Microsoft Interoperability Part 1 - Collaboration

BRKCOL-2610

Tobias Neumann Technical Solutions Architect Cisco Spark

Questions? Use Cisco Spark to communicate with the speaker after the session

How 1. Find this session in the Cisco Live Mobile App 2. Click “Join the Discussion” 3. Install Spark or go directly to the space 4. Enter messages/questions in the space

cs.co/ciscolivebot#BRKCOL-2610

• Introduction Microsoft Collaboration Architecture

• Options for Interoperability

• Recommended Deployment Models • Intra Company Federation (chat only) • Intra Company Federation (chat & calling A/V) • Intra Company Interoperability (telephony) • Business to Business Federation (chat & calling) • Interoperability when going cloud … Introduction Microsoft Collaboration Architecture Microsoft Lync / Skype for Business Architecture Overview – on-premise

Communication Modalities

Mediation Director Many moving Edge Archiving Role parts Persistent Chat Reverse Proxy Archiving Front-End Persistent Chat Monitoring Front-End SQL Server Office Web XMPP Gateway AV Conferecing Apps

DNS Load Balancer Storage Compute Additional 3rd Survivable Branch Appliance Video Devices party components Phones Gateways Transcoders Hardware Load Balancer

Interoperability and specifics Lync 2010 / Lync 2013 / Skype for Business . Audio: RCC no longer supported with Skype for Business, replaced by • Mediation Server (Enterprise Voice) Call via Work – significantly different features and capabilities • Remote Call Control (RCC) . Instant Messaging and Presence: • SIP/SIMPLE Federation • XMPP Federation For Microsoft Lync 2010 and Office Communication Server 2007 via a separate OCS 2007 R2 XMPP Gateway For Microsoft Lync 2013 via the XMPP Proxy (Edge), XMPP Gateway (Front-End) (only tested and supported by Microsoft for federation with Google Talk https://technet.microsoft.com/en-us/library/jj205134(v=ocs.15).aspx) Microsoft Skype for Business RCC Reference: https://technet.microsoft.com/en-us/library/gg558658.aspx

Video interoperability with Lync 2010 / Lync 2013 / Skype for Business • Microsoft Lync supports point to point and multipoint video capabilities • A complex set of integrations are available to interoperate Microsoft’s vendor specific video implementation with a h.264 AVC standards based video environment • Please see BRKCOL-2611 – Cisco Interoperability with Microsoft Part 2 (Video Interoperability) for details

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 9 Microsoft Skype for Business Online – Office 365 Architecture Overview - SaaS • Communication capabilities of Skype for Business as a cloud-based service • Presence, instant messaging, audio and video calling, rich online meetings web conferencing capabilities • PSTN connectivity Where available, hybrid • Closed community no standards based interoperability (i.e. IM & Presence or Video)

Not explicitly tested, there are no plan to test this scenario Future Microsoft cloud to premise connectivity via SBC not cloud connector.

Capabilities

Interoperability only supported with OCS, Lync or Skype for Business on premise Internet systems SIP No standards based federation interface supported by Microsoft

Microsoft Office 365 Skype for Business Online Federation and Public IM Connectivity: https://technet.microsoft.com/en-us/library/skype-for-business-online-federation-and-public-im-conectivity.aspx

We don‘t know yet … Microsoft has announced roadmap information and plans

Several public statements suggest that future interoperability for voice and telephony services will be based on Session Border Controller no longer emphasising on Microsoft Cloud Connector. Telephony feature interoperability with existing systems and PSTN TBD.

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 13 Options for Interoperability Presentation ID “How do I connect my existing Cisco Voice Infrastructure to my Microsoft real Many options… estate?” “Which way can I provide a compelling user experience?” “How can I communicate with my business partners, who are using Microsoft, from my Cisco Collaboration … I am not Solution?” “What options do I have to integrate going to tell you collaboration capabilities in my Microsoft the answer! Application Suite?”

This sessions tells you what to choose from... Presentation ID17 Telephony Interoperability Enterprise Voice Call Routing

User has multiple options to initiate a call • Depending on dialing habit • Called party • License purchased

Different results • When dialing either SIP URI or phone number of Lync/SFB user (reverse number lookup), a “Lync to Lync” call is initiated

User has multiple options to initiate a call • Depending on dialing habit • Called party • License purchased

Different results • When dialing either SIP URI or phone number of Lync/SFB user (reverse number lookup), a “Lync to Lync” call is initiated • If a number is called and the called party is NOT a Lync/SFB user - call routed via mediation server (Enterprise Voice Routing) • If an Audio/Video call is initiated and the called SIP URI is not another Lync/SFB user – call routed via SIP routing logic (SIP static route)

User has multiple options to initiate a call • Depending on dialing habit • Called party • License purchased

