkWkCwCLcB/s320/1.PNG" width="271" /></a></div>
You can also copy the code<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-zNyI72czszo/WPkA1vdQCpI/AAAAAAAAP-o/nFw2qXstshgX3Ioq5iWWbDbCulzrMyMPACLcB/s1600/image12.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://3.bp.blogspot.com/-zNyI72czszo/WPkA1vdQCpI/AAAAAAAAP-o/nFw2qXstshgX3Ioq5iWWbDbCulzrMyMPACLcB/s400/image12.PNG" width="225" /></a></div>
<br />
<br />
Once click "Use the Microsoft Authenticator app instead" you will get following option "Deny" or "Approve"<br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-DbjvcOo2fTg/WPkAXY-YrzI/AAAAAAAAP-g/yzFxzcINZ6A2hyaNmV9enfmtRiSCyaMrACLcB/s1600/Service%2BPortal.lnk.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://2.bp.blogspot.com/-DbjvcOo2fTg/WPkAXY-YrzI/AAAAAAAAP-g/yzFxzcINZ6A2hyaNmV9enfmtRiSCyaMrACLcB/s400/Service%2BPortal.lnk.PNG" width="225" /></a></div>
<br />
Once approve you have to open your phone<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-7nqwsHoJiyE/WPkArcb5iiI/AAAAAAAAP-k/W5jiAV-JlwIGIiVEOusKqHZOCZV691q6ACLcB/s1600/image3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://3.bp.blogspot.com/-7nqwsHoJiyE/WPkArcb5iiI/AAAAAAAAP-k/W5jiAV-JlwIGIiVEOusKqHZOCZV691q6ACLcB/s400/image3.PNG" width="225" /></a></div>
once approve we are in in my emails<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-b_nt6htKrS4/WPkA-G3-e-I/AAAAAAAAP-s/GzGnfzByOO4bpRq3Kw4bTvmIaiX0GoHQACLcB/s1600/3.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="40" src="https://4.bp.blogspot.com/-b_nt6htKrS4/WPkA-G3-e-I/AAAAAAAAP-s/GzGnfzByOO4bpRq3Kw4bTvmIaiX0GoHQACLcB/s400/3.PNG" width="400" /></a></div>
<br />
<br />
But you don't see this option If you are adding a new Microsoft account on an iPhone. Microsoft will automatically set it up for you by default. So add your Microsoft Account and login to a Microsoft service using this account. You will see an additional "password less".<br />
<div>
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-34194775467215147712017-04-20T13:50:00.002-04:002017-12-12T14:27:35.583-05:00TimeZone /Regional Settings for Shared Mailboxes in Office 365<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif;"><span style="font-size: 14px;">During the migration to Office 365, I was working with one of the user to correct the issue of time zone of shared mailboxes. I noticed the time was off by a few hours when accessing some shared mailboxes in Office 365 using Outlook Web App (OWA). It was set to Microsoft’s default—Pacific Standard Time.</span></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;">If you access the shared mailboxes using the desktop version of Outlook (2010, 2013 or 2016), this typically won’t be a problem as the desktop version of Outlook will simply use your PC’s regional settings. However, for various reasons, the desktop version of Outlook may not be an option.</span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><b>OWA Timezone Settings for User Mailboxes in Office 365</b></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;">By default when we logs into the OWA for first time, it will give us option to set the regional settings by choosing the default language and time zone, also we can change from Settings -->Mail -->General and select the time zone.</span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><b>OWA Timezone Settings for Shared Mailboxes in Office 365</b></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif;"><span style="font-size: 14px;">In Shared mailboxes work a little differently. We are not log directly into a shared mailbox as there is no user associated with one. If we have the requisite permissions to access a shared mailbox, we could open it in OWA to set the regional settings for it. The process is a little more involved than if you were opening your own mailbox for the first time.</span></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<b style="color: #3a3a3a; font-family: Arial, sans-serif; font-size: 14px;">Configure Timezone Settings for Shared mailboxes in Office 365 using OWA</b></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif;"><span style="font-size: 14px;">To manually configure region and timezone settings for a shared mailbox via OWA, simply log into OWA as yourself, click your avatar and select Open another mailbox. Enter the shared mailbox name and click Open. From here, go to Options and select Mail from the navigation pane on the right. Select General from the navigation pane on the left, and click Region and timezone. Make any applicable changes to your language, date format, time format and/or timezone settings, then click Save.</span></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><b>Using PowerShell</b></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>For <b>all shared mailboxes</b></i></span></div>
<div style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; margin: 0in 0in 0.25in;">
<span style="background-color: #cccccc; color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>Get-Mailbox –RecipientTypeDetails SharedMailbox | Set-MailboxRegionalConfiguration –Language “en-US” –TimeZone “Central Standard Time” –DateFormat “M/d/yyyy” –TimeFormat “h:mm tt”</i></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>For<b> a single shared or user mailbox</b></i></span></div>
<div style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; margin: 0in 0in 0.25in;">
<span style="background-color: #cccccc; color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>Get-Mailbox –Identity sharedmailbox@Domain.com | Set-MailboxRegionalConfiguration –Language “en-US” –TimeZone “Central Standard Time” –DateFormat “M/d/yyyy” –TimeFormat “h:mm tt”</i></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>For<b> all mailboxes</b></i></span></div>
<div style="background-attachment: initial; background-clip: initial; background-image: initial; background-origin: initial; background-position: initial; background-repeat: initial; background-size: initial; margin: 0in 0in 0.25in;">
<span style="background-color: #cccccc; color: #3a3a3a; font-family: "arial" , sans-serif; font-size: 14px;"><i>Get-Mailbox | Set-MailboxRegionalConfiguration –Language “en-US” –TimeZone “Central Standard Time” –DateFormat “M/d/yyyy” –TimeFormat “h:mm tt”</i></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<span style="color: #3a3a3a; font-family: "arial" , sans-serif;"><span style="font-size: 14px;"><br /></span></span></div>
<div style="background: white; margin-bottom: .25in; margin-left: 0in; margin-right: 0in; margin-top: 0in;">
<br /></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-19864779282885573122017-04-18T15:09:00.001-04:002017-04-18T15:09:20.329-04:00AAD Connect Version 1.1.484.0 Released<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; color: #444444; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-stretch: normal; line-height: normal; margin: 0px; position: relative; text-align: left;">
<span style="font-weight: normal;">Azure Active Directory Connect version 1.1.484.0 has been released, which includes several fixes and service account improvements. It also simplifies the port architecture required during the setup of Pass-Through Authentication.</span></div>
<div class="post-body entry-content" id="post-body-4327797262524312520" itemprop="articleBody" style="background-color: white; color: #444444; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 15.84px; line-height: 1.3; position: relative; width: 938px;">
<div class="tr_bq">
<br /></div>
<div class="tr_bq">
Proper directory synchronization is key to a healthy hybrid environment, so it's important to keep on top of upgrades to your directory synchronization infrastructure.</div>
</div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<b><span style="color: #222222; font-family: "Helvetica",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";"><br /></span></b></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<b><span style="color: #222222; font-family: "Helvetica",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Known issues:</span></b><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";"><o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l1 level1 lfo1; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">This version of Azure
AD Connect will not install successfully if the following conditions are all
true:<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 57.0pt; mso-list: l1 level2 lfo1; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Segoe UI";">1.<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">You are performing either DirSync in-place
