You are previewing Microsoft Office 365 Administration Inside Out.
O'Reilly logo
Microsoft Office 365 Administration Inside Out

Book Description

Conquer Microsoft Office 365 administration—from the inside out!

Dive into Office 365 administration—and really put your systems expertise to work! This supremely organized reference packs hundreds of timesaving solutions, troubleshooting tips, and workarounds. Discover how the experts tackle deployment, configuration, and management—and challenge yourself to new levels of mastery.

  • Simplify enterprise deployment with planning tools and tasks

  • Automate Office 365 processes with Windows PowerShell

  • Manage user identity with Active Directory and Single Sign-On

  • Monitor and maintain the health of Office 365 with Microsoft System Center

  • Implement Microsoft Exchange Online, SharePoint Online, and Lync Online

  • Control variables in an Exchange Server hybrid implementation

  • Customize and deploy Office 365 Professional Plus

  • Explore real-world scenarios and apply insider management tips

  • For Intermediate to Advanced IT Professionals

    Table of Contents

    1. Microsoft Office 365 Administration Inside Out
    2. Introduction
      1. Who this book is for
        1. Assumptions about you
      2. Conventions
        1. Text conventions
        2. Design conventions
      3. Acknowledgments
        1. Julian Soh
          1. Julian Soh
          2. Marshall Copeland
          3. Anthony Puca
      4. Support & feedback
        1. Errata
        2. We want to hear from you
        3. Stay in touch
    3. 1. Introducing Office 365
      1. 1. The Business Case for the Cloud
        1. Consumer vs. enterprise
        2. Office 365
          1. Licensing overview
            1. Office 365 stand-alone purchases
            2. Office 365 suites
        3. Office 365 terminology
          1. Tenant
          2. Tenant name
          3. Vanity domain name
          4. Waves
          5. Hybrid
          6. Examples and screen shots
          7. Government Community Cloud
        4. Business case for Office 365
          1. Subscription model
          2. Economies of scale
          3. Scalability
          4. Redundancy
          5. Core competency
        5. Trust Center
        6. Certifications
        7. Regulatory compliance
        8. Summary
      2. 2. Planning and Preparing to Deploy Office 365
        1. Approach to planning and evaluating Office 365
          1. Foundational planning and remediation tasks
          2. Service-specific planning and remediation tasks
        2. Office 365 planning, deployment, and troubleshooting tools
        3. Office 365 Service Descriptions
        4. Office 365 Deployment Guide
        5. Microsoft Office 365 Deployment Readiness Toolkit
        6. Network planning and analysis
          1. Quality vs. quantity
          2. Misconception about distance
          3. Speed test
          4. Basic traffic analysis
          5. Putting it all together
          6. Alternative approach to email traffic analysis
          7. Network requirements for SharePoint Online
          8. Network requirements for Lync Online
        7. Microsoft Remote Connectivity Analyzer
        8. Microsoft Online Services Diagnostics and Logging Support Toolkit
        9. Windows PowerShell
          1. Microsoft Online Services Module
            1. Testing the Microsoft Online Services Module
          2. Microsoft Windows PowerShell Integrated Scripting Environment (ISE) 3.0
        10. Summary
    4. 2. Office 365 Foundations: Identity Management
      1. 3. Active Directory Federation Services
        1. Different types of user accounts
          1. Cloud identity
          2. Federated identity
        2. Integrating Active Directory with Office 365
          1. Adding your domain name to Office 365
            1. Entering a DNS TXT record
            2. Verifying the domain
            3. Adding users and assigning licenses
            4. Setting the domain purpose and configuring DNS
        3. Active Directory Federation Services
          1. Single sign-on experience
            1. Scenario 1: No single sign-on experience
            2. Scenario 2: User is logged on at work
            3. Scenario 3: Remote worker on a virtual private network connection
            4. Scenario 4: Remote worker is not logged on to the corporate network
          2. Single sign-on requirements
          3. Remediating the UPN suffix
          4. Installing IIS on the AD FS server
          5. Requesting and installing certificates
            1. Creating the certificate request
