OpenShift and IBM Cloud Paks introduction Partner Deck
Transcript of OpenShift and IBM Cloud Paks introduction Partner Deck
Spencer KrumDeveloper Advocate, IBM
Containers, Open source,Video games, tennis,Cheeseburgers
@nibalizer
IBM Developer
Cloud Pak Overview
IBM Cloud / © 2019 IBM Corporation
● 6 Cloud Paks today● Bundled software from IBM, Red Hat, Open Source● Container native on Kubernetes● Secure, Trusted, Supported
Cloud Pak Partner Opportunities
IBM Cloud / © 2019 IBM Corporation
● Build a business value application on top of a cloud pak● Build an integration with a cloud pak● Build support tooling for a cloud pak● Service to install, manage, and upgrade cloud pak
A managed service providing an intuitive user experience with
simplified cluster lifecycle management on upstream Kubernetes
clusters. Includes built-in security and isolation to enable rapid
delivery of apps, while leveraging IBM Cloud Services including Weather
data, IoT, Analytics, or AI capabilities with Watson. Available in six
IBM regions worldwide, including 35+ datacenters.Learn more at: www.ibm.com/cloud/container-service
IBM Cloud / © 2019 IBM Corporation
IBM Cloud Kubernetes Service | ©2019 IBM Corporation
Datacenter Expansion - 6 IBM Cloud Regions, 30+ Datacenters
Regions Data Center City
AP North • hkg02• seo01• sng01• che01• tok02• tok04• tok05
• Hong Kong• Seol• Singapore• Chennai• Tokyo
AP South • mel01• syd01• syd04
• Melbourne• Sydney
EU Central • ams03• oslo01• mil01• par01• fra02• fra04• fra05
• Amsterdam• Oslo• Milan• Paris• Frankfurt
United Kingdom • lon02• lon04• lon05• lon06
• London
US East • mon01• tor01• wdc04• wdc06• wdc07
• Montreal• Toronto• Washington, DC
US South • sao01• hou02• mex01• sjc03• sjc04• dal10• dal12• dal13
• Sao Paulo • Houston • Mexico• San Jose• Dallas
Projects vs. Products
7
Production-Grade Open Source Project
quarterly minor releases, no Long Term Support
community support
platform certification: (AKS, EKS, GKE, IKS)
core framework / limited security
platform or user responsible to integrate beyond core
Production-Grade Open Source based Product
quarterly releases, support for major release 3+ years
enterprise support
ecosystem certification: platform and app containers
k8s core plus abstractions / dashboard / security
opinions and integration of common featuresIBM Developer
OpenShift Personas
Summary of the kinds of challenges and pain points experienced by multiple personas
Solution Architect Operations Admin Enterprise DeveloperLine of business
owner Compliance/Audit
• Aligned to corporate requirements
• Scalable and efficient• Available where
needed• cloud architectures
• Integrates with our environment
• Manages containerized apps
• Day 2 operations• Enable developer
productivity/ownership
• Features we need
• Supports languages and frameworks we use
• Agility in projects with integrated devops
• Less time with plumbing, more time with coding
• Increase velocity of application delivery
• Modernizing applications
• Reducing costs• KPI visibility
• Security built-in• Public cloud
compliance• Private cloud options
Todd: Operations AdminChamp: Solution Architect Jane: Lead Enterprise Developer Shani: Line of business owner Zora: Compliance/Audit
A successful solution appeals to a broad range of roles, not just those classically associated with applications and code.
9IBM Developer
Addressing complexity
10
Java EE
Jane: Lead Enterprise Developer
Champ: Solution Architect
Today’s skills
Tomorrow’s challenges. What is cloud-native?
