Il Service Pack 2 di Exchange Server dicembre :30 Alessandro Appiani MCT MCSE (2000 NT 4.0 NT 3.5)
Agenda Exchange Server 2003 Service Pack 2 news overview delle aree con funzionalità nuove o migliorate overview delle aree con funzionalità nuove o migliorate Approfondimenti mobile mobile protezione dallo spam protezione dallo spam storage & management storage & management Demo
PervasiveProductivity Mission Critical Dependability Operational Efficiency Improved Mobile Outlook Experience “Direct Push” experience“Direct Push” experience Device security policies & configurationDevice security policies & configuration Address book lookupAddress book lookup Integrates with Windows Mobile Messaging & Security Feature PackIntegrates with Windows Mobile Messaging & Security Feature Pack Improved spam protection Sender ID supportSender ID support Intelligent Message Filter (IMF) v.2Intelligent Message Filter (IMF) v.2 Identify and block “phishing” scamsIdentify and block “phishing” scams Improved mailbox fundamentals Better offline address book performanceBetter offline address book performance Public folder management and controlsPublic folder management and controls Cached mode connection enforcementCached mode connection enforcement Increased storage in standard editionIncreased storage in standard edition Exchange 2003: Service Pack 2
Mobile pervasive productivity
Improved Mobile Improved mobile Outlook experience Reduced bandwidth and latency Reduced bandwidth and latency Direct Push , calendar, contacts & tasks Direct Push , calendar, contacts & tasks Additional Outlook properties Additional Outlook properties GAL lookup GAL lookup New policy provisioning for devices Device password restrictions Device password restrictions Local device reset Local device reset Additional device and message security Certificate authentication Certificate authentication S/MIME S/MIME Remote device reset Remote device reset
Messaging and Security Feature Pack New Direct Push Technology keeps your Outlook Mobile up-to- date by delivering Inbox, Calendar, Contacts and Tasks information quickly and directly to your device New sync of the Outlook Mobile Tasks list with Exchange 03 SP2 Over-the-air lookup of the Global Address List (GAL) on Exchange 03 SP2 Helps to better protect devices Remotely manage and enforce select corporate IT policies over-the-air via Exchange 03 SP2 console Enable automatic reset of data when password is entered incorrectly X number of times Help to better protect device data with remote reset of on- device data Increase access security to Exchange 03 SP2 using Certificate-based Authentication to the server Help protect content with native support for S/MIME Enables more cost-effective mobile messaging Utilize existing Exchange 03 SP2 investments and reduce need for additional third party server product and client access license fees Easy-to-manage and easy-to-scale mobile messaging solution New GZIP data compression that optimizes data bandwidth and network latency Enhances the Outlook Mobile experience
Microsoft Windows Mobile Solution Microsoft Exchange Servers Corporate Application Servers Mobile Mail Server Mobile Mail Server Corporate Firewall Internet Wireless Networks Mobile Middleware Approach Operations Center Direct Push: Eliminating Barriers No Middleware Required Limited Device Set Choice of: Mobile Devices Laptops Web Access
Direct Push Process 4. If new mail arrives before heartbeat interval expires, Exchange 2003 notifies device that changes have occurred in the mail box 1. Device sends request to Exchange 2003 SP2 server 2. Exchange 2003 holds the request pending until heartbeat interval expires 5. Device immediately issues SYNC request to pull mail. Upon SYNC completion, go to step 1 3. If no mail arrives before heartbeat expires, device sends another Keep Alive request Windows Mobile Device with MSFP Server running Exchange 2003 SP2
Device Policy Configuration
Device security configuration
Enterprise Deployment Exchange Front End server Mailbox Server Internet (Cellular Networks) Wired line Wireless line Legend Wireless PDA HTTPS (443) Smart phone Wi-Fi PDA Wi-Fi Smart phone Internet (802.11x - hotspots) Wi-Fi PDA Wi-Fi Smart phone Wireless Intranet (802.11x) Corporate Network ISA 2004 Server (recommended) HTTPS (443) Outlook from home (rpc/http) OWA from kiosk or from home Wi-Fi Laptop Wi-Fi Laptop Upgrade the Front End Server to Service Pack 2 for direct push
