MaaS360 e-Learning Portal

Slides:



Advertisements
Similar presentations
automated single login access to Novell storage resources
Advertisements

Sophos Mobile Control. Tablets on the rise 2 Trends 3 75% of 157 polled companies encourage employee owned smart phones and tablets to access corporate.
Module 5: Configuring Access for Remote Clients and Networks.
DESIGNING A PUBLIC KEY INFRASTRUCTURE
Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.
Managing Client Access
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
OM. Brad Gall Senior Consultant
Securing Microsoft® Exchange Server 2010
Module 2 Designing Microsoft® Exchange Server 2010 Integration with the Current Infrastructure.
Module 7: Fundamentals of Administering Windows Server 2008.
Zscaler New Interface and Reporting From Saturday 8 th June 2013.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
1 Thomas Lippert Senior Product Manager - Mobile What’s new in SMC 5.0.
OFC290 Information Rights Management in Microsoft Office 2003 Lauren Antonoff Group Program Manager.
Module 4 Planning and Deploying Client Access Services in Microsoft® Exchange Server 2010 Presentation: 120 minutes Lab: 90 minutes After completing.
Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.
Alessandro Cardoso Microsoft MVP | Readify National Manager |
Module 12 Upgrading from Exchange Server 2003 or Exchange Server 2007 to Exchange Server 2010.
Module 11 Upgrading to Microsoft ® Exchange Server 2010.
Extending ISA/IAG beyond the limit. AGAT Security suite - introduction AGAT Security suite is a set of unique components that allow extending ISA / IAG.
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
Intro to Datazen.
Virtualization Technology and Microsoft Virtual PC 2007 YOU ARE WELCOME By : Osama Tamimi.
Implementing Microsoft Exchange Online with Microsoft Office 365
Microsoft Virtual Academy Preparing for the Windows 8.1 MCSA Module 5: Managing Devices & Resource Access.
©2010 Check Point Software Technologies Ltd. | [Unrestricted] For everyone Endpoint Security VPN R75 (SecureClient Next Generation)
BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
© 2014 IBM Corporation Mobile Customization & Administration IBM Connections 5.0 Workshop Author: Paul Godby IBM Ecosystem Development Duration: 30 minutes.
SaaS apps.
COEXISTENCE WITH MICROSOFT EXCHANGE SERVER 5.5 Appendix A.
Selecting the Management Platform Cloud-based Management Standalone Windows Intune No existing Configuration Manager deployment Simplified policy.
ArcGIS for Server Security: Advanced
MaaS360 MDM for iOS, Android & Windows Phone 7
Chapter 7: Using Windows Servers
SmartCenter for Pointsec - MI
VMware ESX and ESXi Module 3.
Preparing for the Windows 8.1 MCSA
Solving your printing problems with Windows Server and Azure
Microsoft Virtual Academy
Module Overview Installing and Configuring a Network Policy Server
Mobile Data Solutions Inc
Exam Prep : Section 2: Design for Device Access and Protection
Securing the Network Perimeter with ISA 2004
Configuring and Troubleshooting Routing and Remote Access
Implementing TMG Server Publishing
NFX Q-Port on-boarding guide
IS4550 Security Policies and Implementation
2018 Real Cisco Dumps IT-Dumps
SVTRAININGS. SVTRAININGS Features of SCCM  Application management  Provides a set of tools and resources that can help you create, manage, deploy, and.
Unit 27: Network Operating Systems
What Is Sharepoint? Mohsen Ashkboos
Cloud Connect Seamlessly
Server-to-Client Remote Access and DirectAccess
Hybrid Search Planning Implementation.
20409A 7: Installing and Configuring System Center 2012 R2 Virtual Machine Manager Module 7 Installing and Configuring System Center 2012 R2 Virtual.
PSC Group, LLc Office 365/SharePoint Online Migration traps and tricks
Microsoft Virtual Academy
06 | Planning Exchange Online and Configuring DNS Records
HC Hyper-V Module GUI Portal VPS Templates Web Console
SharePoint Online Hybrid – Configure Outbound Search
M6: Advanced Identity Management topics for Office 365
SCCM in hybrid world Predrag Jelesijević Microsoft 7/6/ :17 AM
Securing web applications Externally
How to install and manage exchange server 2010 OP Saklani.
VNet and Cross-Premises Connectivity
Presentation transcript:

MaaS360 e-Learning Portal MaaS360 Cloud Extender - Basics MaaS360 e-Learning Portal

Agenda Cloud Extender Overview Architecture Installation Requirements Cloud Extender Modules Integration, Features, Requirements & Actions MaaS360 Portal Workflows Troubleshooting Basics

