Upload
darian-kindrick
View
224
Download
1
Tags:
Embed Size (px)
Citation preview
Windows Server Work Folders Overview Nir Ben-ZviWilliam Geraci
WCA-B214
Agenda• Background and problem space• Introduction to Work Folders• Deploying and configuring Work Folders
People-centric IT and Corporate data Information worker: “I need to work from anywhere on my different devices”
IT manager: “I’d like to empower my Information Workers while keeping control of the corporate information”
Today:• Many corporate documents can be found on consumer
storage services• IT has no control leading to compliance and leakage issues
Windows File Servers
The original Windows Server workloadExabytes of new storage deployed annuallyRich data security and management ecosystemOffline Files and Folder RedirectionWindows Server 2012 innovation leaps
Allow information workers to sync their individual user data to all of their devices wherever they are, while remaining in compliance with their organization’s policies
Introducing Work Folders on File Servers
HighlightsExtension of file server functionalityCentralize, protect and manage dataEncryption of data in transit and at restEasily separate work and personal dataSimple, intuitive user experience
Not part of Work FoldersConsumer servicePublic cloud serviceStructured collaborationSync arbitrary file shares
File Sync Solutions
Consumer / personal
data
Individual work data
Team / group work data
Personal
devices
Data location
SkyDrive Public cloud
SkyDrive Pro SharePoint / Office 365
Work Folders File server
Folder Redirection / Client-Side Caching
File server
DemoClient Setup And Sync
File and Storage Services sub-roleAn additional access protocolConsolidated view of sync activity across your server
Logical component overview
Multiple Sync Shares per serverEach share maps to a file system locationUsers/groups associated with a single sharePolicy defined per share
Files stay in sync across all devicesLocal changes sync back to server and then to other devicesSMB clients can continue to work directly with server files
Server Deployment
Data managementQuotasFile screensReportingClassificationRMS protection
Device management policyFile encryption / selective wipeRequire password / device lock
Limit access to registered devices )ADFS(
AuthenticationKerberos (Windows Auth)Digest (Windows Auth)
ADFS (OAuth)
https://workfolders.contoso.com
Demo
Server Configuration
You are ready to use Work FoldersSync Information Worker corporate data across their devices using an IT controlled File Server as the back-end repository
Already have a solution deployed for domain joined devices using central shares for user data (e.g.: Home folders) enable sync on non-domain joined user devices to the same user share using non domain joined devices
Opt-inSettings delivered via Group Policy, SCCM or IntuneUser decides if they want to use Work Folders on that device
MandatorySettings delivered via Group Policy, SCCM or IntuneNo user action required
Auto discoveryAuto discovery based on user email address
URL basedUser provided URL
Device deployment options
Triggered by Group policy / System Center
Initiated by user
End to end security
User exclusive access
Automated classification
RMS protection
Reporting on sensitive information
Anti Virus protection
Limit access to registered devices (ADFS seamless two factor auth(
AuthenticationKerberos (Windows Auth)Digest (Windows Auth)
ADFS (OAuth)
Secure transport (HTTPS)
Require passwordDevice lockFile encryption Selective wipe
Demo
Protecting Data
Why multiple servers?Scale-out for capacityBranch / regional officesDepartmental server managementSeparate data stores for compliance
Challenges we need to solveFinding the right serverKeeping configuration simple for the end userMake it easy to migrate users between servers
Multi-server deployments
Multi-server deployments: Using URLs How does Joe connect
to the right Work Folders server?
