您现在访问的是微软AZURE全球版技术文档网站,若需要访问由世纪互联运营的MICROSOFT AZURE中国区技术文档网站,请访问 https://docs.azure.cn.

包含 Microsoft 365 的混合 SharePoint 场

Azure Active Directory
SQL Server
Windows Server

解决方案构想 Solution Idea

若要查看有关详细信息、实现细节、定价指南或代码示例的信息,请向我们提供 GitHub 反馈If you'd like to see us expand this article with more information, implementation details, pricing guidance, or code examples, let us know with GitHub Feedback!

此解决方案通过负载平衡 Azure Active Directory (Azure AD) 、高可用性 SQL always on 实例和高度可用的 SharePoint 资源提供 SharePoint 的高度可用部署。This solution provides a highly available deployment of SharePoint using a load balanced Azure Active Directory (Azure AD), highly available SQL always on instance, and highly available SharePoint resources. 它满足了使用最新且最受支持的平台提供高度可用 intranet 功能的需要。It addresses the need to deliver highly available intranet capability using the latest and greatest supported platforms.

体系结构Architecture

体系结构关系图 下载此体系结构的SVGArchitecture diagram Download an SVG of this architecture.

数据流Data Flow

  1. 创建资源组以托管所有基于 Azure 的基础结构和服务。Create resource group to host all Azure based infrastructure and services.
  2. 在 Azure 中创建虚拟网络。Create virtual network in Azure.
  3. 部署 Windows Server 以承载 SharePoint 和 SQL server 服务帐户和计算机帐户 Active Directory 服务。Deploy Windows Servers to host Active Directory services for SharePoint and SQL server service accounts and machine accounts.
  4. 部署 SQL Server Always on,以实现对 SharePoint 场的 HA 支持。Deploy SQL Server Always on for HA support for the SharePoint farm.
  5. 部署 SharePoint 的。Deploy SharePoint Severs. 在此方案中,我们将使用2个前端和分布式缓存,2个应用程序与搜索角色一起使用。In this scenario we are using 2 Frontend with Distributed Cache and 2 Application with Search roles. 这为我们提供了高可用性。This give us high availability.
  6. 在本地服务器上安装 Azure AD Connect,以将标识同步到 Azure Active Directory。Install Azure AD Connect on an on-premises server to synchronize your identities to Azure Active Directory.
  7. (可选)配置本地 Active Directory 联合身份验证服务以支持 Microsoft 365 的联合身份验证。Optionally configure Active Directory Federation Services on premises to support federated authentication to Microsoft 365.
  8. 部署 ExpressRoute 或设置站点到站点 VPN 链接,以管理对 Azure IaaS 中托管的服务器的访问。Deploy ExpressRoute or setup a site-to-site VPN link for administrative access to the servers hosted in Azure IaaS.
  9. 设置和预配对 Azure IaaS 中托管的混合服务器的外部访问Setup and provision external access to the Hybrid farm hosted in Azure IaaS
  10. 在 Microsoft 365 和 SharePoint 场之间设置和配置混合工作负荷。Setup and configure Hybrid Workloads between Microsoft 365 and the SharePoint farm.

组件Components

  • Azure 资源组:保存 Azure 解决方案相关资源的容器Azure Resource Group: Container that holds related resources for an Azure solution
  • 虚拟网络:预配专用网络,可以选择连接到本地数据中心Virtual Network: Provision private networks, optionally connect to on-premises datacenters
  • 存储帐户:持久、高度可用且可大规模缩放的云存储Storage Accounts: Durable, highly available, and massively scalable cloud storage
  • Azure Active Directory:同步本地目录并启用单一登录Azure Active Directory: Synchronize on-premises directories and enable single sign-on
  • SharePoint Server: Microsoft 的协作服务器产品SharePoint Server: Microsoft's collaboration server product
  • 在云中托管企业 SQL Server 应用Host enterprise SQL Server apps in the cloud
  • 负载均衡器:为应用程序提供高可用性和网络性能Load Balancer: Deliver high availability and network performance to your applications
  • Azure ExpressRoute:到 azure 的专用专用网络光纤连接Azure ExpressRoute: Dedicated private network fiber connections to Azure
  • VPN 网关:建立安全的跨界连接VPN Gateway: Establish secure, cross-premises connectivity
  • Azure AD Connect:同步本地目录并启用单一登录Azure AD Connect: Synchronize on-premises directories and enable single sign-on
  • Active Directory 联合身份验证服务:同步本地目录并启用单一登录Active Directory Federation Services: Synchronize on-premises directories and enable single sign-on
  • 混合工作负荷:在本地环境和云之间进行缩放Hybrid Workloads: Scales between on-premises environments and the cloud

后续步骤Next steps