Cloud Extender Overview Extends MaaS360 Management to On-Premise Infrastructure Installed in your network Modular Architecture: Agent Core : On Cloud Extender Install Modules : Downloaded & Activated after Core Installation Integrates with Mail Servers Mail Servers : Exchange / Lotus / BES Auto Discover devices connecting to mail infrastructures Total Device Visibility Device Action Support – Block / Remote Wipe Policy Management & Auto-Quarantine (Exchange Only)

Cloud Extender Overview Integrates with Corporate Directories Microsoft Active Directory / LDAP Authentication – for enrolling devices Authentication – portal login User attribute collection – Group, OU information Replicate Corporate Directory User Groups for Devices Integrates with Corporate Certificate Services Microsoft NDES / Symantec Hosted PKI Automated User Certificate Delivery to end devices E-mail, Wi-Fi or VPN end user authentication Supports Certificate Revocation & Auto renewal

Cloud Extender Architecture Customer Network MaaS360 Cloud Internet XMPP over SSL Cloud Extender MaaS360 Servers AD Lotus Traveler ...... IT Administrator Communication via XMPP over SSL Online & Configuration Status Tracking in MaaS360 Statistics & Communication timestamps from each of the integrated services 5

Basic Installation Requirements Installed on-premise: Microsoft Windows Server – Physical or Virtual works 2008 R2, dual processor, 2G memory recommended Will also run on Win 7 machine or MS Server 2003 Runs as a Service Account: Local Administrator Rights on the server Access to Internet: Fiberlink Servers : *.fiberlink.com, *.maas360.com Installation: Downloaded from MaaS360 portal: Product Downloads link on Home Page Requires License Key for installation: Send License Key link on Home Page

Cloud Extender - Modules

Module: Exchange ActiveSync Version Requirements: On Premise Mail Servers: Exchange 2007 / 2010 Hosted Mail Servers: BPOS-D / Office365 *BPOS-Shared not supported Features: Auto Discovery of devices & policies Device Visibility & Action Support Auto Quarantine (AQ) Prevents new devices from directly connecting to Exchange Provides alerting to admins on new devices Approval / Block Workflow for devices Auto Approve enrolled devices Policy Management UI to Configure & Publish Exchange Policies on MaaS360.

Module: Exchange ActiveSync General Requirements Exchange 2007: Exchange Management Tools: Uses Local Powershell Snap-ins Needs to match the Exchange Server Version exactly Exchange 2010 / BPOS-D / Office365: Remote Powershell Powershell version 2.0 $host.Version on Powershell to confirm version Service Account Requirements: 2007 : Exchange Organization Administrator/Domain User 2010 : Organization Management/Domain User Office365 : Global Administrator

Module: Exchange ActiveSync Exchange Supported Actions The following actions are available directly from Device View Approve Block Change ActiveSync Policy [Device to Policy Assignment] Wipe Device Remove Device from Exchange Server

Module : Lotus Notes Traveler Version Requirements: 8.5.2 Domino and Traveler environment & higher 8.5.2 introduces Android Support Features: Auto Discovery of Traveler Devices Device Action Support – Remote Wipe / Block No AQ or Policy Management General Requirements Lotus Notes Client (single-user) installed Configured with the ADMIN notes.id and then exited Needs to be exited for us to access the API’s A Domino account and credentials with sufficient rights to perform Domino/Traveler Admin functions. Least access level of Server Remote Admin Manager w/ delete access to Traveler.nsf. .NET Framework 3.5 or higher

Module : Lotus Notes Traveler Traveler Supported Actions The following actions are available directly from Device View Block Wipe Device Wipe internally blocks the device Default Domino functionality. Remove Device from Traveler

Module: BlackBerry Enterprise Server Version Requirements: BES 5.0 or higher Features: Auto Discovery of devices Support for enrollment of new Blackberry devices Policy Assignment & Action Support General Requirements Blackberry Administrator APIs installed on the server that hosts the Blackberry Administrative Console (BES 5.0 SP1 and above preinstalls these automatically). BAS Server name & Port Administrator Account: Supports both AD and BES Admin Minimum rights of Security Manager .NET Framework 3.5 or higher

Module: BlackBerry Enterprise Server Enrollment workflow integration with MaaS360 allows Admins to provision new Blackberry devices Customer may also keep existing process, this is optional User gets email with URL for enrollment and accesses that URL from Blackberry device User is prompted for either passcode or AD credentials and accepts EULA After authentication User record is imported to BES (if doesn't’t already exist) User record is assigned policy Random activation passcode is generated and sent to user User enters passcode and device registers to BES

Module: BlackBerry Enterprise Server BlackBerry Supported Actions The following actions are available directly from Device View Refresh Device Information Send Message Reset Device Passcode Wipe Device Change BES Policy Remove Device from BES