A users view of the world…

Skype for Business only Skype for Business and Cisco IP phone

• Reach corporate extensions In addition to previous use case • Reach PSTN number • Available via corporate extension on • Available via corporate extension both devices simultaneously • Available via PSTN number • Access to users on both platforms from • Telephony feature set all user associated devices • Telephony feature transparency Possible with Direct SIP Integration Difficult to impossible to achieve • Integration with existing Cisco UCM system • Simultaneous reachability on both devices on for access to corporate extensions and PSTN different call control platforms (MSFT “Sim • Telephony features only available within the Ring” & CSCO “SNR”) high risk → call routing Skype for Business Domain loops • Telephony feature interoperability protocols SIP/QSIG not available with Mediation Server

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 24 Enterprise Voice Call Routing SIP Trunk / Direct SIP Options 1/2 OCS 2007 / Lync 2010 & 2013 / Skype for Business (no media bypass) S4B Client S4B Front End S4B Med. Server Cisco UCM

RTaudio G.711 OCS 2007 / Lync 2010 & 2013 / Skype for Business (no media bypass), none G.711 on IP-PBX S4B Client S4B Front End S4B Med. Server Cisco UCM IOS Transcoder

RTaudio G.711 G.729/iLBC Flows show the SIP signaling and media paths in a SIP-trunk (Direct SIP) interoperability scenario Lync Mediation Server only supports G.711, requires additional transcoding resources if any other codec is used by devices connected through SIP-trunk Scenarios shown do not require the usage of a Media Termination Point (MTP)

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 25 Enterprise Voice Call Routing SIP Trunk / Direct SIP Options 2/2 Lync 2010, Lync 2013, Skype for Business (with Media Bypass)

S4B Client S4B Front End S4B Med. Server Cisco UCM

G.711 G.711 With the introduction of Media Bypass in Lync 2010 the Lync client can initiate direct G.711 media streams. Media paths is not hair pinned through the Lync Mediation Server, no transcoding. Signaling via the Mediation Server.

Review Microsoft guidance regarding Media Bypass http://technet.microsoft.com/en-us/library/gg412740.aspx Straight forward in a centralized (single site) topology without WAN links. More complicated in a distributed topology with one or more branch - check the following: Media Bypass shall only be utilized between WAN sites without bandwidth constrains Media Bypass and Call Admission Control (CAC) are mutually exclusive Media Bypass mandatorily requires all media to be represented by a single IP address – the reason why in the above example a Media Termination Point (MTP) has to be inserted.

Single Site Deployment Complex WAN Deployment

…. Remote locations • More scalable – no Mediation Server • Highly complex to configure and troubleshoot transcoding required • Mutually exclusive to CAC, required in some • LAN bandwidth CAC not required WAN topologies • Simple redundancy configuration with Cisco • Remote site MTPs required to keep media UCM cluster and Microsoft Mediation Server local Pool • Further complicated when redundancy is required • With roaming devices (i.e. PCs) certain call scenarios will still result in hair pinning and suboptimal media routing See hidden reference slides for further details BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 27 Enterprise Voice Call Routing Multiple Site example (Lync / Skype for Business to Cisco UCM)

Site 1

Site 2 Site Central Site 1 Site

Central

S4B Front-End Site 2 Mediation Server Pool Server Pool To keep media local to a site each site requires a local media resource Alternate media IP definition in Lync trunk configured matches IP address of single media resource in MRGL/MRG of the trunk on Cisco UCM side Multiple sites require multiple trunks … and multiple MRGs, MRGLs and media resources … and multiple SIP security profiles, because unique identification of each trunk on Cisco UCM based on the signaling port (UCM side trunk identification based on peer IP address and local signaling port)

Site 1 Site 2b Site

Site2a Central

Site 1b Site Site 1a Site

Site 2

Mediation S4B Front-End Server Pool Server Pool

Two sites with Lync to Unified CM SIP trunk redundancy already require: 4 trunks, 4 MTPs/TRPs 4 MRGS, 4 MRGLs 2 SIP trunk security profiles

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 29 Enterprise Voice Call Routing Lync Media Bypass implications on redundancy Fixed media IP configuration for GW on Lync forces 1:1 relation between inbound SIP trunk on Unified CM and MTP Can not use MRG and MRGL for intelligent MTP selection (scalability, redundancy) Availability of SIP trunk depends on SIP signaling peer and MTP availability … which can not be monitored via SIP OPTIONS ping Only indication of failing MTP allocation for inbound EO call from Lync: If UCM fails to allocate a MTP call can be signaled failed and left to Lync to reroute using different SIP trunk Outbound calls from Unified CM need to be EO and have to be via MTP (MTP required – Media Bypass)

Site 1

Site 2 Site Central Site1

WAN Site 2

S4B Front-End Mediation Server Pool Server Pool

Unified selects trunk to Lync based on called destination (+E.164 prefix) MTP (assumed) local to Lync client selected Alternate media IP definition in Lync trunk configured in same site as Lync client -> bypass activated Local media

