2. OBJECTIVES Well take a look at the Hybrid and Service-Only variants of SmartCloud Notes, and walk through the migration process. Well dive into the architecture of a SmartCloud Notes Hybrid environment and examine the migration process that takes you from here to there Well see how you can integrate the SmartCloud Connections and SmartCloud Meetings services with your Lotus Notes client. And well look at two ways to connect your Active Directory to SmartCloud, to automate user management and provide single sign-on.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 2 2 3. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 3 3 4. ABOUT ME @rupertclayton 19 years of Notes admin Started with Notes 3.0 onOS/2 and Windows 3.1 Instructor IBM Business Partner in UK Published author Notes/Domino consulting With CDW since 2008 Implementation engineer in Chicago National pre-sales solutions architect for IBM Collaboration Solutions based in San Francisco 18 months as IBM and creator of high-qualitySmartCloud Design Partner monitor standsCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.44 5. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 5 5 6. WHAT IS IBM SMARTCLOUD FOR SOCIAL BUSINESS? Social collaboration File sharing Integrated collection of Communities collaboration capabilities Activity management Makes it easier to work with people inside and outside your company Proven to help small/medium companies grow their business Sold as a online subscription, runs in a browser Designed with multi-layer security, high availability and disaster recovery Enterprise-grade e-mail Web meetings Calendaring Online events A multi-tenant SaaS offering Contacts Instant messaging TasksCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 6 6 7. SMARTCLOUD SOCIAL BUSINESS PORTFOLIOEngage Bundle Plans Stand-Alone Services Service Add-Ons The easy way to buy. Engage plansFor ultimate customization. For extended capability. combine la carte and add-ons into la carte offerings let you mix andAdd-ons provide additional common packages at a single price. match servicesfeatures to meet client needs.Premium $14 (Q4)iNotes $3IBM Docs $4*Everything in Advanced + IBM Docs Essential web mail, calendar andcontacts, with POP3 and IMAPMESSAGINGAdditional add-ons: Storage, Archive,Traveler for Notes $2BlackberryNotes $5Everything in Notes Entry + desktopBlackBerry $5Advanced $10client, 25GB inboxEverything in Standard + Notes + Extra Storage $5/GBTraveler Notes Entry $3.75 Web mail, calendar, contacts, and IM,Available add-ons: IBM Docs*,1GB inboxStorage, Archive, BlackBerry Archive Essentials $4COLLABORATIONMeetings $5/$29**All pricing is per user, per month. Standard $8App and screen share, mobile Connections + Meetings +Volume discounts available. Web Forms + Web chat + Mobile IM * These services available soonConnections $6 Available add-ons:** $5 is for Lotus customers andFiles, viewers*, profiles, activities, up to 200 attendees; $29 is for IBM Docs*, Storage, Traveler communities, dashboard, IM (client up to 24 attendees for non-Lotusand web*), no-charge mobile app* customersCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 7 7 8. WHAT IS IBM SMARTCLOUD ENGAGE? Bundled offering: Powerful collaboration tools + web meetings Work where you want: Smart phone, browser, tablet or rich client Easily work with people outside your company with no added cost PeopleCommunities ActivitiesFiles MeetingsEvents ChatSurvey Forms All for $8/user/monthCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 8 8 9. IBM SMARTCLOUD MEETINGS Full-featured video- enabled web meetings Save travel time and money by meeting online Audio bridging Meeting recording Zero download for attendees Participant chat and Host and attend unlimited meetings for survey polls unlimited minutes & up to 199 attendees Capture and assign Share slides, apps or whole screen activities for later follow-up Share files from your machine or from SmartCloud FilesCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 9 9 10. COMMUNITIES IN SMARTCLOUD ENGAGE Enable teams to work together more effectively Bring people together in a central place to collaborate on projects or topics Hosted discussion forums, file sharing, task management, shared bookmarks and more Works with a browser Great for cross-company collaboration No special Include participants from your customers, software to installsuppliers and partners at no chargeCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 10 10 11. FILE SHARING IN SMARTCLOUD ENGAGE Stop the madness of emailing files for sharing and collaboration Eliminate confusion over who has the latest version Keep control over your companys confidential informationCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 11 11 12. EXTEND BUSINESS VALUE WITHTHIRD-PARTY INTEGRATIONOpen API environment for seamless integration of third-party business services intoIBM SmartCloud Collaborate with partnersUse Meetings, Files, andProjExec Live delivers intuitive, and customers from withinActivities from within themobile-friendly project management the CRM environment. Salesforce CRM environment. and helps enable effective collaboration on projects of any size. Easily launch intoOnline collaborationEasily create, reviseTeamPoint tracks and conversations withbetween buyers andand sign documents manages controlled your contacts right sellers of goods and from SmartClouddocuments to support servicesregulatory andstandards compliance.