Microsoft IT Scalability 106k User Mailboxes WW 4 Major World-Wide Hubs with Front- End Access for 106k mailboxes 4 Major World-Wide Hubs with Front- End Access for 106k mailboxes Approx 25% use mobile devices Approx 25% use mobile devices 2/3 use Smartphone 1/3 use Pocket PC Phone Edition 2/3 use Smartphone 1/3 use Pocket PC Phone Edition Windows Mobile and Exchange help MSIT do more with less 60k mailboxes in Redmond 60k mailboxes in Redmond In Redmond all mobile services for Exchange 2003 on 3 servers In Redmond all mobile services for Exchange 2003 on 3 servers 20,000 simultaneous HTTPs sessions per server (2x CPU, 2Gb RAM) 20,000 simultaneous HTTPs sessions per server (2x CPU, 2Gb RAM) 10K+ users/2M+ connections/month 10K+ users/2M+ connections/month Same servers are used also for Outlook Web Access (OWA) and RPC/HTTP Same servers are used also for Outlook Web Access (OWA) and RPC/HTTP IncreasedProductivity Better Return On Investment Lower TCO
GZIP Compression Reduces Size & Time- To-Sync Of Exchange Server Data GZIP data compression improves on size and time-to-sync GZIP data compression optimizes size of Exchange Server data before sending data down to device Significant savings in bandwidth and latency (speed) between Windows Mobile 2003 and Windows Mobile 5 Initial tests have shown up to 35% savings for Contact & Calendar and up to 60% in savings for Inbox/ E.g.: A user that used to get 10MB in using WM2003 can now get 4MB in using WM5 More optimized data size also reduce time device needs to sync by up to 40% Comparing compression performance for Exchange data Index = 100
Device And Server Requirements Mobile Device Requirements Requires a Windows Mobile 5 device MSFP will not work on devices with previous versions Future support from ActiveSync licensees 3 rd party devices & software Availability to be announced… Exchange Server Requirements Requires upgrade from Exchange Server 2003 to Exchange Server 2003 SP2 on Front End Server Only No major changes beyond SP upgrade Need to increase IIS and Firewall https connection timeout to the ActiveSync virtual directory Recommend 15min to 30min for timeout
Getting MSFP Via Upgrades MSFP will be rolled into Windows Mobile 5.0 AKU2 For devices shipping after AKU2, OEMs can pick up MSFP as part of normal AKU process For 5.0 devices already in market, OEMs can use Image Update to deploy MSFP For Windows Mobile 2003 SE devices already in market, OEMs can provide traditional ROM upgrades via ROM re-flash – complete upgrade to 5.0 required
Interdependencies FeatureRequires WM 5.0Requires Feature Pack Requires Exchange 2003 Sp2 Persistent StorageYesNo Synchronize TasksYesNoYes Browse GALYes Policy enforcementYes Remote WipeYes Local WipeYes Certificate based authentication Yes Pictures in Contacts YesNoYes Enhanced AUTDYes S/MIME SupportYes GZIP CompressionYes Connection cachingYes
Spam Protection Mission Critical Dependability
Service Pack 2 Improvements Mission Critical Dependability Improved Spam Protection Integrated Intelligent Message Filter (IMF) Identify and block more spam types Support for SenderID Improved Mobile Enhanced Outlook Mobile with Direct Push Support for device policy provisioning Device and message security Pervasive Productivity Improved Mailbox Fundamentals Increased storage limits Performance, management and controls Connection enforcement by type Operational Efficiency
Integrated Intelligent Message Filter Updated SmartScreen technology from MSN Updated SmartScreen technology from MSN Identify and block “ phishing ” Identify and block “ phishing ” Support for Sender ID Sender domain verification Sender domain verification Identifies “ spoofing ” and phishing Identifies “ spoofing ” and phishing ? ? Improved Spam Protection spam
Updated SmartScreen Technology Integrated Intelligent Message Filter Latest Filter Updates Latest Filter Updates User Interface updates to Exchange System Manager – Junk Filtering User Interface updates to Exchange System Manager – Junk Filtering Added Anti Phishing Technology Added Anti Phishing Technology
Anti Phishing Technology Integrated into SmartScreen Technology Transparent to administrators and end-users Transparent to administrators and end-users Phishing Confidence Level (PCL) Phishing Confidence Level (PCL) Weighted 1-8 (higher = more likely bad) Weighted 1-8 (higher = more likely bad)