Site 1

Site 2 Site Site 1 Site

Site 2

S4B Front-End Mediation Server Pool Server Pool

Unified selects trunk to Lync based on called destination (+E.164 prefix), but Lync client moved to other site MTP (assumed) local to Lync client selected Alternate media IP definition in Lync trunk configured not in same site as Lync client -> no media bypass Mediation server in media path Media hairpins through central site BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 32 Enterprise Voice Call Routing Multiple Site example – roaming user

Site 1

Site 2 Site Site 1 Site

Site 2

S4B Front-End Mediation Server Pool Server Pool

False assumption about Lync client location could lead to even worse media path: Unified CM selects trunk with MTP local to (assumed) location of Lync client: Site 2 Lync rejects media bypass, because MTP not local to IP address of Lync client Mediation server in media path, Media hairpins through remote and central site

• CLIP—calling line (number) identification presentation • CONP—connected Name identification presentation

• CLIR—calling line (number) identification restriction • CONR—connected Name identification restriction

• CNIP—calling Name identification presentation • Hold and resume

• CNIR—calling Name identification restriction • Conference call

• Alerting Name • Audio Codec Preference List

• Attended call transfer • Call Park/Pickup(see limitation section)

• Early attended call transfer • Extend and Connect

• CFU—call forwarding unconditional • Shared Line on Cisco Endpoints

• CFB—call forwarding busy

• CFNA—call forwarding no answer

• COLP—connected line (number) identification presentation

• COLR—connected line (number) identification restriction

Skype for Business: Cisco Unified Communications Manager: • Add Cisco UCM to Skype for Business Topology • SIP trunk security profile • Trunk Configuration • SIP profile • Route Configuration • Media resource group and media resource group list • Voice Policy and PSTN Usage Configuration • Assign media resource group list (MRGL) in the default device pool • Dial Plan Configuration • • Call Park range Configuration Region configuration • • Media Bypass Configuration Normalization script • • User Configuration SIP trunk to Skype for Business • • Client Configuration SIP and SCCP phones device configuration • Route Group, Route List and SIP Route Pattern Voice Mail • Route pattern to Skype for Business and Skype for Business call park range

https://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise/interoperability-portal/cucm-skype-business-tls-appnote.pdf

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 36 Chat & Presence Interoperability Chat & Presence Interoperability A blast from the past… Business to Business Federation Within a Business Federation Inter Domain Federation Intra Domain Federation Direct SIP SIMPLE Federation Direct SIP SIMPLE Partitioned Intra Domain Federation

Cisco ASA TLS Proxy SIP SIMPLE Federation Chat & Calling (A/V) Federation VCS CPL

Direct XMPP Federation Chat & Calling (A/V) Federation VCS/Expressway Broker

Direct XMPP Federation with Cloud

• “Why is interoperability so complicated?” • “Why do I need so many different boxes doing different things to achieve my goal?” • “Why does it have to be so expensive to do interoperability?” • “How can I seamless communicate with my business partners independent if they use Cisco, Microsoft or some other standards based solution?” • “How can I do a phased migration after an acquisition to a unified Cisco solution?” Things have changed.. • Microsoft deprecated support for XMPP Microsoft tested and supported only for Google Talk https://technet.microsoft.com/en-us/library/jj205134(v=ocs.15).aspx • New vulnerabilities require new levels of security, TLS 1.0 no longer a viable option … we did listen!

BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 39 Chat & Presence Interoperability A single architecture for Inter- and Intra Domain Federation Business to Business Federation Within a Business Federation Inter Domain Federation Intra Domain Federation Cisco Expressway SIP SIMPLE Federation with Microsoft Cisco Expressway Partitioned Intra Domain Federation

Cisco Expressway becomes the unified edge for all Cisco Expressway as centralized routing instance for B2B communications Microsoft Interoperability • Utilizing existing resources (B2B Video, Jabber MRA) • Streamlined configuration • Adds SIP SIMPLE capabilities on top of the already • Single point of contact for all Microsoft based existing XMPP federation services communications • Single routing instance for all B2B traffic • Removes requirement for 3rd party components (load • Provides chat & calling B2B capabilities to Microsoft balancers) Skype for Business on premise and Skype for Business • Integrates chat & calling federation inside the enterprise online (coexistence or migration)

• Microsoft uses a vendor specific dialect of SIP • Cisco Expressway has been enhanced to allow Search Rules to be based on SIP “dialect” and the type of traffic (chat/presence or audio/video) Cisco Expressway SIP SIMPLE Federation with Microsoft Complex Routing (chat & calling)

Expressway

MSFT SIP IM&P

MSFT SIP IM&P AV & Share MSFT AV & Share S4B Front End UCM IM/P Cisco Expressway SIP SIMPLE Federation with Microsoft Basic Routing (chat & presence) Standard SIP CMS AV & Share UCM

Expressway S4B Front End UCM IM/P • Symmetric routing • No certificate change required on Skype for Business Server • Multiple neighbour zones supported with up to 6 neighbours • Support Cisco UCM Multi Cluster deployment BRKCOL-2610 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 41 Cisco Expressway Chat & Calling Interoperability The whole deal