IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David...
-
Upload
rolf-oneal -
Category
Documents
-
view
219 -
download
0
Transcript of IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David...
![Page 1: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/1.jpg)
IT Professionals04 | Active Directory on IaaS
David Tesar | Microsoft Technical EvangelistDavid Aiken | Microsoft Group Technical Product Manager
![Page 2: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/2.jpg)
Agenda • Why AD on Windows Azure?• AD Architecture Options
![Page 3: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/3.jpg)
Windows Azure AD vs VM with AD on IaaS
AzureAD
AD
Office 365
AzureAD
AD
ExchangeOnline
SharePointOnline
LyncOnline
CRM Online
WindowsInTune
![Page 4: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/4.jpg)
Contoso CORP SITE – Las
Vegas, NV
Local authentication in Windows Azure
Windows AzureDatacenter – West US
VPN
TunnelAD
Cloud Service
SharePoint RDS
Virtual Network
ADWebsite
![Page 5: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/5.jpg)
ADWebsite
Contoso CORP SITE – Las
Vegas, NV
Disaster Recovery
Windows AzureDatacenter – West US
VPN
TunnelAD
Cloud Service
SharePoint Website
Virtual Network
![Page 6: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/6.jpg)
AD Architecture Options
![Page 7: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/7.jpg)
Domain Controller On-Premises Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active Directory
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
Load BalancerPublic IP
![Page 8: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/8.jpg)
Active Directory in Azure Only
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Load BalancerPublic IP
Site to Site VPN Tunnel
On Premises Resources
Contoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Extranet Active Directoryfabrikam.com
![Page 9: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/9.jpg)
Domain Controller On Prem + Azure
The Virtual Networkin Windows Azure
Gateway
SQL ServersIIS Servers
Site to Site VPN Tunnel
AD Authentication+
On-Premises Resources
Contoso.com Active DirectoryContoso Corp Network
IIS Servers
AD / DNS
SQL Servers
Exchange
S2S VPN Device
Contoso.com Active Directory
AD / DNS
AD Auth
Load BalancerPublic IP
![Page 10: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/10.jpg)
Deploy DC in Separate Cloud Service
Cloud Service Configuration for AD
Cloud Service for AD ClientsLocation: North Central USName: app-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: MyVNETDNS IPs: 192.168.1.4
Virtual MachineRole Name: advm1Subnet: AppSubnetIP Address: 192.168.2.4
Cloud Service for AD DomainsLocation: North Central USName: ad-cloudservice.cloudapp.netAffinity Group: ADAG
DeploymentVirtual Network: ADVNETDNS IPs: (On-Premise AD IP)
Virtual MachineRole Name: ad-dcSubnet: ADSubnetIP Address: 192.168.1.4
DIP
Windows Azure Subscription
![Page 11: IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft Technical Evangelist David Aiken | Microsoft Group Technical Product Manager.](https://reader036.fdocuments.in/reader036/viewer/2022062314/56649d9d5503460f94a86a19/html5/thumbnails/11.jpg)
Demo
Deploying AD – On Prem + Azure
Running AD on Windows Azure IaaShttp://technet.microsoft.com/en-us/library/jj713614.aspx
Windows Azure Training Kithttp://aka.ms/githubHOL-DeployingActiveDirectoryHOL-DeployingActiveDirectoryPS