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.1212 13. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 13 13 14. WHY IS IBM SMARTCLOUD A BETTER CLOUD? Social business vision: Not just mail, files and conferencing inthe cloud, but a true social collaboration environment to poweryour business. Free guest accounts: Easy to collaborate with people outside ofyour company at no added cost. Invite unlimited guests tocollaborate and they get access to all services. Guest accountsnever expire. Profile and contacts: Connect with colleagues, business partnersand customers and build project teams inside and outside of yourcompany. Communities: Create social sharing spaces to collaborate andinnovate on anything. Dashboard: Central place to access all collaboration services. Economical: Less than half the price of most competitivecollaboration software for businesses.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 14 14 15. WHAT MAKES SMARTCLOUD A BETTER CLOUD? Strong support for open standards CalDAV CardDAV RSS AtomCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.1515 16. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 16 16 17. IBM SMARTCLOUD MESSAGING OPTIONS iNotes Essential mail, calendar and contact management Web and POP3/IMAP access only Notes Service-Only Full-featured mail, calendar and contact management Rich-client (Lotus Notes), web and mobile device access Hosted customers are completely contained in IBM SmartCloud Notesinfrastructure Administration entirely through IBM SmartCloud browser user interface Notes Hybrid All the features of Service-Only Integrates with your on-premises environment More seamless transition for Notes customersCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.1717 18. IBM SMARTCLOUD INOTES FEATURES 25 GB storage IBM SmartCloud iNotes IBM SmartCloud iNotes Mail Calendar Web, POP3 and IMAP support Web and CalDAV access Mobile via IMAP IDLE or POP3 Calendar sharing withcolleagues Admin-managed taglines for disclaimers, marketing, etc. Admin tools Built-in anti-spam and anti- Per user: view quota usage, virus controls empty trash, manage aliases,forward mail, edit corporate IBM SmartCloud iNotescalendar Contacts Personal directory Transend tool for Mail, Calendar and Contacts migration CardDAV access for contacts $3/user/month Corporate directory (web admin) Corporate directory import/export and sync Distribution listsCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.1818 19. IBM SMARTCLOUD NOTES FEATURES Cloud-based Domino Mail, Calendar, Contacts and IM/Presence Multi-tenant mail and directory service (25GB mailbox) Lotus Notes client or browser access via IBM SmartCloud Notes web Delivered via the internet (no VPN required) Available by subscription, US $5 per user per month No minimum purchase amount Seamless transition to the cloud for business and end-user continuity Existing Notes credentials avoids disruptions, rework and productivity loss OTW encryption/decryption, at rest data encryption and digital signatures Secure, scalable, economical and highly available Low-touch administrative model via easy-to-use account management tools Built-in spam and virus protection, disaster recovery Tuned for a Hybrid Model for companies with on-premises and cloud users Protects your investment Customizable mail experience Leverage existing company-specific changes to mail templates in the service Can be augmented with additional IBM SmartCloud capabilities Data migration services, mobile, archiving and more...CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 19 19 20. IBM SMARTCLOUD NOTES MAIL Intuitive inbox, calendar and contacts Designed for business with no advertising ever ICSA Labs certified spam and virus protection 25GB secure storage 99.9% SLA IM included Use your own business e-mail domain:[email protected] Works with SmartCloud Engage collaborationand meetingsCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2020 21. IBM SMARTCLOUD NOTES ENTRY NEW! Full-featured, browser-based messaging at a lower cost Includes: Same base functionality as SmartCloud Notes web 1GB mailbox (non-custom template) Integrated Sametime instant messaging Anti-spam / anti-virus