Some simple options:Email him a URL
Configuration management tools
When we migrate Joe to a different server he needs a new URL…
https://sync3.contoso.com
Multi-server deployments: Auto Discovery1
[email protected] 1. Joe enters: [email protected]
2. Auto discovery uses: htps://workfolders.contoso.com
3. Request gets to Sync1.contoso.com which looks up Joe’s sync server in AD
4. Redirect Joe’s device to Sync3.contoso.com
5. Sync commences between Joe’s device and Sync3.contoso.com
https://workfolders.contoso.com
2
3
4
5
Simple to deploy, use and manage
Fully leverage your existing file server investment
Empower employees to be productive
Maintain control of your organization’s data
Get insight into data currently on user devices
Key Takeaways
System Center 2012 Configuration Managerhttp://technet.microsoft.com/en-us/evalcenter/hh667640.aspx?wt.mc_id=TEC_105_1_33
Windows Intunehttp://www.microsoft.com/en-us/windows/windowsintune/try-and-buy
Windows Server 2012 http://www.microsoft.com/en-us/server-cloud/windows-server
Windows Server 2012 VDI and Remote Desktop Serviceshttp://technet.microsoft.com/en-us/evalcenter/hh670538.aspx?ocid=&wt.mc_id=TEC_108_1_33
http://www.microsoft.com/en-us/server-cloud/windows-server/virtual-desktop-infrastructure.aspx
More Resources:microsoft.com/workstylemicrosoft.com/server-cloud/user-device-management
For More Information
Windows Phone Breakout SessionsMonday, June 3:
1:15pm - The phone that has everything the enterprise needs: Windows Phone 83:00pm – The top down guide for developers: Windows Phone 84:45pm – Radical perspectives on mobility strategy
Tuesday, June 4:8:30am – The power of collaboration: Integrating Windows Phone with Office 365, Exchange and SharePoint Online10:15am – All aboard for the future of HTML5 mobile & hybrid web apps for Windows Phone 8 and Windows Tablets1:30pm – The Windows Phone 8 networking survival kit3:15pm – Build it once for both: Writing code and designing for Windows 8 and Windows Phone 85:00pm – Secrets of using background agents for Windows Phone 8
Windows Phone Breakout SessionsWednesday, June 5:
8:30am – Mobile security in the enterprise: Windows Phone 8 answers the call10:15am – Using C and C++ in your Windows Phone 8 applications1:30pm – Developing large-scale enterprise mobile apps for Windows Phone 83:15pm – Speechifying your Windows Phone 8 applications
Thursday, June 6:8:30am – Manage Windows Phone enterprise apps10:15am – Support your demanding LOB apps with SQLite and Windows Phone 81:00pm – Creating Windows Phone 8 apps for SharePoint
Windows Phone Hands On LabsPorting Windows 8 to Windows Phone 8Windows Phone 8: File and Protocol AssociationWindows Phone 8: Lock Screen WallpaperWindows Phone 8: Voice CommandWindows Phone 8: TilesWindows Phone 8: PurchaseWindows Phone 8: WalletWindows Phone 8: Running Tracker
Windows Phone BoothDevice Bar featuring the latest Windows Phones in the marketplaceExpert Area – Stop by the booth to get all your Windows Phone questions answered by Windows Phone expertsTheater Presentations:
The Windows connected experienceGet Hands on with Windows Phone for BusinessWindows Phone 8 Developer focused sessions
Windows Phone PromotionsWindows Phone Hats – Stop by the Windows Phone booth to get your free hat. Wear the hat for a chance to win a Windows Phone. Attend a Windows Phone theater session to be entered into a drawing for Windows Phones and other prizes.Windows Phone Breakout Sessions – Attend Windows Phone breakout sessions and be entered into a drawing to win a Windows Phone.Windows Phone Hoodie’s – Get a demo from the Windows Phone roaming demo team in the expo hall. Wear the hoodie for a chance to win a Windows Phone.
Track Resources
For more information about Windows Phone:http://www.windowsphone.com/business
Related content
Access & Information Protection Booth
WCA-B204 Active Directory Enables User Productivity and IT Risk Management Strategies Across a Variety of Devices
WCA-B214 Windows Server Work Folders overview – my corporate data on all my devices
WCA-B332 Windows Server Work Folders – a deep dive into the new Windows Server data sync solution
WCA-B333 Enable work from anywhere without losing sleep: remote access with the Web Application Proxy and VPN solutions
WCA-B334 Secure anywhere access to corporate resources such as Windows Server Work Folders using ADFS
Hands on lab Active Directory Deployment and Management Enhancements
Hands on lab Using Dynamic Access Control to Automatically and Centrally Secure Data
Hands on lab Introduction to DirectAccess in Windows Server 2012
Hands on lab Windows Server 2012 R2 Work Folders
Breakout Sessions and Hands on labs
msdn
Resources for Developers
http://microsoft.com/msdn
Learning
Microsoft Certification & Training Resources
www.microsoft.com/learning
TechNet
Resources
Sessions on Demand
http://channel9.msdn.com/Events/TechEd
Resources for IT Professionals
http://microsoft.com/technet
Complete an evaluation on CommNet and enter to win!
Evaluate this session
Scan this QR code to evaluate this session and be automatically entered in a drawing to win a prize
© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.