Windows Server Virtual Machines: Adding Windows Azure Services Marc Umeno, Anjli ChaudhryProgram ManagersMicrosoft Corporation

WS-B303

How Microsoft defines cloud

PublicPrivateMicrosoft

Service provider

Enterprise

Oneconsistentexperience

Enabling the Cloud OS Today

New high-density Web Sites with elastic cloud scaling and complete dev-ops experiences

New rich IaaS experience for self-service provisioning of Virtual Machines hosted on Windows Server and System Center 2012

New Self-Service Management Portal and REST APIs for managing new class of cloud based services

GA release available now for immediate download:http://www.microsoft.com/hosting/en/us/services.aspx

Consistent Dev-Ops Experiences

• High density, scalable, and secure VM hosting

• Built on Microsoft Hyper-V

• Custom offers of pre-configured virtualized server workloads

• VM portability across all cloud platforms

• Private cloud and service provider solutions hosted on Windows Server and System Center 2012 with SP1 (incl. SPF)

• Customizable, extensible, standards-based, self-service portal

• Modern Metro themed experience

• Web Standards HTML5, CSS3

• Based on Windows Azure Portal

• White label ready

• Common management API

• Replace with custom portal

• Onramp for more Azure services moving to Windows Server

• Onboard custom services

• High density, scalable, and secure Web hosting

• Built on Windows Azure Web Sites

• Support for PHP, Node, and ASP.NET

• Web App Gallery

• Upsell from shared to reserved

• Usage metering and throttling

• Workload portability across all cloud platforms

• Solution hosted on Windows Server 2012

One Consistent Platform

High-density, scalable websites

Service Management Portal and API

Infrastructure as a service

“Microsoft partners can offer customers a Window Azure-like infrastructure-as-a-service experience without actually using Microsoft’s cloud. ….“ Derrick Harris, blogger,

GigaOm in Wired

Finished services

6

Web Sites

High density and scalable

Easy deployment and administration

Fully self-service

Service Management API

Service Management Portal

Virtual Machines

Offer preconfigured workloads

Windows and Linux

Fully self-service

Third Party

Zuora

Parallels

Apprenda

and more

Web Sites Virtual Machines Third Party

Service Provider Foundation API

System Center(Virtual Machine Manager Component)

Windows Server

Third Party Modules

Controller(Web farm framework)

Web FarmFront-end/Workers(Application Request Routing/Dynamic Windows Process Activation Service )

Windows Server Windows Server

Under the Hood

WorkerRole

WebSites

VMRole

SQLService

BusCachin

g

Other Service

sCDN.

Media,, etc.

Service Management API

WebSites

VMs

Private Service Provider

Bringing Windows Azure Services to Windows Server

SQL

Shared Cloud ServicesService Bus,

etc.

Service Management API

Web SitesAppsVMs

Self-ServicePortal

ServicePlansUsers

ServiceAdmin

AppsVMs

Self-ServicePortal

Subscriber Self-ServicePortal

Web Sites

DatabaseVMs

Apps

SP1 w/ Service Provider Foundation

Web SitesDatabasesVMs Subscriber Self-Service

Portal

Windows Azure

Self Service Portal Moves On-Premises

Common Mgt. Experience

Cloud-Enabled Services Move On-

Premises

Workload Portability

Consistent Dev.

Experience

DEMO – Tour of Service Management Portal

Infrastructure as a Service

Deploying VMs in a Service Provider Cloud

Combine hosts and networks, storage, and library resources together to create a service provider cloud.

Delegate access to self-service users and let them manage cloud resources and create services

Deploy VMs to private clouds or hosts by using VM templates

Create a cloud by moving the underlying resources of network, storage, & compute into the cloud.

