Presentation is loading. Please wait.

Presentation is loading. Please wait.

HEPiX-HEPNT Fermilab, October 2002

Published byEdith Geisler Modified over 6 years ago

Similar presentations

Presentation on theme: "HEPiX-HEPNT Fermilab, October 2002"— Presentation transcript:

1 HEPiX-HEPNT Fermilab, October 2002
Exchange 2000 Pilot at CERN HEPiX-HEPNT Fermilab, October 2002 Frédéric Hemmer – CERN IT Division

2 Outline Motivations What is Exchange
Current Infrastructure and Architecture Tools developed (Demo) Security Remaining problems Next steps HepIX - October 2002 Frédéric Hemmer

3 Initial Motivations User requests for “shared” calendar
Delegation Secretary reading the Boss calendar to know where he/she is or his/her availability Secretary accessing the Boss calendar to manage his time Secretary and Boss both take appointments and want to avoid conflicts Sharing E.g. publishing software release schedules together with a collaboration schedules Replacement of Schedule+ Some part of divisions will not migrate to Windows 2000 without a shared agenda Traveling user requests Web Mail Access to mail and calendar from anywhere, without complicated setup Traveling user managing his time with the PDA, synchronizing with Outlook late in the evening and want the secretary to be up to date HepIX - October 2002 Frédéric Hemmer

4 Initial Motivations (II)
Cost reduction of mail service Hardware costs Largely based on (expensive) SUN’s Regular reminders for people to cleanup their mail folders to free up disk space Manpower costs Service run by a small number of highly skilled people Does not scale for LHC Era requiring a 24x7 coverage Secure the mail environment Mail password changes were not enforced With ADSL becoming more popular, password and data is crossing public networks in clear Virus checked at the smtp gateways only Started to investigate EOY 2001 Came up with the conclusion that Exchange 2000 might well do the job. So a pilot was proposed in 1Q2002. HepIX - October 2002 Frédéric Hemmer

5 What is Exchange ? Collaboration platform running on Windows 2000 integrating Mail Calendar Tasks News Public Folders Global Address Lists Workflows etc… HepIX - October 2002 Frédéric Hemmer

6 What is Exchange (II) ? Exposes the functions through formal or de facto standards: IMAP4, POP3 for mail Outlook, Pine, Netscape, Eudora, Evolution, etc... All platforms incl. Linux, PDA’s, etc. NNTP for News Netscape, Outlook Express, etc. All platforms Linux, etc. except PDA’s MAPI for mail, calendar, tasks, etc… Windows, Mac OS, PDA’s, not Unix/Linux Evolution (Linux) promises MAPI (Ximian connector for Exchange) Accessed thru Outlook HTTP for everything All platforms incl. PDA’s WebDAV (RFC 2518 draft standard) Currently Windows only, but this is changing ( SMTP for mail routing HepIX - October 2002 Frédéric Hemmer

7 Understanding Folders
Mailbox folders Public folders HepIX - October 2002 Frédéric Hemmer

8 Current Infrastructure
8 Servers 3 “Mailbox” stores 2 Public Folder Stores 2 Front-end servers 1 Spare IMAP (secure), POP (secure), MAPI and HTTP MAPI not yet open outside CERN Web Mail, Calendar etc. fully available and open thru secure HTTP ( IMAP/HTTP work with almost any client MAPI with Outlook on Windows/Mac Office XP recommended for collaborative features on Windows Not possible to switch Outlook 2000 from IMO to CW Allows for multi protocol Allows to revert to existing mail solution HepIX - October 2002 Frédéric Hemmer

9 Exchange 2000 Architecture
FireWall CERNXCHG01 SMTP Internet CERNXCHG02 CERN.CH Mailbox Stores CERNXCHG03 . http Imap(s), Pop(s) CERNXCHG0x mmm.cern.ch MAPI (135+…) https CERNXCHG05 CERNXCHG98 WebDAV + … IMAP, IMAPS (143,993) POP3, POP3S (110,995) HTTPS (80, 443) SMTP (25) CERNXCHG06 CERNXCHG99 Public Stores . . CERNXCHG0x CERNXCHG0x Frontend Servers Backend Servers HepIX - October 2002 Frédéric Hemmer