Does not include Offline access (no Notes client) IMAP access Data migration of existing mail into the service Paid options Mobile support via Notes Traveler IBM Archiving EssentialsCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2121 22. IBM SMARTCLOUD ARCHIVE ESSENTIALSNEW! Mail archiving and e-discovery for SmartCloud Notes Every email sent and received can be stored forever, searched and retrieved 100% cloud solution based on technology from Sonian Available for US-based SmartCloud Notes users Supports email ingestion/archiving Mail is archived and accessible for e-discovery Supports search/discovery use cases Mail captured today will be available if/when end useraccess is added Current limitations No end-user access (yet) Not for SmartCloud iNotes or on-premises Domino mail No support for IM, files, or social content (yet) Future geographic rollout under considerationCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2222 23. SHOULD I CHOOSE HYBRIDOR SERVICE-ONLY?CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 23 23 24. HYBRID ENVIRONMENT CAPABILITIES IBM SmartCloud Notes becomes extension of customer environment User, Group & Policy management performed on premises Via the Domino Directory and Admin Client One or more directories are synchronized into IBM SmartCloud Notes to provide common view of users, groups, policies, etc... Customer owns e-mail domains and receives all mail for those domains before routing to IBM SmartCloud Notes Option to route SMTP mail to IBM SmartCloud NotesCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 24 24 25. STRATEGIC REASONS TO CHOOSE HYBRID Differing needs within your business Different usage patterns Mobile 24x7 global sales force on IBM SmartCloud Notes Manufacturing and support operations with 8x5 work week on premises Different security/governance issues Regulatory and risk management might mandate on-site data for execs Lower-risk users can still be in IBM SmartCloud Notes Hybrid Different budget holders North America can migrate to IBM SmartCloud Notes Hybrid, while EMEAand APAC retain on-premises Users dont need to care who is hosted or on-premises e.g. user address look up and mail routing just workCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2525 26. TACTICAL REASONS TO CHOOSE HYBRID Supports migration of existing data Supports a phased migration Allows use of admin client and retention of some policies No change needed to access existing applications Bring your existing mail databases Encrypted content remains intact Private items remain intact Use custom mail templates Requires some IBM services to scan and approve Flexibility in deployment / transition time scaleCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 26 26 27. BUT WHAT ABOUT MY APPLICATIONS? IBM SmartCloud Notes does not provide its own application servers You have two alternatives available. Both require Hybrid. Keep your applications on-premises Move your applications to a cloud provider IBM Smart Business Cloud Amazon EC2 Prominic.Net Connectria I dont want to buy a Domino Enterprise CAL for each application user IBM now offers the Domino Utility Server for IBM SmartCloud license Priced based on processing capacity, not user countCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 27 27 28. REFERENCE ARCHITECTURE HYBRIDCONFIGURATIONS Here are some of many configuration options... Config 1 -One Domino domain, pass thru server and internal server for directory & mail Config 2 -One Domino domain, pass thru server, separate internal server for directory &mail Config 3 - One Domino domain, two pass thru servers, single internal servers for eachdirectory & mail Config 4 - One Domino domain, one pass thru server, two internal servers for each dir &mail for failover Config 5 -One Domino domain, two data centers, two pass thru servers, two internalservers for each dir & mail Config 6 - Multiple Domino domains, one pass thru server, one internal server fordirectory & mail with other on-premises domains routing mail and updates to the directoryCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2828 29. NotesREFERENCE ARCHITECTURE: THE BASICS Single Domino domain Single pass thru server Single internal server for mail routing and directory replication On-premises Domino directory sync: dirsync server replicates with on-prem hub server via pass thru server. SC Notes NRPC mail from service users to on-prem users: routed to mail hub servers via pass thru server(s). On-premises NRPC mail to SC Notes users: routed from on- prem mail hub server to service via the Reverse Proxy server for authentication.Reference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.2929 30. NotesREF ARCH: SEPARATE HUBS Single Domino domain Single pass thru server Separate mail routing and directory replication hub