upgrade or fresh installation of Azure AD Connect.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 57.0pt; mso-list: l1 level2 lfo1; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Segoe UI";">2.<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">You are using a localized version of Windows
Server where the name of built-in Administrator group on the server isn't
"Administrators".<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 57.0pt; mso-list: l1 level2 lfo1; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Segoe UI";">3.<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">You are using the default SQL Server 2012
Express LocalDB installed with Azure AD Connect instead of providing your own
full SQL.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<b><span style="color: #222222; font-family: "Helvetica",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed issues:</span></b><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";"><o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Azure AD Connect sync<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue where
the sync scheduler skips the entire sync step if one or more connectors are
missing run profile for that sync step. For example, you manually added a
connector using the Synchronization Service Manager without creating a Delta
Import run profile for it. This fix ensures that the sync scheduler continues
to run Delta Import for other connectors.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue where
the Synchronization Service immediately stops processing a run profile when it
is encounters an issue with one of the run steps. This fix ensures that the
Synchronization Service skips that run step and continues to process the rest.
For example, you have a Delta Import run profile for your AD connector with
multiple run steps (one for each on-premises AD domain). The Synchronization
Service will run Delta Import with the other AD domains even if one of them has
network connectivity issues.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue that
causes the Azure AD Connector update to be skipped during Automatic Upgrade.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue that
causes Azure AD Connect to incorrectly determine whether the server is a domain
controller during setup, which in turn causes DirSync upgrade to fail.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue that
causes DirSync in-place upgrade to not create any run profile for the Azure AD
Connector.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l5 level1 lfo2; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue where
the Synchronization Service Manager user interface becomes unresponsive when
trying to configure Generic LDAP Connector.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">AD FS management<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l2 level1 lfo3; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue where
the Azure AD Connect wizard fails if the AD FS primary node has been moved to
another server.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Desktop SSO<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l3 level1 lfo4; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Fixed an issue in the
Azure AD Connect wizard where the Sign-In screen does not let you enable
Desktop SSO feature if you chose Password Synchronization as your Sign-In
option during new installation.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<b><span style="color: #222222; font-family: "Helvetica",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">New features/improvements:</span></b><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";"><o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Azure AD Connect sync<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Azure AD Connect Sync
now supports the use of Virtual Service Account, Managed Service Account and
Group Managed Service Account as its service account. This applies to new
installation of Azure AD Connect only. When installing Azure AD Connect:<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 43.5pt; mso-list: l0 level2 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Courier New"; font-size: 10.0pt; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: "Courier New";">o<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">By default, Azure AD Connect wizard will
create a Virtual Service Account and uses it as its service account.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 43.5pt; mso-list: l0 level2 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Courier New"; font-size: 10.0pt; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: "Courier New";">o<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">If you are installing on a domain controller,
Azure AD Connect falls back to previous behavior where it will create a domain
user account and uses it as its service account instead.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 43.5pt; mso-list: l0 level2 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.0in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: "Courier New"; font-size: 10.0pt; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: "Courier New";">o<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">You can override the default behavior by
providing one of the following:<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 58.5pt; mso-list: l0 level3 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Wingdings; font-size: 10.0pt; mso-bidi-font-family: Wingdings; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Wingdings;">§<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">A Group Managed Service Account<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 58.5pt; mso-list: l0 level3 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Wingdings; font-size: 10.0pt; mso-bidi-font-family: Wingdings; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Wingdings;">§<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">A Managed Service Account<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 58.5pt; mso-list: l0 level3 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Wingdings; font-size: 10.0pt; mso-bidi-font-family: Wingdings; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Wingdings;">§<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">A domain user account<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 58.5pt; mso-list: l0 level3 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list 1.5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Wingdings; font-size: 10.0pt; mso-bidi-font-family: Wingdings; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Wingdings;">§<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;"> </span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">A local user account<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Previously, if you
upgrade to a new build of Azure AD Connect containing connectors update or sync
rule changes, Azure AD Connect will trigger a full sync cycle. Now, Azure AD
Connect selectively triggers Full Import step only for connectors with update,
and Full Synchronization step only for connectors with sync rule changes.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Previously, the Export
Deletion Threshold only applies to exports which are triggered through the sync
scheduler. Now, the feature is extended to include exports manually triggered
by the customer using the Synchronization Service Manager.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">On your Azure AD
tenant, there is a service configuration which indicates whether Password
Synchronization feature is enabled for your tenant or not. Previously, it is
easy for the service configuration to be incorrectly configured by Azure AD
Connect when you have an active and a staging server. Now, Azure AD Connect
will attempt to keep the service configuration consistent with your active
Azure AD Connect server only.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Azure AD Connect
wizard now detects and returns a warning if on-premises AD does not have AD
Recycle Bin enabled.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Previously, Export to
Azure AD times out and fails if the combined size of the objects in the batch
exceeds certain threshold. Now, the Synchronization Service will reattempt to resend
the objects in separate, smaller batches if the issue is encountered.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">The Synchronization
Service Key Management application has been removed from Windows Start Menu.