Configure the fabric

Create a cloud from the fabric

Delegate the cloud to a self-service user

Deploy VMs

Service Provider Foundation (SPF)REST

OData APIAggregation Automation

Deploy Infrastructure as a Service (IaaS)

Fabric stamps (VMM)

Tenant 1

Self-service users

Tenant admins

Tenant’s apps, scripts,

and tools

Service Management Portal

Tenant 2

Self-service users

Tenant admins

Tenant’s apps, scripts,

and tools

Certificate

Browser

Service Management API

Service Provider Foundation (SPF)

Virtual Machines

Virtual MachineManager

VM networksVirtual Machine

Manager

Service Templates

Virtual MachineManager

AutomationOrchestrator

Enables Hosted IaaSFeatures

• VM management

• Service management

• Self-service VM networks

• Multi-tenancy / Multi-stamp

• Self-service tenant administration

• Enterprise identity for SPF

• Extensibility for hosted cloud API

• Usage Metering via SCOM

REST-based Odata API

2012

Admin

Key Service Administration Concepts

• Resource Provider o REST API-driven service that creates and manages resource types (VMs, websites,

databases)

• Planso Collections of services from resource providers that are offered to tenants

• Userso Users are managed via ASP.NET membership (AD integration in future release)

• Subscriptionso Users sign up for a subscription to a plan - each subscription has a unique IDo Resource providers deliver services via subscription, governed by Resource Provider-

specfic access controls and quota limits

1. SPF and VMM are installed/configured

2. Admin adds SPF endpoint to Service Mgmt API

3. Admin registers VMM server

6. Tenant creates and operates VMs

4. Admin creates plan with VM cloud offer5. Tenant subscribes to plan

Virtual Machines with System Center

SPF

VMM

AdminTenant

VMMVMM

Service Mgmt API

Admin UX

Tenant UX

PlansSubscriptions

Accounts

OffersStamps

User Roles

Plan

Offer

Subscription

1

2

3

4

5

6

• Enable SPF VMM IIS Application Pool identity running as domain user (not network service account)

• SPF Application Pool identity needs admin access to VMM and “sa” access on the SPF SQL DB

• Configure SPF with Basic Authentication• Create Local User on SPF Server, add to SPF Local Groups (VMM,

Admin, Provider)• Use the Local User to register with the Service Management

Portal and API (not a domain user)• No need to create any tenants from the SPF PowerShell cmdlets,

this is handled automatically when users sign up for a subscription

• AD Users in the same domain as the VMM server are not supported

Useful Tips on Setting Things Up

DEMO - Admin IaaS User Experience

• Continuous metering of IaaS usage (CPU, Memory, Storage, Network)

• Supports per-subscription billing by an external system by exposing Billing APIs

• Data gathered into a Usage DB through the Service Management API

• IaaS data comes from from the System Center Operations Manager data warehouse• Utilizes data coming from the VMM-OM integration through the VMM

Management Pack

• Usage metering endpoint added to SPF• Requires Update Rollup 1

IaaS Usage Metering

Service Management API

Service Provider Foundation

Virtual Machine Manager

Operations Manager

IaaSWebSitesSQL

UsageData

Usage Data Collector

CustomerBilling

System

SPF Usage REST Endpoint

Continuously gather usage metrics from

every provider

IaaS Metrics – Per Hour GranularityMetric Aggregation Description

MemoryAllocatedMin Lowest allocated memory size for a VM within an hour timespan

Max Highest allocated memory size for a VM within an hour timespan

MemoryConsumed

Min Lowest consumed memory size for a VM within an hour timespan

Max Highest consumed memory size for a VM within an hour timespan

Median Median average consumed memory size for a VM within an hour timespan

CPUAllocationCountMin Lowest number of CPU core allocated for a VM within an hour timespan

Max Highest number of CPU core allocated for a VM within an hour timespan

CPUPercentUtilization Median Median average in percentage of CPU consumption for a VM within an hour timespan

CrossDiskIOPerSecond

Min Lowest input/output per second (IOPS) across all attached disk for a VM within an hour timespan

Max Highest input/output per second (IOPS) across all attached disk for a VM within an hour timespan

Median Median average input/output per second (IOPS) across all attached disk for a VM within an hour timespan

CrossDiskSizeAllocatedMin Lowest allocated disk size across all attached disk for a VM within an hour timespan

Max Highest allocated disk size across all attached disk for a VM within an hour timespan

PerNICKBSentPerSecond

Min Lowest bytes sent per second on a network adapter attached to a VM within an hour timespan

Max Highest bytes sent per second on a network adapter attached to a VM within an hour timespan

Median Median average bytes sent per second on a network adapter attached to a VM within an hour timespan

Average Straight average bytes sent per second on a network adapter attached to a VM within an hour timespan