10 Yes but what if I’m not on Windows …?
Exchange limitations include No Mail forwarding Limited and slow migration tools Folder Permissions manipulation only with Outlook Send on behalf only from Outlook No real server side spam filtering Nothing to help better Outlook Users MAPI requires RPC (135) which can be a source of DoS Etc… So, we decided to investigate how to extend OWA and Outlook to provide missing or new features Demo HepIX - October 2002 Frédéric Hemmer

11 OWA – CERN Tools HepIX - October 2002 Frédéric Hemmer

12 forwarding HepIX - October 2002 Frédéric Hemmer

13 Send on behalf HepIX - October 2002 Frédéric Hemmer

14 Folder permissions HepIX - October 2002 Frédéric Hemmer

15 Instant Messaging HepIX - October 2002 Frédéric Hemmer

16 Instant messaging HepIX - October 2002 Frédéric Hemmer

17 Spam filtering HepIX - October 2002 Frédéric Hemmer

18 Access to News HepIX - October 2002 Frédéric Hemmer

19 Subscribing to news HepIX - October 2002 Frédéric Hemmer

20 CERN Tools in Outlook HepIX - October 2002 Frédéric Hemmer

21 Outlook AddIn HepIX - October 2002 Frédéric Hemmer

22 Securing Exchange 2000 Remove IMAP, POP protocols from offsite access
Need client reconfiguration Recent clients only (Mozilla, NS6, IE 5/6 OK) Others would needs to upgrade or use http MAPI access (Outlook) Disabled for offsite access Use it over a VPN Yes, but… as a minimum requires client configuration Security Officer does not like this Use ISA Servers HepIX - October 2002 Frédéric Hemmer

23 Exchange 2000 Architecture
RPC (135) ISA FireWall CERNXCHG01 SMTP Internet CERNXCHG02 CERN.CH Mailbox Stores CERNXCHG03 . http Imap(s), Pop(s) CERNXCHG0x mmm.cern.ch MAPI (135+…) https CERNXCHG05 CERNXCHG98 WebDAV + … IMAP, IMAPS (143,993) POP3, POP3S (110,995) HTTPS (80, 443) SMTP (25) CERNXCHG06 CERNXCHG99 Public Stores . . CERNXCHG0x CERNXCHG0x Frontend Servers Backend Servers HepIX - October 2002 Frédéric Hemmer

24 Still some problems … PINE Outlook Outlook Web Access Procmail
Pine IMAP preauthentication will not work anymore People will have to type their passwords for the session Pine 3.x does not see folders other than Inbox Pine 3.x does not support IMAPS Outlook Some attachments sent from pine are not seen in IMO (Q309493) Addresses lists handling is very clumsy in Outlook 2002 Offline access is slow when not used correctly Outlook Web Access Rather slow over a modem OWA delegated calendar only read (but not if admin rights!) Procmail No clear upgrade for procmail apart for simple server side rules Exchange Backup (or rather Restore) is complicated and difficult to automate Currently every store is backed up mightly as a PST file But this does not scale Titanium may help Defragmentation seems to be required (although does not free very much) and needs service interruption. HepIX - October 2002 Frédéric Hemmer

25 Exchange 2000 user base 183 Exchange :05:12 PM - Tuesday, October 22, 2002 HepIX - October 2002 Frédéric Hemmer

26 Next Steps Migrate users from our oldest SUN
Users not willing to move will be migrated to another SUN Adapt registration tools to create new users in Exchange 2000 Under way – first user done yesterday Devise a plan for global migration to Exchange 2000 HepIX - October 2002 Frédéric Hemmer

27 Summary For the user For IT
Exchange 2000 could give opportunity to long outstanding requests: Mail, Calendar and more Web access to most of the features Does not rely on any particular client (browser >= 4) and allowing group collaboration e-groups and “groupware” For IT While taking into account the constant search for economy Maintenance/Server replacement at least 30% cheaper (per year) assuming users And address manpower issues by consolidating on a platform that we have to support anyway reducing diversity requires less specialization mail expertise currently limited to two individuals could expand to 7-8 persons as well as potential integration of other products/security features An opportunity for offering more services & coverage for a global reduced cost Even better, end user feedback has been very positive HepIX - October 2002 Frédéric Hemmer

Download ppt "HEPiX-HEPNT Fermilab, October 2002"

Similar presentations

Managing Incoming Email Chapter 3 Bit Literacy. Terminology Email client – program which retrieves emails from a mail server, lets you read the mails,

Managing Incoming Chapter 3 Bit Literacy. Terminology client – program which retrieves s from a mail server, lets you read the mails,
CERN - European Organization for Nuclear Research Exchange 2000 Pilot at CERN HEPiX-HEPNT Fermilab, October 2002 Frédéric Hemmer Frédéric Hemmer – CERN.

