Implementing enterprise cloud scenarios with Microsoft cloud services and platform offerings Dipti Chhatrapti | Krunal Trivedi

Dipti Chhatrapati Manager @ Capgemini SharePoint – Office 365 Architect Microsoft Regional Director Active Contributor in Local/International speaking engagements Like Sports, Music and Cooking

Twitter: @TrainerKrunal CTO @ spanlabs; www.spanlabs.in Technical Consultant/Architect on various Microsoft Technologies since 10 years for IT MNCs like Accenture, JPMC, FIS, Wipro, Infosys, Cognizant, pwc, BOFA and …. Speaker for various Microsoft Conferences like NA MCT Summit (Seattle) , MS Ignite (Atlanta,Orlando) , GIDS (Great Indian Developer Summit) Krunal Trivedi www.techtrainingpoint.com Twitter: @TrainerKrunal

Agenda Traditional on-premises architecture Cloud offerings by Microsoft Workload deployments and Scenarios

But..We want to know first - Can you name the products by Microsoft which you can incorporates in your daily organizational need? Microsoft Office One – Drive for Business &…. 6

Traditional on-premises architecture

Traditional Global Organization Build 2012 1/13/2019 Traditional Global Organization © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Existing IT infrastructure Networking

On-prem Network Architecture

And, How it’s connected Identity

Cloud Offerings by Microsoft

Key elements of the Microsoft Cloud Networking Identity Security Management

Business needs and cloud offerings Office 365 – Primary personal and group productivity application in the cloud (SaaS) Adhere to regional regulatory requirements Dynamic 365 – Use cloud based customers and vendor management. Remove partner extranet from DMZ (SaaS), Office 365 Improve vendor and partner management Office 365, Intune/EMS, (SaaS), Power Platform Azure PaaS cloud-based apps to host sales and support docs, Cloud-based Mobile apps (PaaS) Improve mobile workforce productivity, device management Mobile applications are cloud-based rather than datacentre-based (PaaS) Reduce remote access infrastructure Office 365 (SaaS) Move archival and legacy systems to cloud-based servers, Migrate low-use apps and data out of on-premises datacentres (IaaS) Scale down on-premises datacentres Add temporary servers and storage for end-of-quarter processing needs (IaaS) Scale-up computing and storage resources for end-of-quarter process Business needs and cloud offerings

Networking

The NEW networking infrastructure

Azure Network close look -- 1

Azure Network close look - 2

And, App infrastructure Headquarter

There is an ExpressRoute Consistent performance for administration of distributed Azure PaaS apps Consistent performance for administration of servers in Azure IaaS

Path to cloud networking readiness Optimize employee computers Analyse internet utilization Analyse DMZ systems 1 2 3 Add ExpressRoute Create Azure Traffic manager Reserve private address 4 5 6

Identity

Federated authentication infrastructure

Directory synchronization for AD forest

Geographical distribution of authentication traffic

Redundancy for authentication

Subscriptions, licenses, and user accounts

Subscriptions, licenses, and user accounts Organization Subscription Licenses User accounts

Traditional Organization Subscription structure

Security

Security requirements in cloud Strong authentication to Cloud Resources Encryption for traffic across the internet Encryption for data at rest in the cloud ACLs for least priviledges

Data sensitivity classification Level 1: Low Business Value Data is encrypted and available only to authenticated users Level 2 : Medium Business Value Level 1 plus strong authentication and data loss protection Level 3 : High Business Value Level 2 plus the highest levels of encryption, authentication and auditing

Mapping cloud offerings to data levels

Path to cloud security readiness Optimize administrator account for the cloud Perform data classification analysis into three levels Determine access, retention and information protection policies for data levels

Office 365 security best practices Dedicated global administrator accounts Multi-factor authentication for important user accounts Secure email flow and mailbox audit logging Advanced Security Management Data Loss Protection

Windows 10 Enterprise and EMS

Windows 10 Enterprise Deployment

Office 365 ProPlus Deployment 1 2

Enterprise Mobility and Security

Enterprise Scenarios

Microsoft 365 Enterprise Workload

Scenario 1 : Moving historical transactional data Migrate Upgrade Analyse

Scenario 2 : Secure SharePoint Online team sites

Upcoming M365 sessions - Title Time Running SharePoint 2016 in Azure - The Do's and the Dont's 12:20 PM – 1:10 PM Deploying Enterprise Collaboration with Office 365 2:00 PM - 2:50 PM Power BI and SharePoint – the road ahead 2:55 PM - 3:45 PM

THANK YOU ! Please give us your feedback  Rate each session with SPS Events Portal from https://bit.ly/2DvoGMS