Presentation is loading. Please wait.

Presentation is loading. Please wait.

Develop Enterprise Communication with Live Communications Server 2005.

Published byKristian Winfred Bell Modified over 9 years ago

Similar presentations

Presentation on theme: "Develop Enterprise Communication with Live Communications Server 2005."— Presentation transcript:

1 Develop Enterprise Communication with Live Communications Server 2005

2 Active DirectoryActive Directory DNSDNS PKIPKI SQLSQL Level 300 Prerequisite Knowledge

3 Agenda Overview of Live Communications Server 2005Overview of Live Communications Server 2005 Differences in versions and editionsDifferences in versions and editions Server RolesServer Roles Preparing Active DirectoryPreparing Active Directory Deploying and Managing ServerDeploying and Managing Server Active Directory TopologyActive Directory Topology Telephony TopologyTelephony Topology Remote Access TopologyRemote Access Topology Federation TopologyFederation Topology Remote Call Control TopologyRemote Call Control Topology Archiving TopologyArchiving Topology

4 Live Communications Server 2005 Real-Time Collaboration Capabilities Encryption and authentication Meet regulatory commitments Logging and Reporting SharePoint Portal Microsoft Office Programs Telephony Windows Active Directory Exchange Server Connect with other businesses Public IM networks Remote Users Find Subject Experts Enable real-time decision making Reduce email storage Reduction in VPN/RAS Reduction in phone use Integration Reduce Cost Connect People Keep Data Safe

5 Overview Enterprise Instant MessagingEnterprise Instant Messaging Uses SIP (Session Initiation Protocol)Uses SIP (Session Initiation Protocol) Uses TLS (Transport Layer Security)Uses TLS (Transport Layer Security) Both SMB and Enterprise SolutionsBoth SMB and Enterprise Solutions –LCS 2005 Standard Edition –LCS 2005 Enterprise Edition Integrated with the Office SystemIntegrated with the Office System –Office 2003 –SharePoint –Live Meeting Integrated with Active DirectoryIntegrated with Active Directory

6 Secure Manageable Extensible Connected Enterprise Grade Windows AD IntegrationWindows AD Integration Transport Layer Security (TLS) connectionsTransport Layer Security (TLS) connections Audio/Video privacy using RTP/LCP encryptionAudio/Video privacy using RTP/LCP encryption Kerberos and NTLM for client authenticationKerberos and NTLM for client authentication Familiar Windows based management tools – WMI/MMC/MOMFamiliar Windows based management tools – WMI/MMC/MOM Manage users, servers, and global settingsManage users, servers, and global settings Group policy object support for a controlled rolloutGroup policy object support for a controlled rollout SDK for Clients and Servers enable the building of compelling apps and solutions – creating a broad ecosystemSDK for Clients and Servers enable the building of compelling apps and solutions – creating a broad ecosystem Supporting a Store, Registrar, and a high-end Presence EngineSupporting a Store, Registrar, and a high-end Presence Engine Access to the SIP routing engineAccess to the SIP routing engine Encrypted and managed enterprise to enterprise LCS FederationEncrypted and managed enterprise to enterprise LCS Federation Managed connectivity to public IM clouds (MSN, AOL, Yahoo)Managed connectivity to public IM clouds (MSN, AOL, Yahoo) IT administered “Safe User Lists” to control external connectivityIT administered “Safe User Lists” to control external connectivity Remote User Scenario – No VPN requiredRemote User Scenario – No VPN required Distributed, two-tiered architecture for scale and fault toleranceDistributed, two-tiered architecture for scale and fault tolerance SQL Server storage for clustering and disaster recovery supportSQL Server storage for clustering and disaster recovery support Scalable deployment with new topologies “pool architecture”Scalable deployment with new topologies “pool architecture” SAN supportSAN support Live Communications Server 2005

7 Differences in Version

8 LCS 2003 IM and presence Standard EditionIM and presence Standard Edition Standards protocols (SIP and SIMPLE)Standards protocols (SIP and SIMPLE) Controlled SIP namespaceControlled SIP namespace EncryptionEncryption Centralized managementCentralized management Integration with Active DirectoryIntegration with Active Directory Integration with Microsoft Office 2003Integration with Microsoft Office 2003 Archiving – logging of messagesArchiving – logging of messages Customizable client using XMLCustomizable client using XML

9 LCS 2005 Enterprise EditionEnterprise Edition High availabilityHigh availability Remote user accessRemote user access Direct FederationDirect Federation Clearing houseClearing house Active Directory topology support:Active Directory topology support: –Resource forest –Central forest –Multi-tree forest

10 LCS 2005 SP1 Enhanced FederationEnhanced Federation PIC – public IM connectivityPIC – public IM connectivity Remote call controlRemote call control Address Book ServiceAddress Book Service