CERN - European Organization for Nuclear Research Exchange 2000 Pilot at CERN HEPiX-HEPNT Fermilab, October 2002 Frédéric Hemmer Frédéric Hemmer – CERN.
IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – 6.0.1 Domino Access for MS Outlook - Notes Domino.

IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – Domino Access for MS Outlook - Notes Domino.
How Clients and Servers Work Together. Objectives Web Server Protocols Examine how e-mail server and client software work Use FTP to transfer files Initiate.

How Clients and Servers Work Together. Objectives Web Server Protocols Examine how server and client software work Use FTP to transfer files Initiate.
Collaborative tools in NICE Alex Lossent - CERN IT/IS Hepix Fall 2005.

Collaborative tools in NICE Alex Lossent - CERN IT/IS Hepix Fall 2005.
Exchange server 2003. Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
Introduction to UTORexchange For IT support providers.

Introduction to UTORexchange For IT support providers.
Exchange deployment at CERN and new ideas for SPAM fighting Michel Christaller, Emmanuel Ormancey, Alberto Pace.

Exchange deployment at CERN and new ideas for SPAM fighting Michel Christaller, Emmanuel Ormancey, Alberto Pace.
Microsoft Exchange Exchange is more than just Electronic Mail The server that embraces Internet standards and extends rich messaging and collaboration.

Microsoft Exchange Exchange is more than just Electronic Mail The server that embraces Internet standards and extends rich messaging and collaboration.
E-mail-I CS-3505 Wb_e-mail-I.ppt. Email 4 The most useful feature of the internet 4 Lots of different email programs, but most of them can talk to each.

-I CS-3505 Wb_ -I.ppt. 4 The most useful feature of the internet 4 Lots of different programs, but most of them can talk to each.
CT NIKHEF Nov 2003 1 Mail NIKHEF CT system support.

CT NIKHEF Nov Mail NIKHEF CT system support.
Winter 2005-2006 Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.

Winter Consolidated Server Deployment Guide for Hosted Messaging and Collaboration version 3.5 Philippe Maurent Principal Consultant Microsoft.
Securing Exchange Server 2003. Session Goals: Introduce you to the concepts and mechanisms for securing Exchange 2003. Examine the techniques and tools.

Securing Exchange Server Session Goals: Introduce you to the concepts and mechanisms for securing Exchange Examine the techniques and tools.
IT:Network:Applications Fall 2009.  Running one “machine” inside another “machine”  OS in Virtual machines sees ◦ CPU(s) ◦ Memory ◦ Disk ◦ USB ◦ etc.

IT:Network:Applications Fall  Running one “machine” inside another “machine”  OS in Virtual machines sees ◦ CPU(s) ◦ Memory ◦ Disk ◦ USB ◦ etc.
Section 6.1 Explain the development of operating systems Differentiate between operating systems Section 6.2 Demonstrate knowledge of basic GUI components.

Section 6.1 Explain the development of operating systems Differentiate between operating systems Section 6.2 Demonstrate knowledge of basic GUI components.
TNQ101-10. Microsoft Exchange Server ® 2000: Microsoft Outlook ® Web Access John Gardner Cyberstreams, Inc. John Gardner Cyberstreams, Inc. Portland,

TNQ Microsoft Exchange Server ® 2000: Microsoft Outlook ® Web Access John Gardner Cyberstreams, Inc. John Gardner Cyberstreams, Inc. Portland,
 2:00 pm - 2:15 p.m. ◦ Intro, Welcome and Overview of Agenda  2:15 p.m. - 3:00 p.m. – Admin Training ◦ Introduction to Live at EDU and roadmap.

 2:00 pm - 2:15 p.m. ◦ Intro, Welcome and Overview of Agenda  2:15 p.m. - 3:00 p.m. – Admin Training ◦ Introduction to Live at EDU and roadmap.
Chapter 7: Using Windows Servers to Share Information.

Chapter 7: Using Windows Servers to Share Information.
SCO Insight Connector Training. The SCO Insight Connector  Product Overview  Technical Specifications  Installation  Using the Components  Target.

SCO Insight Connector Training. The SCO Insight Connector  Product Overview  Technical Specifications  Installation  Using the Components  Target.

Similar presentations

Ads by Google