            2. Using your enterprise certificate authority to issue a certificate
            3. Installing the certificate on IIS
            4. Protecting the default website with the certificate
          6. Planning the AD FS architecture
            1. AD FS server farm
            2. AD FS proxy
            3. AD FS database
          7. Installing and configuring AD FS 2.0
          8. Testing the federation server
          9. Converting the domain from standard authentication to identity federation
            1. AD FS server is installed on Windows Server 2008 R2
            2. The AD FS server is installed on Windows Server 2008 SP2 or on a remote Windows 7 workstation
            3. Verifying a successful conversion of a domain
              1. Windows PowerShell
              2. AD FS 2.0 Administration snap-in
          10. Updating the federation URL endpoint
        4. Removing Active Directory Federation Services
          1. Converting a domain from identity federation to standard authentication
            1. AD FS server that has the Windows Azure Active Directory Module installed
          2. Completely uninstall AD FS 2.0
            1. Determining the location of the Certificate Sharing Container in Active Directory
            2. Uninstalling AD FS 2.0
            3. Restoring IIS
            4. Removing the Certificate Sharing Container
        5. Summary
      2. 4. Directory Synchronization
        1. Directory synchronization process
        2. Activating directory synchronization
          1. Updating the AD schema
          2. Activating directory synchronization with Windows PowerShell
          3. Activating directory synchronization through the admin center
        3. Installing Windows Azure Active Directory Sync
          1. Installing directory synchronization with a dedicated computer running SQL Server
          2. Installing directory synchronization with Windows Internal Database
          3. Configuring directory synchronization
        4. Verifying directory synchronization
          1. Verifying directory synchronization using the admin center
          2. Verifying directory synchronization service status
          3. Using the Synchronization Service Manager
          4. Checking the Event Viewer
        5. Forcing an unscheduled directory synchronization
          1. Understanding run profiles and management agents
          2. Initiating an unscheduled directory synchronization using Synchronization Service Manager
          3. Initiating an unscheduled directory synchronization using Windows PowerShell
        6. Changing the directory synchronization schedule
        7. Troubleshooting common directory synchronization errors
          1. Directory synchronization is not running
            1. Force directory synchronization
            2. Check the directory synchronization AD service account
            3. Check the directory synchronization Office 365 account
          2. Directory synchronization data problems
            1. Unrecognized or invalid data in Active Directory
          3. Troubleshooting directory synchronization using the MOSDAL toolkit
        8. Summary
    5. 3. Office 365 Foundations: Monitoring and Automation
      1. 5. Monitoring Office 365 with System Center
        1. Introduction to System Center components and licensing
          1. System Center 2012 Configuration Manager
          2. System Center 2012 Operations Manager
          3. System Center 2012 Data Protection Manager
          4. System Center 2012 Virtual Machine Manager
          5. System Center 2012 Orchestrator
          6. System Center 2012 Service Manager
          7. System Center 2012 Endpoint Protection
          8. System Center 2012 App Controller
        2. Concepts and planning for monitoring Office 365
          1. Evaluating what to monitor
          2. Administering the monitoring solution
          3. Monitoring targets
        3. Deploying the SCOM infrastructure and importing the Office 365 Management Pack
          1. Installing the System Center 2012 Operations Manager Service Pack 1 prerequisites
          2. Downloading the System Center 2012 Operations Manager Service Pack 1 media
          3. Installing System Center 2012 Operations Manager
          4. Importing the Office 365 Management Pack
        4. Creating alert notifications
          1. Creating alert recipients
          2. Creating a subscription
        5. Summary
      2. 6. Customizing Operations Manager Reports and Dashboards for Office 365
        1. Identifying Office 365 dependent servers
