SharePoint MeetUp - hybrid search - 121016
-
Upload
jonathan-stuckey -
Category
Technology
-
view
112 -
download
0
Transcript of SharePoint MeetUp - hybrid search - 121016
What is Hybrid Search really?100kph run-through
Jonathan Stuckey, Spoke
Senior Consultant
Chandima Kulathilake, Theta
Lead Consultant
About your speakers
http://www.linkedin.com/in/jonathanstuckey
Jonathan Stuckey
Spoke, Business Information Strategy
http://www.linkedin.com/in/chandimak
Chandima Kulathilake
Theta, Lead consultant
Anytime, anywhere
Image:BlankMap-World.png
Date: 13 February 2007
Singapore, contractor on site
Sydney cafe, in meeting
In Wellington HQ on LAN
User experience
Inb
ou
nd
Ou
tbo
un
d
Dir
ecti
on
sB
oth
On-premises SharePoint
•2013 SP1, or
•2016
•Office Online Server
Identity
•AD
•AADS
•Azure AD Connect
•Federation service(s), O365
Network
•Reverse proxy
•Network data mgmt
•Service accounts
Azure
•Active service setup
Office 365 tenant
•SPO Online
Solution pre-requisites
Service configuration
•Search vertical
•Information architecture
•Business information flow
Roles and profiles
•Internal
•Support
•External
Locations and access
•Device access scenarios
•Network source locations
•Service access mgmt
Operational mgmt
•Business administration
•Service desk escalation
•Business user enablement
Solution design
•Service configuration
•UX design
High level steps
1. Plan authentication > http://bit.ly/1S9lrIG
2. Review prerequisites
3. Outline all steps
4. Run configurations
5. Test
6. Repeat 2-5
How do you want users to login?
• Directory Synchronisation• On Premises users are synced to
online
• Can also sync password
• They still get prompted to login when going to Office365
• Uses Azure Active Directory Connect
http://bit.ly/1S9lrIG
• Federated aka SSO • A user logs on to their on-premises
environment with their user account.
• On Office 365, they are either logged on automatically
• Or log on using the same credentials as on premises
• Uses Azure Active Directory Connect
• Uses ADFS (Active Directory Federation Services)
Before doing Hybrid
•Prerequisites•Active Directory on premises
• Windows Server 2008, 2008 R2
• Windows Server 2012, 2012 R2 forest functional level
• Check your AD for pre-requisites and fix with the IDFix Tool > http://bit.ly/1LSBOZb
•An operational SharePoint Server 2013/2016 Enterprise farm•Office365 Tenant
• E1 supports Display hybrid federated search results in SharePoint Server 2013 only, E3, or E4
Before doing Hybrid
•STS Certificates in SharePoint•Relates to > SharePoint Server Security Token Service (STS)•Server to server authentication of on premises SharePoint to Office365• The default STS certificate in the SharePoint farm doesn’t work in a
SharePoint hybrid topology. • a self-signed certificate (if using for a pilot/dev/test) or
• a certificate that’s issued by a public certification authority in Production
• This certificate must have at least 2048 bit encryption
Before doing Hybrid
•Primary web application •must have a SSL certificate•must be Integrated Windows authentication using NTLM
• extend existing web app or• create a new web app
•An A record in your public domain’s DNS zone (https://externalportal.abc.org.nz)•This enables Office 365 to send requests to the external
endpoint on the reverse proxy device that’s configured for hybrid
Check-point:
Before doing Hybrid
•Full steps: •http://bit.ly/2dJ5UV9•http://bit.ly/2dQv7Pg•Azure AD > http://bit.ly/2cY78HO
On-premises SharePoint
•2013 SP1, or
•2016
•Office Online Server
Identity
•AD
•AADS
•Azure AD Connect
•Federation service(s), O365
Network
•Reverse proxy
•Network data mgmt
•Service accounts
Azure
•Active service setup
Office 365 tenant
•SPO Online
Solution pre-requisites
Service configuration
•Search vertical
•Information architecture
•Business information flow
Roles and profiles
•Internal
•Support
•External
Locations and access
•Device access scenarios
•Network source locations
•Service access mgmt
Operational mgmt
•Business administration
•Service desk escalation
•Business user enablement
Solution design
•Service configuration
•UX design
Targeted search vertical experience
Consulting Corporateservices
Learning &development
Sales Servicemgmt
Strategy
Federated search experience
Hybrid results
So lets unpack the design
Azure
Farm build
Search service
Cloud SSA
Networking
Search service
Combined Index
Lets unpack what happens with index and crawl
Corporate LAN
SP, FS, BCS
ACLmapping
Contentprocessing
Itemqueue
Database
Crawl DB
Analytics DB
Search admin DB
Link DB
Query processing
Analytics
Content processing
Crawl
Admin
App Server
Index
What’s the Cloud search setup?
What’s in the bridge: Cloud SSA and OOS
What’s the Cloud SSA look like?
SP Farm build
Office Online server
Search service
Cloud SSA
Networking
AD Director Connect
Azure AD
Search result sources
Hybrid configuration
Combined Index
809
• Identity, networking, farm setup, data, tenant configuration, storage, security, ux
Summary
Microsoft Ignite NZ25-28 October 2016SKYCITY, Auckland
Session codes: M351, M313