Monday, 5 December 2011

Configure the Microsoft Online Services Module for Windows PowerShell

To convert a domain, that you have added and verified in your Office 365 account, to a single sign-on domain (federated domain), follow these steps:

Navigate to Microsoft Online Services Module by going to Start-> All Programs -> Microsoft Online Services

Right click on Microsoft Online Services Module for Windows PowerShell and click Run as administrator
Once PowerShell is open, run $cred=Get-Credential. When the cmdlet prompts you for credentials, type your Office 365 admin username and password.
Run Connect-MsolService -Credential $cred. This cmdlet connects PowerShell session to your Office 365 account.
Run Convert-MsolDomainToFederated -DomainName <yourdomain>, where <yourdomain> is a domain that you have already verified in your Office 365 account and want to use it for identity federation. This cmdlet changes the default standard cloud based authentication for yourdomain to single sign-on authentication.

Now that you have converted configured your domain for identity federation, the next step for Single Sign-on is to set up Active Directory synchronization.

Install the Microsoft Online Services Module for Windows PowerShell

After you have deployed Active Directory Federation Services 2.0 (Ad FS 2.0), the next step to set up single sign-on is to download, install, and configure the Microsoft Online Services Module for Windows PowerShell. This will setup a trust between your AD FS and Office 365 Federation Gateway.
To install and configure the module follow these instructions:
First you have to make sure your system meets the requirements for the Microsoft Online Services Module:


  • Operating system: Use Windows 7 or Windows Server 2008 R2.
  • Microsoft .NET Framework: You must turn on the Microsoft .NET Framework 3.51 feature in Windows 7 or Windows Server 2008 R2.
  • Windows PowerShell 2.0 and AD FS 2.0: In order to run the cmdlets to set up single sign-on, you must turn on the Windows PowerShell 2.0 feature, and you must have administrator privileges on the AD FS 2.0 server.
  • All Office 365 software updates: From the Office 365 downloads page, install the required updates. To access the Office 365 downloads page, sign in to the Office 365 portal, and, under Resources, click Downloads. These updates are required because the features in Office 365 will not work properly without the appropriate versions of operating systems, browsers, and software.
Download Microsoft Online Services Module:
Download the 32-bit module
Download the 64-bit module

On the popup page click Run
On the Welcome screen click Next
On the License Terms page check I accept the terms in the License Terms and click on Next button
On the Installation Location page click Next button
On the Ready to Install page hit the Install button
Installation may take several minutes …
Once there click the Finish button to exit the setup

Now that you have installed the module, the next step is to configure the Microsoft Online Services Module for Windows PowerShell for single sign-on

Friday, 2 December 2011

Configure AD FS for Office 365 Step by Step Guide

Follow this procedure to set up the first federation server for Office 365 in a new federation server farm:
Note: you will need to use a Domain Admin account to setup the AD FS server

Open AD FS 2.0 Management snap-in from Start -> Administrative Tools -> AD FS 2.0 Management
On the Overview page, click AD FS 2.0 Federation Server Configuration Wizard.
On the Welcome page, ensure that Create a new Federation Service is selected, and then click the Next button
On the Select Stand-Alone or Farm Deployment page, select New federation server farm, and click the Next buttion
On the Specify the Federation Service Name page, ensure that the SSL certificate that is picked up by the wizard is the one that you have installed in the previous step on your IIS. If this is not the one, select the appropriate certificate from the SSL certificate drop-down list, and then click the Next button
On the Specify a Service Account page, click Browse button, locate the domain account that will be used as the service account for federation server farm and click OK
Type the password for the service account and click Next
On the Ready to Apply Settings page click Next
Once the configuration is done, on the Configuration Results page, review the results and click Close
Now that the AD FS is configured on your server you need to verify that the federation server is operational.
To verify that the federation server is operational:

Click Start, point to Administrative Tools, and then click Event Viewer.
In the Event Viewer navigate to Applications and Services Logs -> AD FS 2.0 -> Admin
Look for event ID 100 which indicates that the federation server is configured properly
Now that you have configured your AD FS, the next step for Single Sign-on is to install and configure the Microsoft Online Services Module for Windows PowerShell.

Thursday, 1 December 2011

Install AD FS for Office 365 Step by Step Guide

You must install AD FS 2.0 on any computer that you are preparing for the federation server role for Office 365 identity federation.

To install AD FS 2.0, follow the instructions provided below:

Download the AD FS 2.0:
Active Directory Federation Services 2.0 RTW

Locate the AdfsSetup.exe setup file on where you have downloaded it, and then double-click it.
On the Welcome screen page, click the Next button
On the End-User License Agreement page, select the I accept the terms in the License Agreement check box, and then click the Next button.

On the Server Role page, select Federation server, and then click the Next button
On the Install Prerequisite Software page, click Next
Installation may take several minutes …


Once it is done, on the Completed the AD FS 2.0 Setup Wizard page uncheck the Start the AD FS 2.0 Management snap-in when this wizard closes box and click Finish.
Install all of the hotfixes as indicated in Description of Update Rollup 1 for Active Directory Federation Services (AD FS) 2.0.

Prepare for Single Sign-on


To use single sign-on, your Active Directory must be Windows Server 2003 or above with a functional level of mixed or native mode.