Configuration sources, service references
Cloud Environment
Build, package, deploy, observe
DevOps
Application as composition of polyglot services
Microservices
https://12factor.net/
Independent, autonomous, stateless, processes
12-Factor applications
IBM Developer
Champ Curates
Collections
Jane ConsumesCollections
Champ the Solution Architect
Jane the Enterprise Developer
Effective Bi-directional Collaboration Drives Valuein an otherwise frustrated relationship
Accelerates development with
governance to meet company policies and approved technology
choices
Using pre-built, pre-integrated
collections allows her to developer
faster and think less about infrastructure
12
Self-Service
Multi-language
Automation
Collaboration
Multi-tenant
Standards-based
Web-scale
Open Source
Enterprise Grade
Secure
IBM Developer
OpenShift Container Platform
IBM Developer 13
Automated Operations*
Kubernetes
Red Hat Enterprise Linux or Red Hat CoreOS
Application Services
CaaS PaaSBest IT Ops Experience
Best Developer Experience
*coming soon
Cluster Services
Developer Services
Middleware, Service Mesh, Functions, ISV
Metrics, Chargeback, Registry, Logging Dev Tools, Automated Builds, CI/CD, IDE
14
EXISTING AUTOMATION
TOOLSETS
SCM(GIT)
CI/CD
SERVICE LAYER
ROUTING LAYER
PERSISTENT
STORAGE
REGISTRY
RHEL
NODE
c
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
RHEL
NODE
C
C
C C
C
C
C CC C
RED HATENTERPRISE LINUX
MASTER
API/AUTHENTICATION
DATA STORE
SCHEDULER
HEALTH/SCALING
PHYSICAL VIRTUAL PRIVATE PUBLIC HYBRID
IBM Developer
OpenShift Architecture
Container runtime
IBM Developer 15
A lightweight, OCI-compliant container runtime
Minimal and Secure Architecture
Optimized for Kubernetes
Runs any OCI-compliant image (including docker)
Routes
16
POD
routes add services to the external load-balancer and provide readable urls for the
app
CONTAINER
POD
CONTAINER
POD
CONTAINER
BACKEND SERVICE
ROUTEapp-prod.mycompany.com
> curl http://app-prod.mycompany.com
IBM Developer
Projects – extends k8s namespaces
17
projects isolate apps across environments, teams, groups and
departments
POD
C
POD
C
POD
C
PAYMENT DEV
POD
C
POD
C
POD
C
PAYMENT PROD
POD
C
POD
C
POD
C
CATALOG
POD
C
POD
C
POD
C
INVENTORY
❌
❌❌
IBM Developer
Source-to-Image
18
GitRepositoryCOMMIT
APP(User)
Developer
code
Source-to-Image(S2I)
Builder Image
ImageRegistry
BUILD IMAGE(OpenShift)
DEPLOY(OpenShift)
deploy
Application Container
OpenShift DoesUser/Tool Does
IBM Developer
Jenkins-as-a-Service
19
Certified Jenkins images with pre-configured plugins○ Provided out-of-the-box○ Follows Jenkins 1.x and 2.x LTS versions
Jenkins S2I Builder for customizing the image○ Install Plugins○ Configure Jenkins○ Configure Build Jobs
OpenShift plugins to integrate authentication with OpenShift and also CI/CD pipelines
Dynamically deploys Jenkins slave containers
PluginsJobs
Configuration
Jenkins(S2I)
CustomJenkinsImage
JenkinsImage
IBM Developer
Log management with EFK
20
EFK stack to aggregate logs for hosts and applications
○ Elasticsearch: a search and analytics engine to store logs
○ Fluentd: gathers logs and sends to Elasticsearch.
○ Kibana: A web UI for Elasticsearch.