Management of encryption key will continue to be supported through command-line
interface using miiskmu.exe. For information about managing encryption key, refer
to article <a href="https://docs.microsoft.com/azure/active-directory/connect/active-directory-aadconnectsync-change-serviceacct-pass#abandoning-the-azure-ad-connect-sync-encryption-key"><span style="color: #0050c5;">Abandoning the Azure AD Connect Sync encryption key</span></a>.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l0 level1 lfo5; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Previously, if you
change the Azure AD Connect sync service account password, the Synchronization
Service will not be able start correctly until you have abandoned the
encryption key and reinitialized the Azure AD Connect sync service account
password. Now, this is no longer required.<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-bottom: .0001pt; margin-bottom: 0in; mso-margin-top-alt: auto;">
<span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Desktop SSO<o:p></o:p></span></div>
<div class="MsoNormal" style="background: white; line-height: normal; margin-left: 28.5pt; mso-list: l4 level1 lfo6; mso-margin-bottom-alt: auto; mso-margin-top-alt: auto; tab-stops: list .5in; text-indent: -.25in;">
<!--[if !supportLists]--><span style="color: #222222; font-family: Symbol; font-size: 10.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-size: 12.0pt; mso-fareast-font-family: Symbol;">·<span style="font-family: "Times New Roman"; font-size: 7pt; font-stretch: normal; font-variant-numeric: normal; line-height: normal;">
</span></span><!--[endif]--><span style="color: #222222; font-family: "Segoe UI",sans-serif; font-size: 12.0pt; mso-fareast-font-family: "Times New Roman";">Azure AD Connect
wizard no longer requires port 9090 to be opened on the network when
configuring Pass-through Authentication and Desktop SSO. Only port 443 is
required. <o:p></o:p></span></div>
<br />
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
<o:p>Download the latest version of <a href="https://www.microsoft.com/en-us/download/details.aspx?id=47594" target="_blank">AAD Connect here.</a></o:p></div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-40418304545790093592017-02-21T16:29:00.001-05:002017-12-12T14:27:47.145-05:00Office 365- Hybrid Configuration with Skype for Business Online-Lync 2013<div dir="ltr" style="text-align: left;" trbidi="on">
Recently, one of my customers want to do the pilot for the hybrid deployment of the Skype for Business online, currently, a customer running on Lync 2013 on premises. So just want to share my experience & process to deploy the hybrid environment for Skype for Business.<br />
<br />
Hybrid connectivity between Lync 2013 server and Skype for Business online means users of a domain are split between using Lync 2013 server and Skype for Business online. Some of the domain users are homed on-premises, and some users are homed online.<br />
<br />
Before moving forward we have to make sure our on-premises is matching requirement, following are:<br />
<br />
<br />
<b>Skype for Business client support</b><br />
<br />
Before you decide to deploy hybrid deployment you have to check which client support for Skype for Business online. There are some differences in the features supported in Skype for Business clients, as well as the features available in on-premises and online environments. The following clients are supported with Skype for Business Online in a Skype for Business hybrid deployment:<br />
<br />
Lync 2010<br />
Lync 2013<br />
Lync Windows Store app<br />
Lync Web App<br />
Lync Mobile<br />
Lync for Mac 2011<br />
Lync Room System<br />
Lync Basic 2013<br />
<br />
for more details click here <a href="https://technet.microsoft.com/en-us/library/skype-for-business-online-clients.aspx">Clients for Skype for Business Online</a><br />
<br />
<b>Topology Requirements</b><br />
<br />
To configure your deployment for the hybrid with Skype for Business Online, you need to have the Lync Server 2013 deployment with all servers running Lync Server 2013. For more <a href="https://www.microsoft.com/en-us/download/details.aspx?id=39718">details Lync Server 2013 Reference Topologies for Enterprise Hybrid Deployments</a><br />
<br />
<b>Requirements for Federation Allowed/Blocked Lists</b><br />
<br />
The allowed domains list includes domains that have a partner Edge fully qualified domain name (FQDN) configured, following are the requirement to successfully configure a hybrid deployment:<br />
Domain matching must be the same configuration on on-premises and Office 365 tenant.<br />
The blocked domain list in the on-premises deployment must exactly match the blocked domain list on an online tenant.<br />
The Allowed domains list in the on-premises deployment must exactly match the allowed domains list for your online tenant.<br />
Federation must be enabled for the external communications for the online tenant, which is configured by using the Lync Online Control Panel.<br />
If the partner discovery is enabled on the on-premises deployment, then open federation must be configured for your online tenant if the partner discovery is not enabled, then closed federation must be configured for your online tenant.<br />
<b><br /></b> <b>DNS Requirement</b><br />
<b><br /></b> We have to make sure when we are creating the DNS records for hybrid deployments, all Lync external DNS records should point to the on-premises infrastructure, additionally, we have to ensure the DNS resolution described with following records in on-premises:<br />
<span style="background-color: #999999;"><i>_sipfederationtls._tcp.</i> </span> Edge Server (for all supported SIP domains resolving to Access Edge external IPs)<br />