PerNICKBReceivedPerSecond

Min Lowest bytes received per second on a network adapter attached to a VM within an hour timespan

Max Highest bytes received per second on a network adapter attached to a VM within an hour timespan

Median Median average bytes received per second on a network adapter attached to a VM within an hour timespan

Average Straight average bytes received per second on a network adapter attached to a VM within an hour timespan

Tenant

• User experience consistent with Azure IaaS• Tenants access portal using hoster account

• AD auth for tenants not supported

• Multiple subscriptions combined into same UI• Tenants see all of their VMs across subscriptions

• Virtual Machines – Deploy and manage virtual machines

• Virtual Networks – Create and manage virtual networks

Tenant Approach and User Experience

DEMO - Tenant IaaS User Experience

Deploying the Service Management Portal and API

Topology and TipsInstall guide - http://msdn.microsoft.com/library/jj838658.aspx

1. For lab, use Express Install on a single server2. For production, use Distributed Install

a. Tenant Portal and Tenant Public API – internet accessb. Tenant API, Admin Portal, Admin API – behind firewall

3. Tenant Portal is typically the bottleneckc. Scale for better performance

4. For high availabilityd. Hardware load balancer recommended for public tier

(Tenant Portal and Tenant API)e. Failover cluster instance, Always On Availability group

and a combination of the two are supported for SQL

5. SQL instance (for configuration data) f. Recommend a separate instance

6. During install process, take snapshots!a. Pre installation, Post installation, Post configuration

Tenant Portal Tenant Public API

Tenant API Admin API Admin Portal

SQL

(for config data)

Firewall

Internet

Capacity PlanningCapacity planning guide - http://msdn.microsoft.com/en-us/library/jj953500.aspx

Tenant Portal Performance Tests

Tenant Portal

Tenant API

SQL

(for ASfWS db’s)

Admin API, SQL RP, MySQL RP, Usage

Admin Portal

SQL MySQL

7 VMs – 2 core, 4GB

Workload Scenario Mix:• Dashboard Load (Reads) – 75%• Create Web site – 5%• Delete Website – 3%• Update website configuration – 3%• Create SQL database – 5%• Create MySQL database – 5%• Delete SQL database – 2%• Delete MySQL Database – 2%

Other Load Parameters:• Test Duration – 3 hours• # of subscriptions at the beginning – 8000• # of websites – 5000• # of SQL and MySQL databases – 6500 each• # of subscriptions at the beginning – 10000

Results:

# of Tenant Portal instances

Max Concurrent Users

Requests per second

1 3000 97

2 5000 165

4 7500 214

6 10000 258(very high load)

Customizing and Extending the Service Management Portal and API

Built to Differentiate

WebSites

VMs

Private Service Provider

SQL

Service Management API

Web SitesAppsVMs

Self-ServicePortal

ServicePlansUsers

Admin Web SitesDatabasesVMs

Subscriber Self-ServiceWeb SitesDatabases

Contoso Hosting

VMs Custom login, logos, banner, colors, extensions, etc…

Apprenda

a a pprenda

Add on Services

Custom Portals

SP1 w/ Service Provider Foundation

Usage

Integrate with Billing and

Chargeback Solutions

Samples and Documentation Available

Custom Theming Management APIs for Custom

Portals Custom Resource Providers Usage Adaptor for Billing Systems

Now available for immediate downloadhttp://bit.ly/ASWS-Samples

A sample kit contains images and styles (css files)

Step 1 - Override default images consistent with your UXExamples- Company Name Image - Banner image that shows up on login page

Step 2 - Override styles to update colors of textExamples- Intro text on login is black

.kt-main-content-area .kt-introduction {color: #000;

}

- Wizard colors are shades of green.wizard .wizard-bladescolor {

color: rgb(127, 177, 51); /* Beginning color for blades - must be rgb() */

background-color: rgb(100, 133, 20); /* End color for blades - must be rgb() */

}

Step 3 – Copy content folder on to the tenant portal machine - (C:\inetpub\MgmtSvc-TenantSite) merging folders and overwriting all files

Custom Themes

Step 2 – Create a blank web siteHTTP POST HTTPS://<TENANTSERVICEROOT>/{SUBSCRIPTIONID}/SERVICES/WEBSPACES/DEFAULTWEBSPACE/SITES HTTP/1.1Body of post contains site object

