© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Justin Bradley, Solutions Architect

30. Juni 2016

Best Practices für Microsoft-Anwendungen in der Cloud

Agenda

Why are customers running Windows on AWSWhat Windows workloads run on AWS

Corp appsLine of business appsDevelopers

Where to get started and recent enhancementsSecurityManagementInfrastructureLicensing

Why are customers running Windows on AWS?

Customer Success Story

Searching for a solution to host its Microsoft SharePoint sites, the company chose AWS because of cost, efficiency, and to improve operational efficiency. By running on AWS, Dole can launch a new SharePoint website in minutes and estimates savings $350,000 in operating expenses.

“When we were looking for a place to put our SharePoint install, we built out a [Amazon] virtual private cloud, effectively using it as an extension of our datacenter… We can grow any time we want– we don’t have to go and acquire new hardware.”

– Joanna, Dyer, Director of IT Solutions, Dole Food Company

Customer Success Story

Hess turned to AWS to help consolidate disparate systems, include multiple legacy versions Windows Server 2003, and 2008 and Microsoft SQL Server 2000, 2005, 2008 that had built up over many years of M&A activity. Hess was able to complete a full consolidation of 300 Microsoft workloads in under 6 months.

“We didn’t have time to re-design applications. AWS could support our legacy 32-bit applications on Windows Server 2003, a variety of SQL Server and Oracle databases, and a robust Citrix environment.”

– Jim McDonald, Lead Architect, Hess Corporation

Why run Windows workloads on AWS

*as of July 31, 2014

Building and managing cloud since 2006

12 regions, 33 Availability Zones, 54 edge locations

Thousands of partners; 2,500+ Marketplace products

Security & Reliability

Performance

Experience

Scale

Ecosystem

Extensive VM and network performance options

Security in layers approach and 99.95% application SLA

SecurityA few of our many certifications:

Secured premisesSecured accessBuilt-in firewallsUnique usersMulti-factor authenticationPrivate subnetsEncrypted data storageDedicated connection

Reliability

Easily build highly available applications

ELB distributes load (ideal for SharePoint)

Auto Scaling for availability and scalability

Use multiple Availability Zones

High Performing

High performance instances (X1) and HPC solutions

Automated instance scaling (Auto Scaling)

Dedicated low-latency network (AWS Direct Connect)

Ensure storage performance (EBS Provisioned IOPS)

AWS Global Infrastructure

Region

Edge Location

Over 1 million active customers across 190 countries

800+ government agencies

3,000+ educational institutions

12 regions (2016: USA, India, UK)

33 availability zones

54 edge locations

Reliability & Scale: Availability Zones

AZ

AZ

AZ AZ AZ

Transit

Transit

What Windows workloads can I run on AWS?

Developer platform & tools

Corp applications Line of businessapplications

End user computing

Information Security

Corporate Applications End User ComputingBusiness ApplicationsAmazon EC2 Windows, Amazon RDS, AWS CloudFormation, AWS CloudFront

Amazon EC2 Windows, AWS Directory Service, Amazon RDS, AWS Marketplace

Amazon WorkSpaces, Amazon AppStream, AWS Marketplace, AWS Mobile Services, SaaS

AWS Identity and Access Management (IAM), AWS CloudHSM, AWS Key Management Service, security groups, AWS Marketplace

Amazon EC2, Amazon S3, Amazon RDS, Amazon VPC, Amazon Direct Connect, AWS Directory Service, AWS IAM, AWS Service Catalog