<i><span style="background-color: #999999;">DNS A records </span> </i> Internal corporate Network (for Edge Web Conferencing Service FQDN)<br />
<br />
<b>Firewall Considerations</b><br />
<b><br /></b> Client on corporate network must be able to perform standard Internet DNS lookups, for more <a href="https://support.office.com/en-us/article/Office-365-URLs-and-IP-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2?ui=en-US&rs=en-US&ad=US">Office 365 URLs and IP address ranges</a><br />
<br />
<br />
<b>Port and protocol </b><br />
<b><br /></b>
TCP 443<br />
TCP 80 and 443<br />
TCP 5061<br />
PSOM/TLS 443<br />
STUN/UDP 3478<br />
RTP/TCP 50000-59999<br />
<br />
<br />
<b>Preparing the Network for a Lync Hybrid Deployment</b><br />
<b><br /></b> The network requirements for a Lync hybrid deployment are similar to the requirements for a cloud-only deployment. However, there are several additional firewall port requirements compared to a cloud-only deployment, and there is at least one additional DNS requirement for the hybrid deployment, depending on the configuration. We need to do the Network Assessment before start any configuration, we can use <a href="https://www.microsoft.com/en-us/download/details.aspx?id=53885">Skype for Business Network Assessment tool</a>. The Skype for Business Network Assessment Tool provides the ability to perform a simple test of network performance to determine how well the network would perform for a Skype for Business Online call.<br />
<br />
<br />
<b>Prerequisites</b><br />
<b><br /></b> We have to make sure we have following utilities installed and working smoothly to complete the tasks for configuring the Hybrid.<br />
1. Active Directory Synchronization (AAD Connect).<br />
2. Office 365 tenant with Skype for Business online enabled.<br />
3. ADFS for single sign on.<br />
4. Windows Power Shell for single sign on.<br />
5. Microsoft online Services Sign-in Assistant.<br />
6. Up to date CU for Lync Server on premises.<br />
<br />
<br />
<b>Following are steps involve</b><br />
<br />
Add your domain and verify ownership<br />
Install and Configure Active Directory synchronization<br />
Install and Configure Active Directory Federation Services (AD FS)<br />
Install and Configure Active Directory Federation Services Proxy (AD FS Proxy)<br />
Configure Single Sign-on (SSO) with ADFS<br />
Configure federation of Lync Server 2013 with Lync Online<br />
Move user to Lync Online and test calls between Lync Online and Lync Onprem<br />
<br />
<b>Add your domain and verify ownership</b><br />
<br />
Once you signed up Office 365, you will get the Office 365 Tenant account. From this account, you will add your domain. This will allow Microsoft to host the desired Office 365 services for you and will allow you to use you own domain, rather than the tenant domain account (@domain.onmicrosoft.com) default account.<br />
<br />
The process should be quite easy and painless as long as you have access to the Microsoft Online Portal, with a Global Admin account, and access to your public facing DNS.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-yCRoVxNq-yU/WKyMU9Al9TI/AAAAAAAAP6M/sg0UOIfiVawkJcjAYYZzV2jYiKgopnsMwCLcB/s1600/3.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://4.bp.blogspot.com/-yCRoVxNq-yU/WKyMU9Al9TI/AAAAAAAAP6M/sg0UOIfiVawkJcjAYYZzV2jYiKgopnsMwCLcB/s640/3.JPG" width="640" /></a></div>
<br />
<br />
for step by steps you follow <a href="http://office365support.ca/adding-and-verifying-a-domain-for-the-new-office-365/">Adding and Verifying a Domain for the NEW Office 365</a><br />
<br />
<br />
<b>Install and Configure Active Directory synchronization</b><br />
<b>Install and Configure Active Directory Federation Services (AD FS)</b><br />
<b>Install and Configure Active Directory Federation Services Proxy (AD FS Proxy)</b><br />
<br />
Office 365 uses the cloud-based user identity management service Azure Active Directory to manage users. You can also integrate your on-premises Active Directory with Azure AD by synchronizing your on-premises environment with Office 365. Once you set up synchronization you can decide to have their user authentication take place within Azure AD or within your on-premises directory.<br />
For <a href="https://blogs.msdn.microsoft.com/vilath/2015/06/24/step-by-step-guide-for-aad-connect-custom-installation-federation-with-ad-fs/">Step-by-Step Guide for AAD Connect Custom installation + Federation with AD FS click here</a>.<br />
<br />
<br />
<b>Configure Single Sign-on (SSO) with ADFS</b><br />
<br />
Once we complete the ADFS and ADFS Proxy setup, we can now configure SSO between the Onprem AD and O365's Azure AD. First, we have to download and install the <a href="https://docs.microsoft.com/en-us/powershell/msonline/v1/azureactivedirectory?redirectedfrom=msdn">Microsoft Azure Active Directory Module for Windows PowerShell</a> on the ADFS computer. Once installed, open the module and run the following PowerShell commands to setup a trusted federation domain:<br />
<br />
First, give the credential<br />
<br />
<span style="background-color: #999999;"><i>$cred = get-Credential</i></span><br />
<br />
connect online service<br />
<br />
<span style="background-color: #999999;"><i>Connect-MsolService -Credential $cred</i></span><br />
<br />
Now time to convert your domain to federated domain<br />
<br />
<span style="background-color: #999999;"><i>Convert-MsolDomainToFederated -DomainName <domain .com=""></domain></i></span><br />
<br />
time to verify the configuration<br />
<br />
<span style="background-color: #999999;"><i>Get-MsolFederationProperty -DomainName <domain .com=""></domain></i></span><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-C407tbG5rrc/WKyVSJD2NDI/AAAAAAAAP6g/HFp_oIO9_toO5xMcRmowmb3pn0hgxSaaQCLcB/s1600/4.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="616" src="https://3.bp.blogspot.com/-C407tbG5rrc/WKyVSJD2NDI/AAAAAAAAP6g/HFp_oIO9_toO5xMcRmowmb3pn0hgxSaaQCLcB/s640/4.JPG" width="640" /></a></div>
