Hybrid SharePoint DeploymentsTHOMAS VOCHTEN
@THOMASVOCHTEN
SPONSORS
Thomas Vochten
Office Server & Services MVPPlatform architect with a thing for
SharePoint. Speaker. Trainer. Involuntary DBA. Architect at Xylos.
@thomasvochtenhttp://[email protected]
Agenda• Business Drivers for Hybrid• Prerequisites for hybrid topologies• Hybrid Search• Hybrid OneDrive & Sites
Acknowledgement / Credits
Donald Hessing (@dhessing)Neil Hodgkinson (@nellymo)
Manas Biswas
Opportunity!
or Threat?
Innovation is cloud-first
Why Hybrid?• SharePoint on-premises is complicated (think Extranets)• Take advantage of cloud offerings (think OneDrive)• Take advantage of cloud innovations (think Delve)• Keep special data and applications on-premises (think
farm solutions)• Prepare their minds for the cloud (think culture shift)
Practical drivers• Business is urgently requesting to move to SharePoint
Online, but can’t wait for a full migration• Some application can’t be migrated to SharePoint
Online• Adopting OneDrive for business and leveraging the low
costs for storage in SharePoint Online• Some sensitive content needs to stay on-premises• Publishing external data sources to SharePoint Online• Mergers and acquisitions• …..
END-USER WALKTHROUGH OF BASIC HYBRID FUNCTIONALITIES
PREREQUISITES FOR HYBRID
Minimum Requirements for Hybrid Topologies• Good bandwidth, low latency and reliable Internet connectivity• Office 365 Enterprise Subscriptions• SharePoint Server 2013/2016• SharePoint Admin account for on-premises• Tenant Admin account for Office 365• Required service applications
• Service Apps for On-Premises• Subscription Settings Service• User Profile Service• Search Service• App Management
Identity Management
Cloud Identity
Single identity in the cloud Suitable for small organizations with no
integration to on-premises directories
Directory & Password Sync*
Single identitysuitable for medium
and large organizations without federation*
On Premises Active Directory
Federated Identity
Single federated identity
and credentials suitable
for medium and large organizationsOn Premises Active
Directory
On Premises Identity
Domain based identity solution suitable for all
organizations
• Synchronized with password or federated identities
• Internet routable AD domain (Name)
Is the “New Hybrid” One-Way?• Redirecting the user to Office
365• OneDrive• Sites• Cloud Search Service
Application• Query federation to SharePoint
Online
• Cloud Driven Hybrid Picker
Advantages of the “New Hybrid” topology• Relative easy to configure• Supported with Wizards / One Click Deployments• No need for certificates, reverse proxy, public IP
Address, DNS• Works with SharePoint 2013 SP1 (aug. CU 2015) and 2016
RTM• New hybrid scenario’s can easily be added to On-
Premises
HYBRID SEARCH PAST AND FUTURE
Query FederationHybrid Search - The Past
What’s the problem with query federation?• Complex to setup• Requires a complete
Search Service Application• Separate result blocks• Without ranking and
relevance integration• No refiners
Query Federation Topology
Federated search resultsPrimary web app
SharePoint Online
InternetMicrosoft data center Intranet
Federated search results Site collection
Office 365 tenant
SharePoint
SharePoint Online can query SharePoint Server
• Search: Bidirectional • Business Connectivity Services: Supported• Duet Enterprise for SharePoint and SAP: Supported
SharePoint Server 2013
SharePoint Server can query SharePoint Online
Inbound
On-premises SharePoint Server 2013 Enterprise Search portal and SharePoint Online search portal: Local and remote search results are available. If extranet authentication services are configured, extranet users can log in remotely through an on-premises Active Directory account and use all available hybrid functionality.
Perimeter network
Customer network
Outbound
Picture: © Microsoft
Cloud Search Service ApplicationHybrid Search – The Future
What’s it about?• Crawl on-premises• Query online• A single search index• No separate result blocks!
Use CasesCloud Search Service Application
Distributed farms
Archiving and migrations
eDiscovery and Compliancy eDiscovery and Compliancy are
search driven solutions Single index in Online opens
eDiscovery and Compliancy solutions across Online and On-Premises content
Make sure you are logged in with an account that has access to the on-prem content sources
ArchitectureCloud Search Service Application
Crawling
Querying
Setup & ConfigurationCloud Search Service Application
Get it workingStep 1 - Create a new search service application
Get it workingStep 2 - Run the onboarding script
Topology and Sizing
Topology and Sizing
Get it workingStep 3 - Start a crawl
Get it workingStep 4 - Configure Default Result Source
Get it working
Get it workingStep 5 - Test Basic Querying
HYBRID ONEDRIVE & SITES
Hybrid features for each configuration
Hybrid OneDrive
What does it provide?• OneDrive redirection• User Profile Redirection
What it is not?Redirect from Online to On-PremisesUser Profile Synchronisation or Import from On-Premises
You might want to migrate additional properties that are not synced by AAD ConnectUser Profile Batch Update APIhttp://thvo.me/pnpuserupdate
Hybrid Sites Feature
What does it provide?• Hybrid OneDrive• User Profile Redirect+ Sites that you follow on-prem appear in the Sites App of Office 365+ App Launcher integration
What it is not?• Nothing to do with the Site itself!
• Provisioning of on-premises or online sites• A site that is spread across on-prem and in online
Configuration
Hybrid Configuration Wizards
Hybrid Picker – Overview On-premises Farm & O365 Tenant Admin
Picture: © Microsoft
Hybrid Configuration Wizards
•Logon with the farm admin account•Start the wizards (ClickOnce)•Configures trust between on-prem and SPO•Perform an IISReset•Configure options in on-prem
On-Prem Configuration
On-Prem Configuration
Summary• Hybrid is the future, but• Think about your requirements• Identity Management is key• Start experimenting with hybrid search now!• SharePoint 2016 is the way to go, but• SharePoint 2013 is also possible• More hybrid investments are coming!
QUESTIONS?
thank youquestions?
live ratingsTHOMASVOCHTEN.COM@THOMASVOCHT
EN
spca.biz/nmcz