Introduction to Hosting Exchange 2000

Introduction to Hosting Introduction to Hosting Exchange 2000Exchange 2000

Jeff StrasserJeff StrasserSupport EngineerSupport EngineerMicrosoft Business ApplicationsMicrosoft Business ApplicationsMicrosoft CorporationMicrosoft Corporation

2

What Is E-mail Hosting?What Is E-mail Hosting?

Managed by a providerManaged by a provider

Outsource IT departmentsOutsource IT departments

Purchased as a servicePurchased as a service

3

The The Application Service Provider Application Service Provider ((ASP) ChallengeASP) Challenge

MarginsMargins

Customer SatisfactionCustomer Satisfaction

TCO / TCSDTCO / TCSDH

ot

Ap

ps

Ho

t A

pp

san

dan

d

Ser

vice

sS

ervi

ces

Great

Great

Servi

ce

Servi

ce

Level

s

Level

s

Quality of BusinessQuality of BusinessSolutionSolutionReliability of OperationsReliability of OperationsEase of TroubleshootingEase of TroubleshootingGreat ISV / Service Great ISV / Service Provider customer serviceProvider customer service

Economical to Sell,Economical to Sell,Customize, Provision,Customize, Provision,Bill, Deploy, Operate,Bill, Deploy, Operate,Maintain andMaintain andUpgradeUpgrade

Standardize thenStandardize thenAutomate EverythingAutomate Everything

Stable ServicesStable ServicesDelivery PlatformDelivery Platform(SSDP)(SSDP)

4

What Do ASPs Gain from What Do ASPs Gain from Exchange 2000?Exchange 2000?

Front end / back endFront end / back end ArchitectureArchitecture Active DirectoryActive Directory Active / active clusteringActive / active clustering Partitioned data storePartitioned data store

Messaging – Messaging – storage upsellstorage upsell

Web store servicesWeb store services Document servicesDocument services Unified messagingUnified messaging ConferencingConferencing Wireless notificationWireless notification

Drive Down CostsDrive Down Costs Increase Service RevenuesIncrease Service Revenues

5

Developed with ASPs in MindDeveloped with ASPs in Mind

ManageabilityManageability

SecuritySecurity

High availabilityHigh availability

ScalabilityScalability

6

ManageabilityManageability

Microsoft Management Console (MMC)Microsoft Management Console (MMC) Exchange System Manager (ESM) snap-inExchange System Manager (ESM) snap-in MicrosoftMicrosoft®® Active Directory Active Directory™™ users and users and

computers snap-incomputers snap-in

Windows Management Instrumentation (WMI)Windows Management Instrumentation (WMI)

Third-party applicationsThird-party applications

7

Simple AdministrationSimple Administration

Organizational Units (OUs)Organizational Units (OUs) UsersUsers GroupsGroups Security settingsSecurity settings Exchange rulesExchange rules Other informationOther information

User Principal Names (UPNs)User Principal Names (UPNs) Eliminates namespace collisionEliminates namespace collision

8

Tight SecurityTight Security

Logon authenticationLogon authentication Consistent user name and passwordConsistent user name and password

Directory securityDirectory security Method of controlling the extent to which specific Method of controlling the extent to which specific

users can access network resourcesusers can access network resources

9

Logon AuthenticationLogon Authentication

Uses MicrosoftUses Microsoft®® Windows Windows®® 2000 security 2000 security AnonymousAnonymous

Basic (clear-text)Basic (clear-text)

Basic with Secure Sockets Layer (SSL)Basic with Secure Sockets Layer (SSL)

Integrated Windows Authentication (formerly Integrated Windows Authentication (formerly NTLM)NTLM)