In addition, the domain that you want to use for identity federation must be a public domain (e.g. it cannot be yourdomain.local) registered with a domain registrar. If you are using an AD domain name which is not a public domain, you will need to add your public domain (e.g. yourdomain.com) as User Principle Name (UPN) for your AD domain.

To create UPNs, follow these instructions:

On you Domain Controller navigate to Start -> Administrative Tools and open Active Directory Domains and Trusts.

Right-click Active Directory Domains and Trusts, and then click Properties

On the UPN Suffixes tab, in the Alternative UPN suffix field type your public domain (e.g. yourdomain.com) and then click Add.

Once done, click the OK button

Wednesday, 23 November 2011

Integrate CRM Online with SharePoint Online using CRM Online List Component

In the latest SharePoint Online Service Update (SU1), support for CRM List Component was added to SharePoint Online. This means that now Office 365 customers will be able to integrate their SharePoint Online environment with CRM Online. This will bring all the advantages of document management of SharePoint into CRM Online environment. 
This integration enables you to define which CRM entities (such as Accounts, Articles, etc.) need to have document management enabled on, and this will allow automatic folder creation in SharePoint Online directly from your CRM Online environment.
Please note that you must be a SharePoint site collection administrator to be able to install the Microsoft Dynamics CRM List component on SharePoint Online in your Office 365 account.

1. Download the List Component from the link below:
Download Instructions:
   a) To start the download, click Download.
   b) To save the file to your computer, click Save, specify a location, and click Save again.
2. Navigate to the folder where you downloaded CRM2011-SharePointList-ENU-amd64.exe, and double-click it.
3. In the Setup for SharePointList dialog box, check the Click here to accept the Microsoft Software License Terms box and click Continue.


4. Select a folder to store the extracted files, and click OK.
    The following files are extracted:
    AllowHtcExtn.ps1
    crmlistcomponent.wsp
    mscrmsharepointeula.txt

5. Open your browser.

6. In the address bar, type the URL of your SharePoint Online site (on Office 365) on which you want to install the Microsoft Dynamics CRM List component.

7. Click Site Actions, and then click Site Settings.

8. Under Galleries, click Solutions.



9. On the Solutions tab, in the New group, click Upload Solution.



10. Click Browse, locate the crmlistcomponent.wsp file, and then click OK.



11. On the Solutions tab, in the Commands group, click Activate.



12. Now login to your CRM Online account and navigate to Settings > Document Management > Document Management Setting



13. Select the entities that you want to enable document management on them and enter the address of your SharePoint site which the SharePoint List component is installed.

Wednesday, 16 November 2011

Office 365 public-facing website

One of  the great features in Office 365 is that you can create, easily design and maintain a professional-looking public website built in Office 365 and hosted by Microsoft.
I have recently launched a new website built in Office 365:
http://office365mission.co.uk
I welcome your comments and feedback as I continue to build the site.http://office365mission.co.uk

Friday, 14 October 2011

Manually configure Outlook to connect to Office 365 (Exchange Online)

To manually configure Outlook to connect to Exchange Online, follow these steps:
1. Determine the mailbox server name and the proxy server URL. To do this, follow these steps:
a. Sign in to the Office 365 portal.
b. Click Outlook to open Microsoft Outlook Web App.
c. In the upper-right corner of the page, click the Help icon (the question mark), and then click About.
d. On the About page, locate and then note the following items:
Locate Host name and note its address.
As an example in the case below the Host name is amsprd0406.outlook.com and yours will be something similar:
This value will be used later as proxy server for Exchange URL


Now that you have the proxy server address, you can find your Mail Server name by changing outlook.com to mailbox.outlook.com in the proxy server address:
As an example if  your Host name value is amsprd0406.outlook.com , you need to change it to amsprd0406.mailbox.outlook.com
This value later will be use as Mailbox server name when configuring your Outlook profile.


2. Manually configure Outlook to connect to Exchange Online.
To do this, follow these steps: 
a. Click Start, click Control Panel, and then click Mail.
 b. Click Show Profiles and then click Add.
 c. Type a name for the profile, and then click OK.
   
d. Click to select the Manually configure server settings or additional server types check box, and then click Next
e. Select Microsoft Exchange or compatible service, and then click Next

f. In the Server box, type the mailbox server name that you noted in step 1d. In this example:

g. Make sure that the Use Cached Exchange Mode option is selected.

h. In the User Name box, type your user name (for example in this case, amin.tavakoli @pygmalion.com), and then click More Settings.



i. Click the Connection tab.

j. Make sure that the Connect to Microsoft Exchange using HTTP check box is selected, and then click Exchange Proxy Settings.



k. In the Use this URL to connect to my proxy server for Exchange box, type the proxy server URL that you noted in step 1d. In this example:
l. Make sure that the Only connect to proxy servers that have this principal name in their certificate check box is selected, and then type msstd:outlook.com.

m. Click to select the On fast networks, connect using HTTP first, then connect using TCP/IP check box, and then click to select the On slow networks, connect using HTTP first, then connect using TCP/IP check box.
n. Under Proxy authentication settings, select Basic Authentication.


o. Click OK two times.
p. Click Check Names. When the server name and the user name are displayed with an underline, click Next. If the Windows Security windows comes up, enter your username and password and make sure Remember my credentials box is checked.
Once it is all setup you will notice that both Server and Username fields become underlined.

q. Click Next and Finish.