11 Differences in Editions

12 Standard vs Enterprise Edition Single computer configurationSingle computer configuration MSDEMSDE Single point of failureSingle point of failure Max 15,000 active usersMax 15,000 active users Multiple computer configurationMultiple computer configuration SQL serverSQL server No single point of failureNo single point of failure Max 125,000 active users per poolMax 125,000 active users per pool High availabilityHigh availability SQL clusteringSQL clustering

13 Server Roles Standard Edition ServerStandard Edition Server DirectorDirector Enterprise PoolEnterprise Pool –Hardware Load Balancer –Front-End Servers –SQL Back-End Server Access ProxyAccess Proxy Branch ProxyBranch Proxy Archiving ServiceArchiving Service

14 Standard Edition Server Single computer installationSingle computer installation Supports up to 15k active usersSupports up to 15k active users User’s data stored in MSDEUser’s data stored in MSDE Acts as a Director when no users are homed on itActs as a Director when no users are homed on it Director proxies external SIP connections to the user’s server or poolDirector proxies external SIP connections to the user’s server or pool

15 Enterprise pool Multiple computer installationMultiple computer installation Supports up to 125k active usersSupports up to 125k active users Requires hardware load balancerRequires hardware load balancer User’s data stored in SQLUser’s data stored in SQL Provides fault tolerance through redundant front-end serversProvides fault tolerance through redundant front-end servers Supports clustering of SQL back-end serverSupports clustering of SQL back-end server

16 Access Proxy Deployed in the network perimeterDeployed in the network perimeter Hardened against security attacksHardened against security attacks Terminates TLS and MTLS connectionsTerminates TLS and MTLS connections Controls Federation and Remote Access settingsControls Federation and Remote Access settings Corporate Network Internet Firewall Firewall Load balancer

17 A Example of LCS2005 Topology

18 Preparing Active Directory 1.Extending the Schema 2.Running Forest Prep 3.Running Domain Prep 4.Running Domain Add Prep

19 Schema Extensions Schema extensionSchema extension –7 new classes –22 new attributes Causes Windows 2000 Global Catalogs (GC) to rebuildCauses Windows 2000 Global Catalogs (GC) to rebuild

20 Schema Extensions Objects: UserUser ContactContact Attributes: msRTCSIP-PrimaryUserAddressmsRTCSIP-PrimaryUserAddress msRTCSIP-UserEnabledmsRTCSIP-UserEnabled msRTCSIP-TargetHomeServermsRTCSIP-TargetHomeServer msRTCSIP-OriginatorSIDmsRTCSIP-OriginatorSID msRTCSIP-PrimaryHomeServermsRTCSIP-PrimaryHomeServer msRTCSIP-FederationEnabled (LCS2005)msRTCSIP-FederationEnabled (LCS2005) msRTCSIP-InternetAccessEnabled (LCS2005)msRTCSIP-InternetAccessEnabled (LCS2005) msRTCSIP-ArchivingEnabled (LCS2005)msRTCSIP-ArchivingEnabled (LCS2005) msRTCSIP-OptionFlags (SP1)msRTCSIP-OptionFlags (SP1) msRTCSIP-Line (SP1)msRTCSIP-Line (SP1) msRTCSIP-LineServer (SP1)msRTCSIP-LineServer (SP1) msRTCSIP-UserExtensionmsRTCSIP-UserExtension

21 Schema Extensions Objects: ComputerComputer Attributes: msRTCSIP-EnterpriseServerSettingsmsRTCSIP-EnterpriseServerSettings msRTCSIP-EnterpriseServicesmsRTCSIP-EnterpriseServices msRTCSIP-PoolAddress (LCS2005)msRTCSIP-PoolAddress (LCS2005) msRTCSIP-ServerDatamsRTCSIP-ServerData

22 Schema Extensions Objects: PoolPool Attributes: msRTCSIP-PoolDisplayName (LCS2005)msRTCSIP-PoolDisplayName (LCS2005) msRTCSIP-BackEndServer (LCS2005)msRTCSIP-BackEndServer (LCS2005) msRTCSIP-PoolType (LCS2005)msRTCSIP-PoolType (LCS2005) msRTCSIP-PoolVersion (SP1)msRTCSIP-PoolVersion (SP1) dnsHostName (LCS2005)dnsHostName (LCS2005) msRTCSIP-PoolDatamsRTCSIP-PoolData msRTCSIP-PoolService (LCS2005)msRTCSIP-PoolService (LCS2005) msRTCSIP-FrontEndServers (LCS2005)msRTCSIP-FrontEndServers (LCS2005)

23 Forest Prep Run once per forestRun once per forest Run on the root domainRun on the root domain Creates global settingsCreates global settings

24 Domain Prep Run on every domain hosting LCSRun on every domain hosting LCS Creates new domain groupsCreates new domain groups –RTCDomainServerAdmins –RTCDomainUserAdmins –RTCHSDomainServices Sets permissions forSets permissions for these accounts at the root domain