serversReference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 30 30 31. NotesREF ARCH: REDUNDANT PASSTHRU SERVERS Single Domino domain Pair of pass thru servers Primary and secondary Separate mail routing and directory replication hub serversReference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.3131 32. NotesREF ARCH: MULTIPLE HUBS Single Domino domain Single pass thru server Separate mail routing and directory replication hub servers Primary & secondaryReference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 32 32 33. NotesREF ARCH: TWO DATA CENTERS Single Domino domain Pair of customer data centers Pair of pass thru servers (primary in one DC and secondary in other DC) Separate mail routing and directory replication hub servers in each DC Note: Not all interactions shown on diagramReference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.3333 34. NotesREF ARCH: MULTIPLE DOMAINS Multiple Domino domains Single internal server for mail routing and directory replication Other domains route and replicate via primary domainReference David Bells Lotusphere 2011 Jump Start JMP204 deckCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.3434 35. HYBRID CONFIGURATION SUPPORTED DOMINO VERSIONS On-premises server type Supported versions Mail routing server Lotus Domino 8.5.1 Fix Pack 2 (in the directory synchronization and mail routingLotus Domino 8.5.2+ domain) Directory synchronization serverLotus Domino 8.5.1 Fix Pack 2 (in the directory synchronization and mail routingLotus Domino 8.5.2+ domain) Mail servers that request the free time Lotus Domino 8.5.1 Fix Pack 2 of SmartCloud Notes users Lotus Domino 8.5.2+ Passthru domain servers Any version of Lotus Domino. Use Lotus Domino 8.5.2+ for fastest response time for connections from SmartCloud Notes server to on-premises servers.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.3535 36. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 36 36 37. NotesUSER PROVISIONING AND DATA TRANSFER Assessment Assessment, Planning & Execution[Customer / BP] Existing Fundamentally a server Existing Directories ApplicationsUserDemographics consolidation exercise Existing Planning Existing All past experience of Security[Customer / BP]Mail Routing upgrades / consolidations Existing Network DirectoryIntegrationChangeMail RoutingIntegrationExisting is directly applicableManagementClientsSecurityClient You dont need to build theIntegrationEnvironment PrepDeployment new messagingNetwork& ValidationTransition Scheduling infrastructure CapacityDirectory [Customer / BP]Pass Thru ReplicationServer(s) You do need to beChangeManagement prepared SAML ID ProviderMail Routing IBM or a certified BP Network practitioner needs to moveChanges User & Data ClientInstalls and provision the dataProvisioningProcess[IBM / BP]CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 37 37 38. PROJECT STAGES: PLANNING/PREPARATION Assessment Planning Solution assurance review Possible preparation steps If needed: Stabilize the current environment If needed: Upgrade domain to Domino 8.5.2+ - Remove/upgrade servers older than Domino 6.5 - Upgrade Domino directory and admin server to 8.5.2 - Optional: Upgrade other servers dependent on requirements - Not on maintenance? Talk to an IBM Business Partner If needed: Deploy new server hardware If needed: Upgrade clients now, or as part ofuser on-boarding processCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 38 38 39. PROJECT STAGES: GET CONNECTED Install pass thru server (if this does not already exist) Place SmartCloud Notes order (ramp-up available) Create new certifier ID for SmartCloud Notes servers Perform SmartCloud Notes Setup and Enablement tasks Run Pre-Configuration Test Tool Identify dir sync, mail routing and pass thru servers Specify mail server base name Upload certifier ID Run Domain Configuration Tool Activate account Complete initial directory synchronization Verify ownership of at least one Internet domain Set admin preferences Run Configuration Test ToolCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 39 39 40. USER PROVISIONING & DATA TRANSFER1. Establish bidirectional mail routing and directory replication betweenexisting on-premises and SmartCloud Notes environments; thehybrid model.2. Set up on-premises data staging and process management tools anddefine schedule for user moves.3. Pull mail file replicas onto the staging server and package for transfer(encryption).4. Secure FTP transfer to SmartCloud Notes data center in preparationfor bulk import. Maximum 250 GB of data in-flight at any time. For larger transfers there is an option to usea NAS device with ISSC services.5. IBM performs pre-processing: scanning, validating and setting ofaccess controls and required properties.