<br />
Now it's time to test single sign-on connectivity, we can use the <a href="https://testconnectivity.microsoft.com/">Microsoft Connectivity Analyzer</a> Click the Office 365 tab, click Microsoft Single Sign-On, and then click Next. Follow the screen prompts to perform the test.<br />
<br />
<br />
<b>Configure federation of Lync Server 2013</b><br />
<br />
We must enable the federation to allow communications with Office 365, we can use Power Shell for performing all the steps:<br />
<br />
<span style="background-color: #999999;"><i>Set-CSAccessEdgeConfiguration -AllowOutsideUser1 -UseDnsSrvRouting -AllowFederatedUses</i></span><br />
<span style="background-color: #999999;"><i><br /></i></span> Confirm the settings with the following command<br />
<br />
<i style="background-color: #999999;">Get-CsAccessEdgeConfiguration</i><br />
<i style="background-color: #999999;"><br /></i> Nest configure the provider Skype for Business online, first, we have to identify the existing suppliers<br />
<br />
<span style="background-color: #999999;"><i>Get-CsHostingProvider</i></span><br />
<span style="background-color: #999999;"><i><br /></i></span> Remove the existing provider<br />
<br />
<span style="background-color: #999999;"><i>Remove-CsHostingprovider -Identity "Skype for Business Online"</i></span><br />
<span style="background-color: #999999;"><i><br /></i></span> Verify again with the command<br />
<br />
<span style="background-color: #999999;"><i>Get-CsHostingprovider</i></span><br />
<span style="background-color: #999999;"><i><br /></i></span> Now time to add the Skype for Business Online supplier with the following parameters:<br />
<br />
<span style="background-color: #999999;"><i>New-CSHostingProvider -Identity SkypeforBusinessOnline -ProxyFqdn "fed.online.tech.com" -Enable $true -EnableSharedAddressSpace $true -hostOCSUsers $true -Verification level UseSourceVerification -Is local $false -AutodiscoverUrl https://webdir.online.tech.com/Autodiscover/AutodiscoverService.svc/root</i></span><br />
<br />
<br />
<b>Configuration of Office365</b><br />
<br />
In the Skype Online Administration Center into your Office 365, validate that the federation is enabled in "Organization" – "<i>External Communications</i>".<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-sztgqRRAEVo/WKyaqGc2LjI/AAAAAAAAP6w/9NnhIG6qGz4GvZhJjdMZBm3kHI97Kg8lACLcB/s1600/5.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="218" src="https://1.bp.blogspot.com/-sztgqRRAEVo/WKyaqGc2LjI/AAAAAAAAP6w/9NnhIG6qGz4GvZhJjdMZBm3kHI97Kg8lACLcB/s640/5.JPG" width="640" /></a></div>
<br />
<br />
<b>Configure SharedSipAddressSpace</b><br />
<br />
Before moving users from Lync Onprem to Lync Online, we need to configure the O365 tenant to share the SIP address space with the on-premises deployment. If this is not configured, we may see the following error message<br />
<br />
<i style="background-color: #999999;">Set-CsTenantFederationConfiguration -SharedSipAddressSpace $true</i><br />
<i style="background-color: #999999;"><br /></i> <i><br /></i> <b>Move user to Skype for Business and Lync Onprem</b><br />
<br />
Now we can proceed to use the Move-CsUser cmdlet in the Onprem Lync Management Shell: to move the user from Onprem to Online.<br />
<br />
Move-CsUser -Identity <dinesh .singh=""> -Target sipfed.online.tech.com -Credential $cred -HostedMigrationOverrideUrl <hosted for="" migration="" override="" tenant="" url="" your=""></hosted></dinesh><br />
<span style="background-color: white;"><br /></span> <span style="background-color: white;">After the Move-CsUser command completes successfully with no errors, we can log into O365 Lync admin center to see the user is now homed online.</span><br />
<i style="background-color: #999999;"><br /></i>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-fvUBZLvR2os/WKynpz2BiNI/AAAAAAAAP7A/X7Oqrlv6F7Up4hz4elUrd92oQYQ2riKGgCLcB/s1600/6.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="130" src="https://1.bp.blogspot.com/-fvUBZLvR2os/WKynpz2BiNI/AAAAAAAAP7A/X7Oqrlv6F7Up4hz4elUrd92oQYQ2riKGgCLcB/s640/6.JPG" width="640" /></a></div>
<i style="background-color: #999999;"><br /></i> <i style="background-color: #999999;"><br /></i> <span style="background-color: white;"><br /></span> <span style="background-color: white;">On the Onprem Lync Control Panel we can see the same user is specified as homed online</span><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-3Zml7fI-NeI/WKysVoGAHhI/AAAAAAAAP7M/nXwxSMc00xEGZyGk1zUsSmzQAazoqAsUgCLcB/s1600/7.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="186" src="https://4.bp.blogspot.com/-3Zml7fI-NeI/WKysVoGAHhI/AAAAAAAAP7M/nXwxSMc00xEGZyGk1zUsSmzQAazoqAsUgCLcB/s640/7.JPG" width="640" /></a></div>
<span style="background-color: white;"><br /></span> <i style="background-color: #999999;"><br /></i> <i style="background-color: #999999;"><br /></i> <span style="background-color: white;">Happy Learning!</span><br />
<span style="background-color: white;"><br /></span> Thank you!<br />
<br />
<br />
<br /></div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0tag:blogger.com,1999:blog-6407736822665027157.post-36498231324076690062017-02-05T17:54:00.001-05:002017-12-12T14:47:38.302-05:00Exchange 2016 and Skype for Business Integration-OWA<div dir="ltr" style="text-align: left;" trbidi="on">
In Skype for Business IM integration with OWA enable the user to publish the presence and view the presence of the other without having a local Skype for the Business client running. By default, the integration between exchange 2016 and skype for a business server for this feature is not enabled.<br />
<br />
