00AngelCloud - Exwire!

acceptableseashoreSecurity

Nov 5, 2013 (3 years and 9 months ago)

96 views


Telecom Italia Mobile

Eva Blaisdell

Chairman of the Board

Blais
-
Tel International Group






Microsoft Directions


We are network agnostic


Our focus is on Internet standards


Markup: HTML, XML / XSL


Transport: HTTP, TCP / IP


Security: SSL, tunneling protocols

Device &
Browser
Choice


Outlook Mobile
Access


Intranet Apps

Carrier
Network

Towers,
Switch,
SMSC,
Billing

Secure
Connectivity

External
Corporate
Firewall

Internal
Corporate
Firewall

Mobile
Information
Server


Enterprise
Edition

Multiple
.NET
Enterprise
Servers

Servers

Servers

Outlook
Mobile
Manager

Corporate Network

Flexible Deployment

Mobile
Information
Server
-
Carrier
Edition

6

Deployment Scenario:

Secure Browse

MMIS
-
CE

MMIS
-
EE

IIS/ASP

SQL

Client/MOMM

….

….

SMSC


Secure, authenticated access to
Exchange mailbox, calendar,
contacts and tasks


Secure access to corporate
applications

WTLS

SSL

Carrier
Backbone

IIS/ASP.net

Exchange

WAP
Gateway

Enterprise Intranet

7

Carrier
Backbone

Deployment Scenario:

Secure Push Notifications

MMIS
-
CE

MMIS
-
EE

IIS/ASP

SQL

Client/MOMM

….

….

SMSC


Exchange Push “out of the box”


“Push”
-
enable ASP.NET / ASP
applications

IPSec or SSL

IIS/ASP.net

Exchange

WAP
Gateway

Enterprise Intranet

8

ISA Server Integration

Enhanced Browse Security with MIS2002

WAP
Gateway

IIS/ASP

Enterprise Intranet

SQL

WTLS

SSL

Carrier
Backbone

IIS/ASP.net

Exchange

ISA Server

(with MIS

ISA Filter)

DC

DC

SSL

LDAP

LDAP

HTTPS

MIS

Firewall


Add SecurID support by adding MIS
SecurID filter to ISA and MIS servers
(requires SecurID server software)

MIS Server

Active Directory

Exchange Server

Internet

Corp Domain

Corp Forest

Firewall 0

Firewall 1

IPSEC

Single Domain Corporate Users

MOMM Desktop

MIS Server

Corp Domain Controller

Exchange Server

Internet

Corp Domain

Corp Forest

Firewall 0

Firewall 1

Wireless (Child) Domain

Wireless Domain Controller

-

contains mobile accounts

Trust (2
-
way)

IPSEC

Trusted Domain


Wireless Users

MOMM Desktop

MIS Server

Corp Domain Controller

Exchange Server

MOMM Desktop

Internet

Corp Domain

Corp Forest

Firewall 0

Firewall 1

Wireless Domain

Wireless Domain Controller

-

contains mobile accounts

Trust (1
-
way)

IIS filter created for
authentication.

Aux Domain accepts or denies
LDAP simple bind request based
on the existence of the user and
the correct password

IPSEC
Connection

Wireless Forest

Un
-
trusted Domain


Single Delegated
User

Scalable Configuration

Exchange

AD

MIS Server

MIS Server

RRAS Server

WAP Gateway

SMSC

AD

IP Sec or SSL

Connection

SMTP

MIS Server

MIS Server

Load Balanced

(WLBS, Big IP, etc)

MIS Server

RRAS Server

MIS Server

RRAS Server

Load Balanced

(WLBS, Big IP, etc)

MOMM Desktop

HTTP

HTTP

SMSC

Exchange

SQL

Carrier
Edition

WAP Gateway

Consultant
-

Fabrikam
Inc.

BizTalk

Internet

Alert

IIS Server

Customer
-

Woodgrove Bank

Browse

Mobile
Information
Server


Enterprise
Edition

Wireless Carrier Network