Link to home
Create AccountLog in
Avatar of akhan0556
akhan0556

asked on

Office 365 setup

I currently have an on-prem sharepoint 2007 setup which authenticates users against AD. So an end user, on the company wifi or VPN, in the browser types in 'http://sharepoint' and they are taken to our sharepoint site. I am wanting to upgrade to Office 365 and use its sharepoint features. I want to know a few things:

1. What is a typical Office365 setup if the company wants to use just the sharepoint feature?
i.e. do you just type in 'companyname.sharepoint.com' and it takes you to microsoft's login page where you type in your email address/AD credentials to authenticate? I want this to be accessible from anywhere (i.e without having to be on company intranet or needing VPN)

2. If i do want this setup in the cloud, what are the requirements? (i.e. do i need public facing urls? proxies? adfs? etc)
SOLUTION
Avatar of Vasil Michev (MVP)
Vasil Michev (MVP)
Flag of Bulgaria image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of akhan0556
akhan0556

ASKER

I have seen some setups where end user logs in through Microsoft's login page and is re-directed to another login page where after logging in again, they are taken to their sharepoint. Is this setup using ADFS? Is this a typical scenario? (to use two logins?)
Yes, this is the AD FS scenario. It can be configured to use Windows Authentication, so the password prompt is optional so to say. You can have the user open their browser, navigate to the Office 365 site or direclty to SharePoint Online and access the sites without any additional password prompts. It also allows for greater control over the password policies and is more convenient for the enduser, however requires additional configuration on your end (servers, certificates, network config, etc).

The normal, non-federated case requires the user to login to the Office 365 page (with a set of credentials different from the on-prem ones) and then access the SharePoint sites. You can use a custom domain to have matching usernames on-prem and in the cloud if you want, and you can ask the users to use the same password and set the password never expires option so that they wont have to remember two sets of credentials. This comes with certain security drawbacks however, and you should carefully consider it.
The way my current setup works is, end user types in 'http://sharepoint' in the browser and he/she is prompted for NTLM challenge where they type in their AD credentials and they are granted access to the sharepoint site (sharepoint 2007). After upgrading, can I keep this same workflow? If so, how?
ASKER CERTIFIED SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account