Module: Active Directory Active Directory Requirements Microsoft Active Directory LDAP – Oracle, Domino, Novell & Open LDAP Features: Authentication during Device Enrollment Authentication during Portal Login User authentication during Enterprise App installation End User Portal Authentication General Requirements Powershell 2.0 Service account Local Admin on Cloud Extender machine Domain User on Domain

Module: User Visibility User Visibility Requirements Microsoft Active Directory LDAP – Oracle, Domino, Novell & Open LDAP Features: User attribute collection & availability in MaaS360 Group Information, OU data etc. MaaS360 Features: Grouping devices based on Corporate Directory Groups Dynamic Policies & Dynamic Compliance Rules Restrict device enrollment to specific groups Restrict admin access to portal belonging to specific groups General Requirements Powershell 2.0 Service account Local Admin on Cloud Extender machine Domain User on Domain

Module: Certificate Integration Version Integration Microsoft Certificate Services 2003 & 2008R2 Symantec Managed PKI v8 Features: Requires creation of Certificate Templates on Cloud Extender Points to CA with authentication credentials Device certs for Wireless/E-mail/VPN authentication iOS Only Support as of today General Requirements: MS: Integrates with Network Device Enrollment Service(NDES) 2008 R2: Installed via Server Manager 2003: Free Download here. Symantec Access to a Symantec MPKI environment An Registration Certificate to provide to the CE

Module: Certificate Integration Microsoft NDES Integration Architecture Example:

MaaS360 Portal Workflows Manage >> Manage MaaS360 Cloud Extenders Configuration / Online Status Cloud Extender Data: Summary Activated Services, Modules Service Accounts, Server H/W Inventory Exchange, Traveler, BB, AD, LDAP or Cert Statistics & Communication Dates Actions Configure CE Settings Exchange Policies for AQ Refresh Data: from various modules Remove Devices: Cleans old records Upgrade / Uninstall CE Mark as Inactive

MaaS360 Portal Workflows Test Actions: Tests authentication Tests reachability Refresh Device Data / Policy Data: 21

Troubleshooting Basics Cloud Extender Requirements prior to Installation (90% of the troubles occur during install) Decide where the Cloud Extender should be installed Can be physical or virtual machine Check OS Requirements in “CloudExtenderInstallation.pdf” Communication Requirements between Cloud Extender and the MaaS360 Servers on port 80 and 443: https://mpns.maas360.com 208.76.128.168 https://services.fiberlink.com 208.76.128.153 208.76.132.59 208.76.130.187 http://internettest.fiberlink.com 208.76.128.58 208.76.132.21 http://upload.fiberlink.com 72.21.0.0/16 22

Troubleshooting Basics Cloud Extender Requirements prior to Installation Documented in “Cloud Extender Requirements Cheat Sheet V3.doc” or a later doc Make sure customer got the required server versions running (Exchange 2007, 2010, Lotus Domino 8.5.2, etc.) Cloud Extender accounts for the servers need to have the correct rights settings (i.e. Organization Management Rights for Exchange 2010…) Specific SW components needs to be installed on the machine where cloud extender is running i.e. Exchange management tools or Power Shell Version 2 …. 23

Troubleshooting Basics Cloud Extender Requirements during Operation ..are the same as before installation Possible Issues Communication between Cloud Extender and MaaS360 is broken or not working properly  Cloud extender will be seen as offline in MaaS portal, Fiberlink OPS will see XMPP errors when trying to communicate whit the Cloud Extenders and will inform o2 helpdesk. Use refresh data action. Caused by Changes in the customers proxy setup New firewalls blocking traffic Routing issues to the internet DNS issues through the proxy server or direct New VLAN setup or changes to configuration Etc.. 24

Troubleshooting Basics Possible Issues Communication between Cloud Extender and Servers is not working as needed  No direct indication in MaaS today (!) Use test actions to proof operation Caused by: Different Protocol issues: LDAP, Powershell, other proprietary protocols may be filtered Routing and Switching issues ACLs in routers/routing switches or new firewall rules Changed VLAN structure / issues in new VLAN configuration Etc… 25

Troubleshooting Basics Possible Issues Admin Accounts are changed or deleted  No direct indication in MaaS today (!) Use test actions to proof operation Caused by: Changed rights of the admin accounts to perform required actions on the servers. Deleted admin account on a server 26

Troubleshooting Basics Possible Issues Required SW was uninstalled  MaaS Portal shows configuration status unchecked Caused by: Deleted Exchange Mgnt. Tools Upgraded Exchange Server version but not Exchange Mgnt. Tools Uninstalled .Net version Changed / wrong configuration on the Cloud Extender (typo?) Etc.. 27

Thank You Questions 28

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.