        2. Customizing System Center 2012 Operations Manager state views
        3. Customizing System Center 2012 Operations Manager alert views
        4. Tuning the Office 365 management pack and reducing false alarms
          1. Configuring the watcher nodes
        5. System Center 2012 Operations Manager report customization
        6. Dashboard creation for technical and business owners
          1. Operator console dashboards
          2. How to create a custom Office 365 dashboard
          3. Office 365 service level agreement dashboards
        7. Summary
      3. 7. Automating Office 365 Management Using Orchestrator
        1. System Center 2012 Orchestrator
        2. Orchestrator overview and concepts
          1. Introducing Orchestrator
          2. Applying the runbook concept to Office 365
          3. Using Orchestrator components
        3. Installing Orchestrator
          1. Prerequisites for installing Orchestrator for testing
          2. Installing prerequisites for Orchestrator
          3. Installing Microsoft SQL Server
          4. Completing the installation for Orchestrator
          5. Using Integration Packs with Office 365 automation
        4. Creating a new runbook for Office 365 email accounts
        5. Summary
      4. 8. Office 365 and Service Manager Automation
        1. System Center 2012 SP1 Service Manager
        2. Service Manager components
        3. Installing Service Manager
        4. Installing the Self-Service Portal
        5. Service catalog overview
        6. Service request automation
        7. Enabling the System Center Orchestrator connector
        8. Configuring Service Manager automation
          1. Completing Orchestrator integration and finalizing a runbook
          2. Creating a runbook automation activity template
          3. Creating a service request template
          4. Creating a request offering
          5. Creating and publishing a service offering
          6. Service and request offering in the Self-Service Portal
        9. Summary
      5. 9. Windows PowerShell for Office 365
        1. Windows PowerShell underlying services
        2. Preparing the Windows PowerShell environment
          1. Windows PowerShell pre-configured for the workstation or server
            1. Determining the WinRM version
            2. Verifying that WinRM is running
            3. Installing the Microsoft Online Services Sign-in Assistant
            4. Installing the Windows Azure Active Directory Module for Windows PowerShell
          2. Configuring Windows PowerShell and WinRM settings
          3. Connecting Windows PowerShell to the Office 365 service
        3. Windows PowerShell as the future interface
        4. Windows PowerShell Integrated Scripting Environment
          1. Starting the ISE from Windows 8
          2. Starting the ISE from within Windows PowerShell
          3. Starting the ISE from Windows 7
          4. Navigating the ISE
        5. Office 365 examples and exercises
          1. Establishing a Windows PowerShell session with Exchange Online
          2. Updating Windows PowerShell Help files
          3. Granting mailbox access
          4. Validating permissions
          5. Changing time zones
          6. Viewing groups
          7. Creating distribution groups
          8. Using the Admin Audit log
          9. Viewing retention policies
          10. Creating retention policies
        6. Summary
    6. 4. Integrating and using Office 365 Services
      1. 10. Introducing Exchange Online
        1. Multiple service descriptions
        2. Exchange Online plans
        3. Exchange Online core workloads and concepts
          1. Mailboxes and calendaring
          2. Exchange Online Archiving mailbox
          3. Email handling and transport
            1. Communication between clients and Exchange Online
            2. Communication between Exchange Online and destination email servers
            3. Communication between Exchange Online customers
          4. Email filtering
          5. Secure email
        4. Exchange Online capabilities
          1. Messaging limits
          2. Backup and recovery
          3. Exchange Online service availability and redundancy
        5. Forefront Online Protection for Exchange
          1. Layered protection
          2. Anti-Spam
          3. Message quarantine
          4. FOPE policies
          5. Message handling
          6. Reporting
        6. Exchange Online Archiving
          1. Archive size
          2. Backup and recovery
          3. EOA access
          4. Compliance
        7. Exchange Hosted Encryption