25 DomainAdd Prep Cross domain administrationCross domain administration Child domain access to Enterprise ObjectsChild domain access to Enterprise Objects Hosting users from other domainsHosting users from other domains Run onRun on –Root domain –User only domains Gives permissions to the following groupsGives permissions to the following groups –RTCDomainServerAdmins to home users –RTCHSDomainServices to read user attributes

26 Asking to Extend Schema

27 Piloting Live Communications Server Corporate Forest

28 Permissions RTCDomainUserAdminsRTCDomainUserAdmins –Global Security Group –Must be a member to administer users across domains RTCDomainServerAdminsRTCDomainServerAdmins –Global Security Group –Used to administer servers across domains RTCHSDomainServicesRTCHSDomainServices –Global Security Group –Must be a member to install and activate servers

29 Deploying and Managing Live Communications Server 2005 demonstration demonstration

30 Management Capabilities Highly available Meet regulatory commitments Logging and Reporting Integration by extending AD Performs authentication Performs authorization Active Directory Users and Computer snap-in Admin Tools Performance monitoring Wizard based tasks WMI interface for scripting Enable real-time monitoring Management pack available Active Directory MOM MMC / WMI SQL

31 Server and Server Pool Management List of Technical Documentation Task pane Live Communications Server 2005 Administration – Resource View

32 Live Communications Server 2005 Administration – Performance View

33 Active Directory Topology Single ForestSingle Forest –Multiple Domains –Multi-Tree Forest Multiple ForestsMultiple Forests –Resource Forest –Central Forest

34 Resource Forest Disabled users

35 Central Forest MIIS contacts

36 Telephony Topology

37 SIP to PSTN SIP/PSTN gateway PBX SIP Proxy MTLS Static route SIP PSTN

38 Remote Access Topology

39 Remote User DMZ Access Proxy PoolDirector MTLS TLS Firewall: port 443 or 5061 AD (NTLM challenge)

40 Federation Topology DirectDirect EnhancedEnhanced Public Instant Messaging ConnectivityPublic Instant Messaging Connectivity Clearing houseClearing house

41 Access Proxy Pool MTLS AD Direct Federation Enterprise A Enterprise B MTLS DNS Pool Access Proxy MTLS AD

42 Enhanced Federation Go from this in LCS 2005…to this with SP1!

43 Enhanced Federation 1.Is Supplier.com in the block list? NO 2.Look-up SIPFederationTLS._TCP.supplier.com –Verify that AP name matches domain name 3.Establish MTLS connection and verify certificate SN Supplier Joe DNS Contoso MTLS Bob

44 Public Instant Messaging Connectivity With MSN, AOL, Yahoo Enterprise A LCS Client LCS 2005 Access Proxy SIP Proxy LCS 2005 Access Proxy LCS Client LCS 2005 Access Proxy A top customer-requested scenarioA top customer-requested scenario Brings together corporate IM and public IMBrings together corporate IM and public IM No 3rd party gateways/software requiredNo 3rd party gateways/software required One desktop clientOne desktop client LCS Client

45 Clearing house Routing table on the AP: DomainNext hop DomainNext hop Default route:AP.Clear Block:D.com Block:D.comG.com Clearing house Contoso D E F

46 Summary Considerations before deployingConsiderations before deploying –Active Directory infrastructure –Geographic distribution of users –Network bandwidth between geographies Feature requirementsFeature requirements Up-timeUp-time

Download ppt "Develop Enterprise Communication with Live Communications Server 2005."

Similar presentations

Unified Communications Bill Palmer ADNET Technologies, Inc.

Unified Communications Bill Palmer ADNET Technologies, Inc.
Microsoft Office Live Communications Server 2005: In Close Up Ilse Van Criekinge Exchange Trainer & Consultant (Azlan Training) 

Microsoft Office Live Communications Server 2005: In Close Up Ilse Van Criekinge Exchange Trainer & Consultant (Azlan Training) 
Key Elements to Deploying OCS. Where to Start  OCS can seem to require an awful lot of servers _ Edge, Director, Front End, SQL, Monitoring, SQL, Archiving,

Key Elements to Deploying OCS. Where to Start  OCS can seem to require an awful lot of servers _ Edge, Director, Front End, SQL, Monitoring, SQL, Archiving,
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Exchange server 2003. Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Unified. Simplified. Unified Communications Launch 2007.

Unified. Simplified. Unified Communications Launch 2007.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.
Understanding Active Directory

Understanding Active Directory
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.

11 SYSTEMS ADMINISTRATION AND TERMINAL SERVICES Chapter 12.
Winter 2005-2006 Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.

Winter Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.
Microsoft ® Lync™ Server 2010 Edge Server/Remote Access Module 16 Microsoft Corporation.

Microsoft ® Lync™ Server 2010 Edge Server/Remote Access Module 16 Microsoft Corporation.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.

Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Presence Applications in the Real World Patrick Ferriter VP of Product Marketing.

Presence Applications in the Real World Patrick Ferriter VP of Product Marketing.
Managing Client Access

Managing Client Access
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Similar presentations

Ads by Google