10

Directory SecurityDirectory Security

Restricts what users can see in Active Restricts what users can see in Active DirectoryDirectory Users only see information regarding their own Users only see information regarding their own

companycompany

Custom administration toolsCustom administration tools

11

High AvailabilityHigh Availability

Network load balancing clusterNetwork load balancing cluster Availability through redundancy and load Availability through redundancy and load

distributiondistribution

Failover clusteringFailover clustering Allows failover to a secondary nodeAllows failover to a secondary node

12

Scalability via Front End / Back EndScalability via Front End / Back End

Shared StorageShared Storage

BE BE Machine Machine

BB

BE BE Machine Machine

AA

Front end serversFront end servers

13

Flexibility of ClientsFlexibility of Clients

MicrosoftMicrosoft®® Outlook Outlook®® 2000 2000

Outlook Web accessOutlook Web access

Outlook ExpressOutlook Express

Any POP3, IMAP4 clientsAny POP3, IMAP4 clients

14

Designing an Exchange 2000 Designing an Exchange 2000 Architecture for HostingArchitecture for Hosting

Active DirectoryActive Directory

Storage configurationsStorage configurations

Administrative groupsAdministrative groups

Routing groupsRouting groups

Public foldersPublic folders

15

Active Directory DesignActive Directory Design

Three design modelsThree design models

Shared ForestShared Forest

Dedicated ForestDedicated Forest

Combined Shared/DedicatedCombined Shared/Dedicated

16

Shared Forest ModelShared Forest Model

Domain RootDomain Root

OUOUCompany2Company2

OUOUCompany1Company1

OUOUCompany3Company3

Domain PoliciesDomain PoliciesDomain SecurityDomain SecurityDomain DevicesDomain DevicesDomain UsersDomain UsersDomain Security GroupsDomain Security Groups

OU1 Specific PoliciesOU1 Specific PoliciesOU1Specific SecurityOU1Specific SecurityOU1 Specific DevicesOU1 Specific DevicesOU1 Specific UsersOU1 Specific UsersOU1 Specific Security GroupsOU1 Specific Security Groups

OU2 Specific PoliciesOU2 Specific PoliciesOU2Specific SecurityOU2Specific SecurityOU2 Specific DevicesOU2 Specific DevicesOU2 Specific UsersOU2 Specific UsersOU2 Specific Security GroupsOU2 Specific Security Groups

OU3 Specific PoliciesOU3 Specific PoliciesOU3Specific SecurityOU3Specific SecurityOU3 Specific DevicesOU3 Specific DevicesOU3 Specific UsersOU3 Specific UsersOU3 Specific Security GroupsOU3 Specific Security Groups

17

Combined Shared / DedicatedCombined Shared / Dedicated

PlacePlaceHolderHolder

Root for ASPRoot for ASP

SharedSharedServicesServices

Domain for ASPDomain for ASP

DedicatedDedicatedDomain 1Domain 1

DedicatedDedicatedDomain 3Domain 3

DedicatedDedicatedDomain 2Domain 2

Customer 2 OUCustomer 2 OU

Customer 2 OUCustomer 2 OU

Customer 1 OUCustomer 1 OU

18

Storage Group & Database DesignStorage Group & Database Design

Storage groupsStorage groups

DatabasesDatabases

MDBMDB

MDBMDBMDBMDB

19

Typical ASP ArchitectureTypical ASP Architecture

StoreStoreStoreStore StoreStoreStoreStore

Cluster ACluster A Cluster BCluster B

Windows Windows 2000 2000 DirectoryDirectoryWindows Windows

2000 2000 DirectoryDirectoryWindows Windows

2000 2000 DirectoryDirectory

VPN VPN serverserver

VPN VPN serverserver

ProtocolProtocol ProtocolProtocol ProtocolProtocol

Router / Router / Packet FilterPacket Filter

/Firewall/Firewall

InternetInternetOutlook Client Outlook Client

over VPN or OWA over over VPN or OWA over SSLSSL

20

Administrative Group DesignAdministrative Group Design

Farm 1Farm 1Admin GroupAdmin Group

Farm 3Farm 3(AG)(AG)