        8. Exchange Online implementation options
          1. Hybrid mailboxes
          2. Hybrid archiving model
          3. Hybrid mail protection and routing
        9. New capabilities
          1. Data Leakage Prevention
          2. Rights Management Service
        10. Summary
      2. 11. Planning and Deploying Hybrid Exchange
        1. Planning an Exchange hybrid deployment
          1. Understanding capabilities
          2. Requirements
          3. Using the Exchange Server Deployment Assistant
        2. Installing Exchange hybrid deployment prerequisites
          1. Preparing the Exchange Management Console
            1. EMC on a server
            2. EMC on a workstation
            3. Adding Exchange Online to the EMC
          2. Certificates
            1. Generating a new Exchange certificate request
            2. Acquiring a certificate
            3. Importing a purchased certificate
            4. Verifying certificates and services
          3. Configuring Exchange Web Services
            1. Verifying CAS, EWS, OAB, and ActiveSync configuration
        3. Configuring an Exchange hybrid model
          1. Establishing a hybrid relationship
          2. Configuring a hybrid deployment
        4. Troubleshooting hybrid configuration
          1. Autodiscover service
          2. Virtual directory security settings
          3. Resetting the Autodiscover virtual directory
        5. Finalizing the Exchange hybrid deployment
          1. Testing a mailbox creation
          2. Testing a mailbox move
          3. Changing an MX record
          4. Centralized mail transport
            1. Centralized mail transport disabled
            2. Centralized mail transport enabled
            3. Enabling and disabling centralized mail transport
            4. Enabling and disabling centralized mail transport with EMC
            5. Enabling and disabling centralized mail transport with Windows PowerShell
        6. Summary
      3. 12. Mailbox Migration and Administering Exchange Online
        1. Mailbox migration options
          1. Cutover migration
            1. Cutover migration with the ECP
            2. Cutover migration with EAC
          2. Staged migration
            1. Creating a .csv file
            2. Staged migration with ECP
            3. Staged migration with EAC
          3. IMAP migration
            1. Creating a .csv file
            2. IMAP migration with the ECP
            3. IMAP migration with the EAC
          4. Migration using remote Windows PowerShell
            1. Using remote Windows PowerShell with Office 365 with Exchange Online 2010
            2. Using remote Windows PowerShell with the latest release of Office 365 with Exchange Online 2013
          5. Migration with an Exchange hybrid environment
          6. Microsoft Exchange PST Capture
            1. Installing and using PST Capture
          7. Third-party migration tools
          8. Migration best practices
            1. Reduce the TTL for MX records
            2. Migration performance
            3. Migration service throttling
            4. User throttling
        2. Moving mailboxes back to on-premises Exchange
          1. Mailbox originally created on-premises
          2. Mailbox originally created in Exchange Online
        3. Decommissioning on-premises Exchange
        4. Administering Exchange Online
          1. Exchange Management Console
          2. Exchange Online remote Windows PowerShell
          3. Exchange Online administration user interface
            1. Exchange Control Panel
            2. Forefront Online Protection for Exchange administration
            3. Exchange admin center
            4. Exchange Online Protection
        5. Compliance, Legal Hold, and eDiscovery concepts
          1. Preserving content
          2. Automated deletions
          3. Enforced retention
          4. Putting it all together
          5. Personal archive
          6. Messaging Records Management
            1. Retention tags
            2. Retention policies
          7. Holds
            1. Time-based hold
            2. Criteria-based hold
            3. Creating holds
          8. Multi-mailbox search (eDiscovery)
        6. Summary
      4. 13. SharePoint Online
        1. Understanding SharePoint capabilities
        2. Introducing SharePoint Online
          1. SharePoint Online concepts
          2. SharePoint Online capabilities
          3. SharePoint Online capacity limits
            1. Storage limits
            2. Site collection limits
            3. Number of users
