IT Professionals 04 | Active Directory on IaaS David Tesar | Microsoft
11 Slides2.96 MB
IT Professionals 04 Active Directory on IaaS David Tesar Microsoft Technical Evangelist David Aiken Microsoft Group Technical Product Manager
Agenda Why AD on Windows Azure? AD Architecture Options
Windows Azure AD vs VM with AD on IaaS Office 365 Azure AD Exchange Online SharePoint Online Lync Online Azure AD AD AD CRM Online Windows InTune
Local authentication in Windows Azure Windows Azure Datacenter – West US Contoso CORP SITE – Las Vegas, NV Website AD N VP nnel Tu AD SharePoint Cloud Service Virtual Network RDS
Disaster Recovery Windows Azure Datacenter – West US Contoso CORP SITE – Las Vegas, NV N V P nn e l Tu AD SharePoint Cloud Service Virtual Network Website AD Website
AD Architecture Options
Domain Controller On-Premises Only Contoso.com Active Directory Contoso.com Active Directory Contoso Corp Network The Virtual Network in Windows Azure SQL Servers IIS Servers Site to Site VPN Tunnel AD / DNS S2S VPN Device Gateway AD Authentication On-Premises Resources IIS Servers Exchange Load Balancer Public IP SQL Servers
Active Directory in Azure Only Contoso.com Active Directory Extranet Active Directory fabrikam.com Contoso Corp Network The Virtual Network in Windows Azure SQL Servers IIS Servers Site to Site VPN Tunnel AD / DNS S2S VPN Device AD / DNS Gateway On Premises Resources AD Auth IIS Servers Exchange Load Balancer Public IP SQL Servers
Domain Controller On Prem Azure Contoso.com Active Directory Contoso.com Active Directory Contoso Corp Network The Virtual Network in Windows Azure SQL Servers IIS Servers Site to Site VPN Tunnel AD / DNS S2S VPN Device AD / DNS Gateway AD Authentication On-Premises Resources AD Auth IIS Servers Exchange Load Balancer Public IP SQL Servers
Cloud Service Configuration for AD Deploy DC in Separate Cloud Service Windows Azure Subscription Cloud Service for AD Domains Cloud Service for AD Clients Location: North Central US Name: ad-cloudservice.cloudapp.net Affinity Group: ADAG Location: North Central US Name: app-cloudservice.cloudapp.net Affinity Group: ADAG Deployment Deployment Virtual Network: ADVNET DNS IPs: (On-Premise AD IP) Virtual Network: MyVNET DNS IPs: 192.168.1.4 Virtual Machine Role Name: ad-dc Subnet: ADSubnet IP Address: 192.168.1.4 DIP Virtual Machine Role Name: advm1 Subnet: AppSubnet IP Address: 192.168.2.4
Demo Deploying AD – On Prem Azure Running AD on Windows Azure IaaS http://technet.microsoft.com/en-us/library/jj713614.aspx Windows Azure Training Kit http://aka.ms/github HOL-DeployingActiveDirectory HOL-DeployingActiveDirectoryPS