Farm 2Farm 2 (AG)AG)

21

Routing Group DesignRouting Group Design

NYCNYCRouting GroupRouting Group

LA LA (RG)(RG)

LondonLondon

Paris Paris (RG)(RG)

(RG)(RG)

22

Public Folder DesignPublic Folder Design

Multiple Top Level Hierarchies (TLHs)Multiple Top Level Hierarchies (TLHs) User mailboxes associated with one PF treeUser mailboxes associated with one PF tree

Peer level public foldersPeer level public folders Each organization sees only its foldersEach organization sees only its folders

23

Managing Exchange 2000Managing Exchange 2000

Microsoft Management Console (MMC)Microsoft Management Console (MMC)

Exchange System Manager (ESM)Exchange System Manager (ESM)

Custom toolsCustom tools

24

Managing Exchange 2000 Managing Exchange 2000 (2)(2)

Active Directory Services Interface (ADSI)Active Directory Services Interface (ADSI) COM objects that represent objects in the COM objects that represent objects in the

directorydirectory Variety of tools to interface with ADSIVariety of tools to interface with ADSI

25

Managing Exchange 2000 Managing Exchange 2000 (3)(3)

Windows Management Instrumentation (WMI)Windows Management Instrumentation (WMI) Three layer modelThree layer model

Managed systemManaged system ProviderProvider WMI consumerWMI consumer

Collaboration Data Objects (CDO) / CDOEXMCollaboration Data Objects (CDO) / CDOEXM Programmatic access to managementProgrammatic access to management Use in conjunction with ADSIUse in conjunction with ADSI

26

Other ServicesOther Services

Chat

Instant Messaging

Conferencing

27

Instant MessagingInstant Messaging

IM DomainIM Domain Logical collection of users and serversLogical collection of users and servers

IM Home ServerIM Home Server Virtual server that hosts IM accountsVirtual server that hosts IM accounts Maintains ‘presence’ informationMaintains ‘presence’ information

IM RouterIM Router Receives messages and routes to appropriate Receives messages and routes to appropriate

home serverhome server

28

ChatChat

Chat hosting strategiesChat hosting strategies Small companiesSmall companies

Community for eachCommunity for each Set access through access control lists Set access through access control lists

(ACLs)(ACLs) Large companiesLarge companies

Dedicated chat serverDedicated chat server Approximately 20,000 concurrent connections/Approximately 20,000 concurrent connections/

serverserver

29

ConferencingConferencing

Conferencing hosting considerationsConferencing hosting considerations Internet latency problemsInternet latency problems Firewall issuesFirewall issues

Quality of service (QOS)Quality of service (QOS) Guarantees bandwidthGuarantees bandwidth Support for real-time multimediaSupport for real-time multimedia Assures time transfer of large amounts of dataAssures time transfer of large amounts of data

30

Provisioning & Billing with MAPSProvisioning & Billing with MAPS

OS services and APIsOS services and APIs

ADSIADSIDDNSDDNS Server apps (Exchange, SQL,etc)Server apps (Exchange, SQL,etc)

CDOEXCDOEX

Ex SCOEx SCOADADSCOSCO

MAPS provisioning framework (XML abstraction)MAPS provisioning framework (XML abstraction)

ISV-developed provisioning, metering, ISV-developed provisioning, metering, billing, OSS frameworksbilling, OSS frameworks

31

Exchange 2000 Hosting ResourcesExchange 2000 Hosting Resources

Microsoft Exchange Web siteMicrosoft Exchange Web site http://www.microsoft.com/exchange/http://www.microsoft.com/exchange/

Microsoft Internet Services NetworkMicrosoft Internet Services Network http://www.microsoft.com/http://www.microsoft.com/isnisn//

Microsoft .NET Web siteMicrosoft .NET Web site http://www.microsoft.com/net/http://www.microsoft.com/net/