            4. File upload size limit
          4. SharePoint hybrid model
        3. Managing SharePoint Online
          1. SharePoint Online 2013
          2. SharePoint Online 2010
        4. SharePoint Store
          1. Permissions and adding apps to sites
          2. Managing app licenses
        5. SkyDrive Pro
          1. Storage
          2. External collaboration
            1. Managing external sharing
          3. Mobility
        6. Office Web Apps
        7. Achieving compliance with SharePoint eDiscovery Center
        8. SharePoint Online Management Shell
        9. SharePoint search in a hybrid environment
          1. One-way outbound topology
          2. One-way inbound topology
          3. Two-way topology
        10. Summary
      5. 14. Lync Online
        1. Lync terminology
          1. Session Initiation Protocol and SIP addressing
          2. Peer-to-peer voice vs. Enterprise Voice
        2. Lync Online overview and licensing
          1. Lync client
          2. Lync meetings
            1. External conference attendees
          3. Lync mobile
          4. Lync Web App and Outlook Web App
        3. Lync Online capabilities and concepts
          1. Lync Online features
          2. Lync Federation
          3. Hybrid Lync Online
          4. Dial-in audio conferencing
        4. Lync Online planning and deployment
          1. Test network bandwidth and latency
          2. Determine ports and protocols
          3. Allow outgoing connections
          4. Create DNS entries
            1. DNS settings for Office 365 with Lync Online 2013
            2. DNS settings for Office 365 with Lync Online 2010
        5. Configuring and managing Lync Online
          1. Lync Online 2013
          2. Lync Online 2010
        6. Lync IM conversation history and policy
        7. Configuring hybrid Lync
        8. Migration considerations
        9. Summary
      6. 15. Office 365 Professional Plus
        1. Introduction to the Microsoft Office editions
        2. Office ProPlus Service Description
        3. Deploying Office 365 ProPlus
        4. Office Click-to-Run and activations
          1. Customizing Click-to-Run
            1. Modes
              1. /help mode
              2. /download mode
              3. /configure mode
              4. /packager mode
          2. Difference between Click-to-Run and MSI
          3. Office on Demand
        5. Patching Office 365 ProPlus
        6. Managing and deploying Office 365 ProPlus
          1. System requirements
          2. 32-bit vs. 64-bit version
          3. Group Policy
          4. Virtualization
          5. Other Office products
        7. Office 365 ProPlus common errors
          1. Microsoft Office subscription error
          2. Office subscription removed
          3. No subscription found
          4. Activation error
        8. Summary
    7. 5. Advanced topics: Incorporating Office 365 with Windows Azure
      1. 16. Advanced Concepts and Scenarios for Office 365
        1. Trusts
          1. One-way forest trusts
          2. Two-way forest trusts
        2. Introduction to Forefront Identity Manager
        3. Office 365 and FIM architecture to support multi-forest scenarios
          1. Scenario 1: Direct synchronization
            1. Scenario 1: Direct synchronization
            2. Scenario 2: Indirect synchronization
            3. Scenario 3: Account forest and resource forest scenario
        4. Windows Azure
          1. Office 365 on-premises dependencies supported in Windows Azure
          2. Identity and SSO for Office 365 in Windows Azure
          3. Scenario 1: All Office 365 identity management components deployed in Windows Azure
          4. Scenario 2: Office 365 on-premises identity management components duplicated in Windows Azure for disaster recovery and failover
          5. Virtual machine sizing
        5. Multi-factor authentication
          1. Setting up Azure Multi-Factor Authentication
          2. First time user experience
          3. Subsequent user experience
        6. Summary
    8. 6. Appendix
      1. A. Windows PowerShell Scripts for Office 365
        1. Introduction
        2. Determining the subscription name
        3. Creating cloud identities from a .csv file
        4. Generating a user list
        5. Generating a subscription assignment report
        6. Swapping licenses
        7. Activating certain services in a suite SKU
        8. Purging deleted users
        9. Sending bulk email to users
        10. Office 365 Windows PowerShell resources
    9. Index
    10. About the Authors
    11. Copyright