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 40 40 41. USER PROVISIONING & DATA TRANSFER6. Provision the users to IBM SmartCloud Notes service and place theprepared mail files onto primary / secondary / DR servers.7. Update directory entry for all users to point to new IBM SmartCloudNotes mail servers so that new mail is delivered to the IBMSmartCloud Notes servers.8. Run desktop configuration tool to update location document(s),desktop bookmarks, replication history, etc. to point client at IBMSmartCloud Notes environment and perform final catch up replication.9. Delete on-premises mail file replicas and decommission on-premisesmail servers as necessary.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 41 41 42. AGENDA What is IBM SmartCloud for Social Business? What Makes IBM SmartCloud a Better Cloud? Which IBM SmartCloud Messaging Option Is Right for Me? How Do I Get There from Here?The Transition to IBM SmartCloud Notes Integrating SmartCloud with Notes and Active Directory Q&ACDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 42 42 43. INTEGRATING SMARTCLOUD WITH NOTES Integrated web experience Easy navigation to your IBM SmartCloud Notes Web mail IBM SmartCloud Activities Plug-In for Notes Surface IBM SmartCloud activities in the Lotus Notes client sidebar IBM SmartCloud Meetings Plug-In for Notes Launch and join IBM SmartCloud meetings from the Lotus Notes clientsidebar Sametime IM community Add users from on-premises and IBM SmartCloud communities Chat with IBM SmartCloud users from other companies ATOM/RSS feeds Surface any feed-enabled content in the Lotus Notes client sidebarCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 43 43 44. IBM SMARTCLOUD PLUG-INS FOR NOTESCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 44 44 45. IBM SMARTCLOUD ATOM FEEDSCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 45 45 46. INTEGRATING WITH YOUR DIRECTORY Users want to get into cloud services with no login prompt This is accomplished with Security Assertion MarkupLanguage (SAML), a federation protocol Worthwhile investment of time for most mid-sized and largerbusinesses Admins want to provision users via Active Directory groups This is accomplished using the IBM SmartCloud IntegrationServer Based on CSV files and Secure FTP Largely a custom-configured process Worthwhile investment of time for enterprise-scaledeploymentsCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 46 46 47. SAML INTEGRATION SAML-based SSO to IBM SmartCloud services from browser and Lotus Notes SAML provides SSO into IBM SmartCloud for your browser clients SAML also provides SSO from Lotus Notes 8.5.2 FP5+ clients SmartClouds SAML implementation supports SAML 1.1 For Active Directory, you need to deploy ADFS Sequence: First your server, then SmartCloudCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 47 47 48. SAML FEDERATION TYPES Organization federation types Non-federated: Youre not using SAML Federated: Everyones using SAML, all the time Modified: Anyone can use SAML, or a stored password, its their choice Partial: You decide which people use what type of federation Individual federation types Non-federated: This person doesnt use SAML Federated: This person always uses SAML Modified: This person gets to chooseCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 48 48 49. IBM SMARTCLOUD INTEGRATION SERVER 1. Admin adds user to group 3. TDI creates Userin Active Directory Provisioning Change File in 2. Something (e.g. TDI) is proper CSV formatmonitoring the group for 4. TDI uploads change file tochanges SmartCloud IntegrationServer via Secure FTPCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY.4949 50. IBM SMARTCLOUD INTEGRATION SERVER Does that seem easy? All documented in a single 80-page PDF User provisioning change files (CSV) 10 user operation types: Add, Suspend, RevokeSeat, etc. 22 file operation fields: SubscriptionId, GivenName, NotesTemplate, FederationType 4 mandatory components to file name Group provisioning change files (LDIF) 11 LDAP attributes 6 changeType values 4 mandatory components to file name Report and trace files provide status and error info The only process diagram is the one I created for the previous slideCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 50 50 51. WHAT DID WE JUST SEE? Well looked at the Hybrid and Service-Only variants of SmartCloud Notes. We examined the building blocks of a SmartCloud Notes Hybrid environment and the migration process that takes you from here to there We saw how you to integrate the SmartCloud Connections and SmartCloud Meetings services with your Lotus Notes client And we saw two ways to connect your Active Directory to SmartCloud, to automate user management and provide single sign-on.CDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 51 51 52. QUESTIONS @rupertclaytonCDW PROPRIETARY AND CONFIDENTIAL. COPYING RESTRICTED. FOR INTERNAL USE ONLY. 52 52