In previous Exchange versions, we simply need to edit the <i>web.config</i> file with Exchange certificate thumbprint. Also if Microsoft Exchange Unified Messaging Call Router service and the Microsoft Exchange Unified Messaging service runs on the same box then there was no need to create an application pool for OWA integration. However, these two steps have been replaced with Exchange 2016 because of all roles in the same box. For deep dive Exchange 2016<a href="https://ucservice.blogspot.com/2016/11/dive-deep-into-microsoft-exchange.html"> click here</a><br />
<br />
You can also check <a href="https://ucservice.blogspot.com/2016/06/integrating-lync-2013-with-exchange-2013.html" target="_blank"><b><i>Integrating Lync 2013 with Exchange 2013</i></b></a> in my old post.<br />
<br />
<br />
<h3 style="text-align: left;">
Exchange 2016 and Skype for Business Integration</h3>
Before starting the configuration part we have to make sure Server to Server authentication are working and Exchange Autodiscover services are configured correctly.<br />
<br />
Self-signed SSL certificate (Microsoft Exchange Auth Certificate) is installed on the each Exchange servers, this will for the server to server authentication on Exchange side.<br />
<br />
<div>
We can verify on Exchange Server with Power Shell<br />
<br />
<span style="background-color: #cccccc;"><i>Get-ExchangeCertificate</i></span><br />
<span style="background-color: #cccccc;"><i><br /></i></span>
<br />
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-x3pCy5lLDB4/WJei0O-KbdI/AAAAAAAAP3Y/MLdME53FIBsedfAtl8-Q_7iSZ2sg-f9wQCLcB/s1600/6.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="171" src="https://1.bp.blogspot.com/-x3pCy5lLDB4/WJei0O-KbdI/AAAAAAAAP3Y/MLdME53FIBsedfAtl8-Q_7iSZ2sg-f9wQCLcB/s640/6.JPG" width="640" /></a></div>
<br />
In Skype for Business server, we have to request a certificate for SkypeFB web services which can also use for the OAuthTokenIssuer for the server to server communication as long as you use this SSL certificate on all your front end servers.<br />
<br />
We can verify with Power Shell command<br />
<span style="background-color: #cccccc;"><i><br /></i></span> <span style="background-color: #cccccc;"><i>Get-CsCertificate –Type OAuthTokenIssuer</i></span></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
we can verify the IM presence to open the OWA.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-cKEVPIDl-lM/WJesiqLa1NI/AAAAAAAAP5I/7zmCkXsb8Rw3qpny1ENmIHek40WuZ-OAACLcB/s1600/1.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="188" src="https://1.bp.blogspot.com/-cKEVPIDl-lM/WJesiqLa1NI/AAAAAAAAP5I/7zmCkXsb8Rw3qpny1ENmIHek40WuZ-OAACLcB/s640/1.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
as we can see there is no presence available now, we will verify once our configuration complete.</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div>
<br /></div>
<div>
<b>Configure Auto discover</b></div>
<div>
<div>
<br /></div>
<div>
We need to make sure that Autodiscover services configured/running correctly, if it is not configured correctly integration with Skype for Business will not work.</div>
<div>
We can use Power Shell command to verify the configuration </div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-ClientAccessService | Select-Object Name, AutoDiscoverServiceInternalUri | Format-List</i></span></div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-mvRoZJTS9Dg/WJejidwUePI/AAAAAAAAP3k/q2Twywbb80ApDeFSTERHhC7AK3QeU9K_gCLcB/s1600/1.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="82" src="https://2.bp.blogspot.com/-mvRoZJTS9Dg/WJejidwUePI/AAAAAAAAP3k/q2Twywbb80ApDeFSTERHhC7AK3QeU9K_gCLcB/s640/1.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-ClientAccessServer -Identity MX1 | Select-Object AutoD*</i></span></div>
<div>
<br /></div>
<div>
you can get for other exchange servers also.</div>
<div>
<br /></div>
<div>
<b><br /></b></div>
<div>
<b>Create the DNS Records</b></div>
<div>
<br /></div>
<div>
We have to create two DNS record before modifying the Exchange configuration, which is mostly autodiscover aware clients will query when attempting to locate an Exchange Server.</div>
<div>
<br /></div>
<div>
Create a new Alias (CNAME) record in the under forward lookup zone, pointing to the Exchange Server FQDN</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-S64WKE-XOAU/WJejxkxEBtI/AAAAAAAAP3o/Y5yJtGDP7dYkIsKzfeqDG6BuQBGZzZ0hgCLcB/s1600/3.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://2.bp.blogspot.com/-S64WKE-XOAU/WJejxkxEBtI/AAAAAAAAP3o/Y5yJtGDP7dYkIsKzfeqDG6BuQBGZzZ0hgCLcB/s320/3.JPG" width="288" /></a></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
Second, create the new Service Location (SRV) record using the following parameters pointing this record to the CNAME record.</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-csodhvLUWUE/WJej5aM-VUI/AAAAAAAAP3s/9S7OvghOG9MatRnpRNYSle5oq5UXvSvGwCLcB/s1600/6.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://1.bp.blogspot.com/-csodhvLUWUE/WJej5aM-VUI/AAAAAAAAP3s/9S7OvghOG9MatRnpRNYSle5oq5UXvSvGwCLcB/s320/6.JPG" width="279" /></a></div>
<div>
<br /></div>
<div>
We can verify DNS records with help of nslookup command</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-CtrEJ1reedk/WJerTrvtmMI/AAAAAAAAP44/TEgZDypX2RcCMjn-zLOUUM-4D82cLZ_1wCLcB/s1600/9.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="166" src="https://3.bp.blogspot.com/-CtrEJ1reedk/WJerTrvtmMI/AAAAAAAAP44/TEgZDypX2RcCMjn-zLOUUM-4D82cLZ_1wCLcB/s640/9.JPG" width="640" /></a></div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://1.bp.blogspot.com/-pasavoC5Xfo/WJerWfkwdpI/AAAAAAAAP48/UQ_tIZYHfbgID8p6gicMxhBfRRNLKck_gCLcB/s1600/10.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="168" src="https://1.bp.blogspot.com/-pasavoC5Xfo/WJerWfkwdpI/AAAAAAAAP48/UQ_tIZYHfbgID8p6gicMxhBfRRNLKck_gCLcB/s640/10.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