Access control
○ Cluster administrators can view all logs
○ Users can only view logs for their projects
Ability to send logs elsewhere
○ External elasticsearch, Splunk, etc
IBM Developer
IBM Cloud Paks
22IBM Developer
A faster, more secure way to move your core business applications to any cloud
through enterprise-ready containerized software solutionsComplete yet simpleApplication, data and AI services,fully modular and easy to consume
IBM certifiedFull software stack support, and ongoing security, compliance and version compatibility
Run anywhereOn-premises, on private and public clouds,and in pre-integrated systems
IBM containerized softwarePackaged with Open Source components,
pre-integrated with the common operational services,and secure by design
Container platformand operational services
Logging, monitoring, security,identity access management
IBM Cloud Private SystemsEdge
IBM Certified and production ready
23
Containers Alone
Client creates containersor receives software as standalone container(s)
IBM Cloud Paks
Complete solutions certified for
enterprise use cases
Runs anywhere Yes Yes
Vulnerability scanned Yes Yes
Red Hat container certification Depends on product Yes
Complete solution w/ container platform
No Yes
Flexible & modular: Pay for what you use
No Yes
IBM certified/orchestrated for production(Built for Kubernetes by experts; certified against 250+ criteria)
No Yes
Multicloud validation No Yes
Integrated deployment experience No Yes
Full stack support by IBM(Base OS, software, and container platform)
No Yes
License metering integration No Yes
Scalable and resilient No Yes
Encrypted secrets / limited privileges Do it yourself Yes
Management and operations Build your own Yes
Lifecycle Management Manage it yourself Yes
Sp
eed t
o m
ark
et
Enterprise security
Containerizedsoftware
alone
Cloud Paks
Organized by Capability
24IBM Developer
Cloud Pak forData
Cloud Pak for Integration
Cloud Pak forAutomation
Cloud Pak forMulticloud
Management
Cloud Pak for Applications
Developer & DevOps Tools
ModernizationToolkit
Frameworks and Runtimes
Organize Analyze
Collect
API Lifecycle
Messaging and Events
App and Data Integration
Workflow and Decisions
Operational Intelligence
App and Infrastructure
Multicluster
Security and ComplianceManagement
Content
Container platform and operational services
Container platform and operational services
Container platform and operational services
Container platform and operational services
Container platform and operational services
IBM Cloud SystemsEdge Private
Cloud Pak for Applications
Group Name / DOC ID / Month XX, 2018 / © 2018 IBM Corporation 26
MODERNIZE APPSMODERNIZE APPS
IBM Modernization & Developer Tools
Transformation Advisor
WebSphere Migration Toolkit
Enterprise Dev tools extensions for local
IDE’s
WebSphere NDWebSphere Base
Liberty Core
WebSphere Application Server
BUILD NEW APPS
Digital App Builder
Mobile Service
s IBM Mobile
Foundation
Red Hat OpenShift
IBM Integrated Application RuntimesRed Hat Runtime
s•JBoss•Vert.x
•Node.js(etc.)
AppsodyIntegrated
DevOps
Kabanero Enterprise
IDE Tools: Codewind
Java:• Open Liberty• MicroProfile• Spring• OpenJ9• Hotspot
Node.js:• Loopback• Express
Knative Tekton
RUN EXISTING APPS
Addressing complexity
28
Java EE
Jane: Lead Enterprise Developer
Champ: Solution Architect
Today’s skills
Tomorrow’s challenges. What is cloud-native?
Configuration sources, service references
Cloud Environment
Build, package, deploy, observe
DevOps
Application as composition of polyglot services
Microservices
https://12factor.net/
Independent, autonomous, stateless, processes
12-Factor applications
IBM Developer
Champ Curates
Collections
Jane ConsumesCollections
Champ the Solution Architect
Jane the Enterprise Developer
Effective Bi-directional Collaboration Drives Valuein an otherwise frustrated relationship
Accelerates development with
governance to meet company policies and approved technology
choices
Using pre-built, pre-integrated
collections allows her to developer
faster and think less about infrastructure
Cloud Pak Partner Opportunities
IBM Cloud / © 2019 IBM Corporation
● Build a business value application on top of a cloud pak● Build an integration with a cloud pak● Build support tooling for a cloud pak● Service to install, manage, and upgrade cloud pak
What is still left to be managed (services opportunity)
IBM Cloud / © 2019 IBM Corporation