Sender ID Framework (SIDF) Industry standard created to counter domain spoofing SIDF has been reviewed and submitted to the Internet Engineering Task Force for final review SIDF has been reviewed and submitted to the Internet Engineering Task Force for final review Combines Sender Policy Framework and Microsoft Caller ID for domain authentication framework that uses Sender Policy Framework (SPF) records in DNS as an authentication mechanism
One time: publish SIDF record in DNS using Sender Policy Framework (SPF) text file format One time: publish SIDF record in DNS using Sender Policy Framework (SPF) text file format No other changes required No other changes required message sent as normal message sent as normal Look up Sender’s SPF record in DNS Look up Sender’s SPF record in DNS Determine PRA or Mail From check Determine PRA or Mail From check Compare PRA to legitimate IPs in SPF record or Mail From check Compare PRA to legitimate IPs in SPF record or Mail From check Match positive filter input Match positive filter input No match negative filter input No match negative filter input Message transits one to many servers en route to receiver Message transits one to many servers en route to receiver Sender ID Framework (SIDF)
How Does Sender ID Work? 1. Senders publish IP addresses of outbound servers in DNS 2. Receiving Exchange Server determines domain of sender 3. Receiving Exchange Server checks DNS for sender’s domain for Sender ID record 4. If Sender ID record present, receiving server checks incoming IP against the list in the record
IMF & Sender ID
Improved Mailbox Fundamentals Operational Efficiency
Service Pack 2 Improvements Mission Critical Dependability Improved Spam Protection Integrated Intelligent Message Filter (IMF) Identify and block more spam types Support for SenderID Improved Mobile Enhanced Outlook Mobile with Direct Push Support for device policy provisioning Device and message security Pervasive Productivity Improved Mailbox Fundamentals Increased storage limits Performance, management and controls Connection enforcement by type Operational Efficiency
Improved Mailbox Fundamentals Standard Edition: 16G 75G storage limit Improved cached mode performance 30% size reduction of Offline Address Book (OAB) 30% size reduction of Offline Address Book (OAB) Reduced causes for full OAB download Reduced causes for full OAB download OAB indexing moved to the client OAB indexing moved to the client Public folder management and controls Administrative tasks and wizards Administrative tasks and wizards Folder deletion logging Folder deletion logging Replication control Replication control Connection controls and migration Cached mode connection enforcement Cached mode connection enforcement Supported GroupWise 6.x connector/migration tools Supported GroupWise 6.x connector/migration tools Iberian & Brazilian Portuguese OWA spell check
Storage settings & limits
Public Folder administration Storage event log & settings
Summary Exchange 2003 SP2 & Windows Mobile MSFP Lower cost direct push … give it to everyone, not just the boss! Lower cost direct push … give it to everyone, not just the boss! Integrated device security management Integrated device security management Exchange & Windows Mobile “better together” Exchange & Windows Mobile “better together” Improved Exchange experience Anti- “Phishing”, anti-spam innovations Anti- “Phishing”, anti-spam innovations Sender ID momentum Sender ID momentum Standard edition store limits Standard edition store limits Public Folder management enhancements Public Folder management enhancements
Riferimenti e risorse Exchange SP2 Sender ID: Mail-to Windows Mobile 5.0 with Messaging & Security Feature Pack gy/wm5exch03.mspx gy/wm5exch03.mspx gy/wm5exch03.mspx gy/wm5exch03.mspx
Riferimenti e risorse (Exchange) Exchange Home Exchange Italy Home Exchange Server TechCenter Exchange Server 2003 Technical Documentation Library Exchange Developer Documentation on MSDN Exchange Server 2003 Errors and Events Web Site e=Exchange%20Server%202003&ProdName=Microsoft%20Exchange&MajorMinor= e=Exchange%20Server%202003&ProdName=Microsoft%20Exchange&MajorMinor= e=Exchange%20Server%202003&ProdName=Microsoft%20Exchange&MajorMinor= 6.5 Exchange Support Center Exchange Downloads Exchange Server Community Center
Domande?
Feedback eu.microsoft.com/cui/WelcomePage.aspx?EventID = &culture=it-IT Live Meeting Web Changes directly made to this slide will not be displayed in Live Meeting. Edit this slide by selecting Properties in the Live Meeting Presentation menu.
© 2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.