<b>Update the Autodiscover URL</b></div>
<div>
<br /></div>
<div>
If the AutodiscoverServiceInternalUri has not correct then we must have configured with the following command:</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Set-ClientAccessService –Identity MX1 –AutoDiscoverServiceInternalUri https://autodiscover.tech.com/autodiscover/autodiscover.xml</i></span></div>
</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://4.bp.blogspot.com/-W6_UVaquiso/WJekJut8BSI/AAAAAAAAP30/5tSp8hDbfXwsZcsEUxQFBlZ94HdZ2sVPACLcB/s1600/9.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="44" src="https://4.bp.blogspot.com/-W6_UVaquiso/WJekJut8BSI/AAAAAAAAP30/5tSp8hDbfXwsZcsEUxQFBlZ94HdZ2sVPACLcB/s640/9.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<div>
<b>Configure OAuth</b></div>
<div>
<br /></div>
<div>
OAuth is the server to server authentication mechanism used between the Skype for business and Exchange servers to establish secure communications. During the skype for business server deployment SSL certificate specified the OAuth. We need to make sure that OAuth is configured to the Skype for Business FE servers, we can user Power Shell command to verify the OAuth</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-CsOAuthConfiguration</i></span></div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-BVk7lTwB99o/WJeklIqslII/AAAAAAAAP4A/rrd5fAsPEIg1qV8_jz1dHt8ZlK_DdnZiwCLcB/s1600/7.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="222" src="https://3.bp.blogspot.com/-BVk7lTwB99o/WJeklIqslII/AAAAAAAAP4A/rrd5fAsPEIg1qV8_jz1dHt8ZlK_DdnZiwCLcB/s640/7.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
Before the integration with Skype for Business partner application we need to know about the Exchange Autodiscover configuration with following Power Shell command:</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-ClientAccessServer -Identity MX1 | Select-Object AutoDiscoverServiceI*</i></span></div>
<div>
<br /></div>
<div>
<i>AutoDiscoverServiceInternalUri </i></div>
<div>
<i>—————————— </i></div>
<div>
<i>https://autodiscover.tech.com/autodiscover/autodiscover.xml</i></div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-sKFZC-HnIUg/WJekdBpasJI/AAAAAAAAP38/W4G-5hdQTsckf4zfypNMTJKskpwaNmGOwCLcB/s1600/10.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="114" src="https://3.bp.blogspot.com/-sKFZC-HnIUg/WJekdBpasJI/AAAAAAAAP38/W4G-5hdQTsckf4zfypNMTJKskpwaNmGOwCLcB/s640/10.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
Now we have to configure the OAuth from SfB front end server</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Set-CsOAuthConfiguration -Identity global -ExchangeAutodiscoverUrl https://autodiscover.tech.com/autodiscover/autodiscover.svc</i></span></div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-DOtsXOfXv2Y/WJekuQn2AKI/AAAAAAAAP4I/FMNbvOckTzohpc_E1jEbrKQSsG0PNpMywCLcB/s1600/12.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="76" src="https://3.bp.blogspot.com/-DOtsXOfXv2Y/WJekuQn2AKI/AAAAAAAAP4I/FMNbvOckTzohpc_E1jEbrKQSsG0PNpMywCLcB/s640/12.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
Here is the point we are using .svc not .xml in autodiscover URL.</div>
<div>
<br /></div>
<div>
Now run again <span style="background-color: #cccccc;"><i>Get-CsOAuthConfiguration</i></span> command for complete details</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://3.bp.blogspot.com/-4rw0r7Iwu-I/WJek36lG2XI/AAAAAAAAP4M/eYNHanl8jDkUU2IAQQJAoduuxClWwgUVQCLcB/s1600/13.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="176" src="https://3.bp.blogspot.com/-4rw0r7Iwu-I/WJek36lG2XI/AAAAAAAAP4M/eYNHanl8jDkUU2IAQQJAoduuxClWwgUVQCLcB/s640/13.JPG" width="640" /></a></div>
<div>
<br /></div>
<div>
We are now ready for integration and everything we already configured on both sides.</div>
</div>
<div>
<br /></div>
<div>
<b><br /></b></div>
<div>
<div>
<b>Configure Exchange 2016 server </b></div>
<div>
<br /></div>
<div>
Now in Exchange server side, we need to configure the metadata authentication URL, we can complete the pairing a new partner application will also need to be defined on the Skype for Business side. We need the metadata URL for SfB authentication.</div>
<div>
<br /></div>
<div>
This URL should be identical to the following format, utilizing the SfB Front End server FQDN.</div>
<div>
<br /></div>
<div>
<i style="background-color: #cccccc;">https://autodiscover.tech.com/autodiscover/metadata/json/1</i></div>
<div>
<br /></div>
<div>
Connect to this URL in a web browser from the Skype for Business Server to validate connectivity, which will give you more details.</div>
<div>
<br /></div>
<div>
Now configure the Configure-EnterprisePartnerAppliation with the following command</div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
<span style="background-color: #cccccc;"><i>.\Configure-EnterprisePartnerApplication.ps1 -AuthMetadataUrl “https://autodiscover.tech.com/autodiscover/metadata/json/1″ -ApplicationType Lync</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Once command executes successfully restart the IIS.</div>
<div>
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-Yc0-rQiL8Ck/WJeoajVBRaI/AAAAAAAAP4k/uwvxJwaqm_sfkSR39GOAOiC7JvuQABpNACLcB/s1600/13.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://2.bp.blogspot.com/-Yc0-rQiL8Ck/WJeoajVBRaI/AAAAAAAAP4k/uwvxJwaqm_sfkSR39GOAOiC7JvuQABpNACLcB/s1600/13.JPG" /></a></div>
<div>
<br /></div>
<div>
<b><br /></b></div>
<div>
<b>Configure Skype for Business </b></div>
<div>
<b><br /></b></div>
<div>
For complete the pairing we need to configure Skype for Business side also, we need to configure metadata authentication URL of the Exchange server which will be the following format:</div>
<div>
<br /></div>
<div>
<i style="background-color: #cccccc;">https://autodiscover.tech.com/autodiscover/metadata/json/1</i></div>