Infrastructure

AWS Service Offerings for Windows Workloads

AWS Elastic Beanstalk, AWS CodeDeploy, AWS CloudFormation

DevOps

Corporate Apps in AWS

Deploy highly available applications

BYOL or pay per use

Security in layers approach helps with compliance

Leverage multi-AZ architectures for reliability & availability

Ref Architecture: SharePoint on AWS

Custom (Line of Business) Apps in AWS

AWS CloudFormation templates accelerate deployment

Run .NET applications in EC2 instances running Windows Server

Fully managed database with Amazon RDS for SQL Server

Add resiliency and HA with multi-AZ, ELB, and Auto Scaling

Develop and Deploy Code in AWS

Build code quickly

Leverage familiar SDKs and toolkits

Deploy and scale your applications

AWS CloudFormation

AWS CodeDeploy AWS Elastic Beansta lk

.NET SDK AWS Toolki t for Visual Studio

Where to Get Started

Security is job #1

Amazon EC2 Can Help Strengthen Your Security Posture

Get native functionality and tools at no additional charge

Over 30 global compliancecertifications and accreditations

Leverage security enhancements gleaned from 1M+ customer experiences

Benefit from AWS industry leading security teams 24/7, 365 days a year

Security infrastructure built to satisfy military, global banks, and other high-sensitivity organizations

Access a Deep Set of Cloud Security Tools

Encryption

AWS KeyManagement

Service

AWS CloudHSM

Server-sideencryption

Networking

Virtua l Private Cloud

Web Appl ication

Fi rewal l

Compliance

AWS ConfigAWSCloudTra il

AWS ServiceCata log

Identity

IAM ActiveDirectory In tegration

SAMLFederation

VPC (Virtual Private Cloud)

Provision a logically isolated section of the AWS cloudControl your virtual networking environment with:

• Subnets• Route tables• Security groups• Network ACLs

Control if and how your instances access the InternetConnect to your on-premises network via a hardware VPN or Direct Connect

Availability Zone 1 Availability Zone 2

Internet

10.0.0.5

10.0.0.6

10.0.3.17

10.0.3.5

10.0.1.5

10.0.1.2510.0.1.8

10.0.1.6

VPC Subnet

VPC subnetVPC subnet

Virtual Private Gateway

Customer Gateway

VPN Connection

Internet Gateway

Customer Data Center

Use a Comprehensive Set of Management Tools

MonitoringConfiguration

AWS Clo u d Wa tch AWS Clo u d Tra ilAWS Co n f igAma zo n EC2

Ru n Co mma n dPo we rSh ell In te g rat ion

AWS Clo u d Forma tio nAWS Co d e De ploy AWS E la st ic Be a n sta lk

AWS Toolkit for Visual

Studio.NET SDK

Development

Management Enhancements:EC2 Run Command

Automate Common Tasks: Automate common administrative tasks at scale.

Delegated Administration: IAM integration for full control of users and level of access.

Auditable: Visibility and tracking of configuration changes with AWS CloudTrail

Customizable: Create custom actions to automate common tasks

Microsoft Licensing OptionsFlexibility helps you optimize costs

Buy licenses from AWS

Leverage License Mobility

Bring your own licenses (BYOL)

• Save money on software licensing

• You manage licensing costs and compliance with your ISV

• No need for Software Assurance

• AWS manages Windows Server licensing

• You manage licensing costs and compliance with your ISV

• Uses Software Assurance

• AWS manages licensing• Pay as you go pricing• Multi-tenant or

Dedicated• No need for Software

Assurance• Unlimited CALs

BYOL Using Dedicated HostsLicense compliance and portability

Host ID = h-123abcSockets = 2Physical Cores = 20

• Maintain license compliance• Granular resource and placement controls• Visibility into physical resources • Physical core and socket counts• Capacity utilization• Instance location

• Now supports reservations for discounted pricing

It’s easy to get started!

http://aws.amazon.com/getting-started/

AWS Management Console

AWS Marketplace is in the Console

Browse, search, discover, and launch thousand of AWS Marketplace Amazon Machine Images (AMIs) directly from within the EC2 console

2,600+ products listed in 35 categories

Next Steps

Sign up for an AWS account!

Take advantage of the Free Tier: aws.amazon.com/free

Learn more: aws.amazon.com/windows

AWS Quick Start Reference Deployments: https://aws.amazon.com/quickstart/

Justin Bradley