<Site xmlns="http://schemas.microsoft.com/windowsazure" xmlns:i="http://www.w3.org/2001/XMLSchema-instance"><AdminEnabled i:nil="true"/><AvailabilityState>Normal</AvailabilityState><EnabledHostNames i:nil="true" xmlns:a="http://schemas.microsoft.com/2003/10/Serialization/Arrays"/><HostNames xmlns:a="http://schemas.microsoft.com/2003/10/Serialization/Arrays"><a:string>mysite111.katal.dev2</a:string></HostNames><Name>mysite111</Name><Owner i:nil="true"/><RepositorySiteName i:nil="true"/><SelfLink i:nil="true"/><SiteProperties i:nil="true"/>….

A comprehensive API doc with all admin and tenant APIs is available to customers ; APIs may be called from custom portals to simulate behavior from in-box tenant portal

Example – Create a blank web site using Quick Create

Custom Portals

Step 1 – Create user subscriptionHTTP POST HTTPS://<ADMINSERVICEROOT>/SUBSCRIPTIONSBody of post contains subscription object

<AzureProvisioningInfo xmlns:i="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.microsoft.com/Azure/ProvisioningAgent/1.0"><AccountAdminLiveEmailId>johndoe@live.com</AccountAdminLiveEmailId><AccountAdminLivePuid>johndoe@live.com</AccountAdminLivePuid><FriendlyName>JohnDoe subscription</FriendlyName><OfferCategory>Gold</OfferCategory><ServiceAdminLiveEmailId>johndoe@live.com</ServiceAdminLiveEmailId><ServiceAdminLivePuid>johndoe@live.com</ServiceAdminLivePuid><SubscriptionId>d8198c18-a00a-442e-8f6d-435d77eae386</SubscriptionId></AzureProvisioningInfo>

Add on ServicesDomain Registration w/ GoDaddyA comprehensive sample is available for download. Customers may use the sample to create custom resource providers.

Step 1 – Build UI extension on the Client Side- Admin UI Extension- Plan UI Extension- Tenant UI Extension

Step 2 – Build controllers on the Server Side- Reseller Admin Controller- Reseller Tenant Controller

Step 3 – Build a REST API wrapper over service- Reseller Admin API- Reseller Tenant API- Reseller Notification API

Step 4 – Register service with Service Management API

A sample usage adapter is available to consume tenant usage data and connect to billing provider of choice.

Usage Adapter for Billing Systems

IT Financial Managementfor Microsoft Cloud OSNick van der ZweepVP of Products and StrategyCloud Cruiser Inc.

Cloud OS Requires IT Financial Management

CLOUD CRUISER guarantees CFOs achieve the

LOWEST possible cloud COSTS

Achieve the Lowest Possible Cloud Costs

End-to-end cost visibility across complex clouds

Budgets and alerts to keep spending under

control

A cost model for financial accountability and profit maximization

Multi-tenant portal for financial reporting and business analytics

charge itsee it

control it own it

charge it

Live Demo

Cloud Cruiser IntegrationHeterogeneous Collectors

Business Rulesand Database

Microsoft Collectors

Structure metadata

Aggregate data

Map to accounting structure

Invoke pricing engine

User Interface andReporting

External Systems

Reporting

Business Intelligence

Administration

Billing

General Ledger

Other Systems

DATABASE

Hypervisors

Web Services

Databases Facilities/Labor

Secure, self-service portal

Apply budgets and alerts

REST

Azure Services forWindows Server

REST

Cloud Cruiser

Database

• Tight

Integration

• Simple Setup

• Extensible

IT Financial Management for Cloud OS

CLOUD CRUISER guarantees

CFOs achieve the

LOWEST possible cloud COSTS

charge itsee it

control it own it

charge it

Wrap Up

Evaluation

Complete your session evaluations today and enter to win prizes daily. Provide your feedback at a CommNet kiosk or log on at www.2013mms.com.Upon submission you will receive instant notification if you have won a prize. Prize pickup is at the Information Desk located in Attendee Services in the Mandalay Bay Foyer. Entry details can be found on the MMS website.

We want to hear from you!

Resources

http://channel9.msdn.com/Events

Access MMS Online to view session recordings after the event.

© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.