I will vigorously agree with this... a cluster for handling ADFS2 load for basic sign-on to SaaS is very rarely necessary, but you almost always do want to be able to patch and reboot without making unavailable all the stuff that now absolutely depends on federation/SSO.
--Steve On Thu, Jun 28, 2012 at 11:52 AM, Brian Desmond <[email protected]>wrote: > *I think 99.99% is overdoing it. I’m pretty sure there is more than .01% > of customers who want HA for their AuthN to email, IM, SharePoint, partner > apps, etc. * > > * * > > *Thanks,* > > *Brian Desmond* > > *[email protected]* > > * * > > *w – 312.625.1438 | c – 312.731.3132* > > * * > > *From:* Michael B. Smith [mailto:[email protected]] > *Sent:* Wednesday, June 27, 2012 4:29 PM > > *To:* NT System Admin Issues > *Subject:* RE: Office 365 and AD synchronization**** > > ** ** > > You don’t need a separate machine for either dirsync or adfs. It is, > indeed, recommended. It’s also recommend to have a load-balanced adfs > proxy, but for 99.99% of clients, that is just bollocks.**** > > ** ** > > *From:* Christopher Bodnar [mailto:[email protected]] > *Sent:* Wednesday, June 27, 2012 10:28 AM > *To:* NT System Admin Issues > *Subject:* Office 365 and AD synchronization**** > > ** ** > > Getting ready to migrate a small office environment to office 365. Domain > is 2008 R2, only 10 users. I'm reading through all the documentation and > specifically looking at the requirement for a separate machine to host the > Directory Synchronization tool. Anyone here do this yet with a small > office? Just curious as to the load on the box. I'm going to create a VM > for this but see that the minimum requirements are 4G RAM and 70G of disk > space. That seems high to me for something like this in a very small > environment. Curious to hear what others have seen after doing this in a > similar environment. > > Also just starting to read about single sign-on. So using the AD Sync tool > doesn't give you single-sign on? It just gets your users and groups up to > Office 365? For what purpose, if the credentials are synched? That's what I > don't understand yet, but I'm not done reading yet, so maybe that will > come. So if you need AD FS for single sign-on, how was the process? > > Thanks, ** ** > > *Christopher Bodnar* > Enterprise Achitect I, Corporate Office of Technology:Enterprise > Architecture and Engineering Services **** > > Tel 610-807-6459 > 3900 Burgess Place, Bethlehem, PA 18017 > [email protected] **** > > > * > The Guardian Life Insurance Company of America* > * > *www.guardianlife.com **** > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
<<image001.jpg>>