<div>
<i style="background-color: #cccccc;"><br /></i></div>
<div>
We can test this URL on Skype for Business server will give you the more details.</div>
<div>
Once you get the all details now time to add the partner application with help of Skype for Business management Shell</div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>New-CsPartnerApplication –Identity Exchange –ApplicationTrustLevel Full –MetadataUrl hrrps://autodiscover.tech.com/autodiscover/metadata/json/1</i></span></div>
<div>
<br /></div>
<div>
<b>Test the Connectivity</b></div>
<div>
<br /></div>
<div>
Now time to validate the configuration partner application relationship has been successfully established with help of the following command:</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Test-CsExStorageConnectivity –SipUri sip:dinesh.singh@tech.com –verbose</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
The test cmdlet returns a successful result of “<i>Test Passed</i>”.</div>
<div>
<br /></div>
</div>
<div>
<div>
<br /></div>
<h3 style="text-align: left;">
<b>Enabling Skype for Business for OWA</b></h3>
<div>
<br /></div>
<div>
<b>On Exchange Server 2016</b></div>
<div>
<br /></div>
<div>
First, run the command on Exchange Management Shell</div>
<div>
<b><br /></b></div>
<div>
<span style="background-color: #cccccc;"><i>Get-ExchangeCertificate</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Copy the thumbprint on the notepad which we require in next steps.</div>
<div>
From Exchange Management Shell specify the IM server and certificate thumbprint with help of the following command:</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>New-SettingOverride –Name “OwaOverride” –Component OwaServer –Section IMSettings –Parameters @(“IMServerName=<fe1 .tech.com="" ertificatethumbprint="<Thumbprint" in="" kept="" notepad="" we="">” –Reason “Configure IM” –Server MX1</fe1></i></span></div>
<div>
<br /></div>
<div>
If you want to make change all Exchange servers, you can remove the MX1 from above cmd.</div>
<div>
<br /></div>
<div>
Now refresh the IM settings on the Exchange servers, you have to do on every Exchange 2016 server which used for Outlook Web App, run following command on Exchange management Shell</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-ExchangeDiagnosticInfo –Server MBX1 Process Microsoft.Exchange.Directory.TopologyService –ComponentVariantConfiguation –Argument Refresh</i></span></div>
<div>
<br /></div>
<div>
Next, we have to Restart outlook web app application pool with help of the following command </div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Restart-WebAppPoolMSExchnageOWAAppPool</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Once complete verify the OWA virtual directory with help of below cmdlet</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-Owavirtualdirectory</i></span></div>
<div>
<br /></div>
<div>
Now enable IM on Owa with help of the following command:</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-OwaVirtualDirectory | Set-OwaVirtualDirectory –InstantmessagingEnabled $true –InstantMessagingType OCS</i></span></div>
<div>
<br /></div>
<div>
Now you can run the cmdlet</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Get-OwaVirtualDirectory | fl command for checking the two properties “InstantMessagingEnabled-true & InstantMessagingType-ocs”</i></span></div>
<div>
<br /></div>
<div>
Now it's time to allow IM on the OWA web policy with using Power Shell command line</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Set-OwaMailboxPolicy –identity “default” –InstantMessagingEnabled $True –InstantMessagingType “OCS”</i></span></div>
<div>
<br /></div>
<div>
<b>From Skype for business Server</b></div>
<div>
<br /></div>
<div>
We completed configuration from Exchange side now it’s time to configure on Skype for business server </div>
<div>
<br /></div>
<div>
First get the site id with help of following command</div>
<div>
<span style="background-color: #cccccc;"><i>Get-CsSite | Select-object DisplayName, SiteID</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Note down the result </div>
<div>
<br /></div>
<div>
Now time to configure trusted application pool with help of cmdlet</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>New-CsTrustedApplicationPool –Identity “mx1.tech.com” –Registrar “fe1.tech.com” –Site “techUSA” –RequiresReplication $False</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Once you hit the command and it will ask to confirm then type A and hit enter</div>
<div>
<br /></div>
<div>
Now time to create a trusted application and map it to the pool which we created with help of following cmd</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>New-CsTrustedApplication –Application OutlookWebApp –trustedApplicationPoolFqdn mx1.tech.com –Port 5199</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
Finally, we have to need the publish the topology</div>
<div>
<br /></div>
<div>
<span style="background-color: #cccccc;"><i>Enable-CsTopology</i></span></div>
<div>
<span style="background-color: #cccccc;"><i><br /></i></span></div>
<div>
<br /></div>
<div>
Now, time to check the IM presence is in OWA is available.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://2.bp.blogspot.com/-GF0WpXWe7bI/WJeqNypPJ5I/AAAAAAAAP4w/V926ko6HLxASJzBdqJS4GDrYVpnmdFIlQCLcB/s1600/19.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="640" src="https://2.bp.blogspot.com/-GF0WpXWe7bI/WJeqNypPJ5I/AAAAAAAAP4w/V926ko6HLxASJzBdqJS4GDrYVpnmdFIlQCLcB/s640/19.JPG" width="480" /></a></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
Thank you!</div>
<div>
<br /></div>
<div>
Happy Learning!</div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<br /></div>
</div>
</div>
Dinesh Singhhttp://www.blogger.com/profile/00934944806001617572noreply@blogger.com0