•User is Responsible for: •Configure API key permissions to access IBM Cloud infrastructure portfolio •Deploy and manage Kubernetes resources, such as pods, service and deployments in cluster•Leverage capabilities of service and Kubernetes to ensure high availability of apps•Add or remove cluster capacity by resizing your worker pools•Enable VLAN spanning and keep your multilane worker pools balanced across zones•Create public and private VLANs in IBM Cloud infrastructure for network isolation of your cluster •Ensure that worker nodes have network connectivity to Kubernetes service endpoint URLs•Update master kube-apiserver when Kubernetes version updates are available •Keep worker nodes up-to-date on major, minor and patch versions •Monitor health of your cluster by setting up forwarding for your cluster components•Recover troubled worker nodes by running kubectl commands such as cordon or drain and running ibm cloud ks commands such as reboot, reload or delete
•Add or remove subnets in IBM Cloud infrastructure as needed•Back up and restore data in persistent storage in IBM Cloud infrastructure •Set up logging and monitoring services to support your cluster’s health and performance •Configure health monitoring for worker nodes with Auto-recovery•Audit events that change resources in your cluster. Can be done using IBM Cloud Activity Tracker to view user-initiated activities that change state of your Kubernetes services instance
https://cloud.ibm.com/docs/containers?topic=containers-your-responsibilities-by-using-ibm-cloud-kubernetes-service#your-responsibilities-by-using-ibm-cloud-kubernetes-service
Cloud Pak Partner References
IBM Cloud / © 2019 IBM Corporation
● https://cloud.ibm.com/catalog/content/ibm-cp-applications#about● https://cloud.ibm.com/catalog/content/ibm-cp-management#about● https://cloud.ibm.com/catalog/content/ibm-cp-data#about● https://cloud.ibm.com/catalog/content/ibm-cp-integration#about● https://cloud.ibm.com/catalog/content/ibm-cp-automation#about
Major on the majors
33
Java EE
Jane: Lead Enterprise Developer
Champ: Solution Architect
Champ defines his opinionated platform
Champ provides pre-configured application stacks
Jane rapidly builds and deploys micro-services
IBM Developer
Cloud Paks: Enterprise-ready containerized software
A faster, more secure way to move your core business applications to any cloud through enterprise-ready containerized
software solutionsComplete yet simpleApplication, data and AI services,fully modular and easy to consume
IBM certifiedFull software stack support, and ongoing security, compliance and version compatibility
Run anywhereOn-premises, on private and public clouds, and in pre-integrated systems
IBM containerized software
Packaged with Open Source components,pre-integrated with the common operational
services,and secure by design
Operational servicesLogging, monitoring, metering, security,
identity access management, image registryContainer platformKubernetes-based and portable
Cloud Paks: Pre-integrated for cloud use cases
Today, IBM offers clients the first five Cloud Paks…
Cloud Pak forData
Cloud Pak for Integration
Cloud Pak forAutomation
Cloud Pak forMulticloud
Management
Cloud Pak for Applications
Developer & DevOps
Tools
Modernization
Toolkit
Frameworks and Runtimes
Organize Analyze
Collect
API Lifecycl
e
Messaging and Events
App and Data Integration
Workflow and Decisions
Operational
Intelligence
App and Infrastructu
re
Multicluster
Security and ComplianceManagement
Content
Container platform and operational services
Container platform and operational services
Container platform and operational services
Container platform and operational services
Container platform and operational services
IBM Cloud SystemsEdge Private
Cloud Paks on IBM Cloud
Build and modernize on a cloud platform explicitly architected for workload
and data portability.
Move those securely with Bring Your Own Key, Level 4 FIPS, and built-in
industry compliance including PCI, HIPAA, GDPR, SOC1 and SOC2.
Leverage a managed OpenShift that directly integrates into the same
Kubernetes service that maintains 16,000+ clusters and 250 billion on-
demand forecasts daily at The Weather Company.
Enjoy push-button integrations with IBM and Red Hat middleware and cloud
services through IBM Cloud Schematics and IBM Cloud Content Catalog.
Compute isolation choices including bare metal worker nodes.
Managed OpenShift offering with HA masters, multizone clusters, and
99.95% SLA.
IBM Cloud Pak for
Automation
IBM Cloud Pak for
Integration
IBM Cloud Pak for Multicloud Management
IBM Cloud Pak for
Applications
IBM Cloud Pak for Data
Integrated with IBM’s public cloud, leveraging RedHat OpenShift on IBM Cloud
IBM public cloud