1
PresidentConvergent Computinghttp://[email protected]
Things: IDC, The Internet of Things is Poised to Change Everything, says IDC 2013; McKinsey & Company,
Big data: The next frontier for innovation, competition, and productivity 2011
Devices: “Info Workers Will Erase Boundary Between enterprise And Consumer Technologies.” Forrester
Research. August 30, 2012
Apps: Gartner: “Predicts 2013: Business Impact of Technology Drives the Futures Application Services
Market.” Nov. 21, 2012
Big data: Compiled from IDC digital universe forecasts
Cloud: “Prepare For 2020: Transform Your IT Infrastructure And Operations Practice.” Forrester Research.
Oct. 24, 2012
Big data
40 Zettabytesthe size of digital universe by 2020, of which 90% will be unstructured data
Things Apps Cloud
212 Billionconnected “things” globally by the end of 2020
25%of external app implementation spend will be on mobility, cloud, analytics & social, by 2016
45%of total IT spend will be cloud-related by 2020
Devices
52%of information workers across 17 countries report using 3+ devices for work
Start Justin
Datacenters of the Past
Storage Network Compute
Today’s datacenter
Datacenter of the (New) Present“Datacenter without boundaries”
Service Provider(ie: Rackspace,
Latisys, etc)
Storage Network Compute
On-premises infrastructure
2
Hyper-V Recovery Manager
• Monitors the health of System Center Virtual Machine Manager clouds
• Automates replication of virtual machines every 15 minutes, 5 minutes, or 30 seconds
• Orchestrated recovery of virtual machines that compose multi-tier services
• Customizable recovery plans, stored in the cloud
• Replicate and Recover to a secondary location – or to Azure!
Orchestrated disaster recovery to a second site…
Microsoft Azure
Site Recovery
Communication Channel
Replication channel: Hyper-V Replica
Primary Site
Windows Server
Recovery Site
Windows Server
Communication and Replication
Microsoft Azure Site Recovery
… Or to Azure
Communication Channel
Replication channel: Hyper-V Replica
Primary Site
Windows Server
Recovery Site
Windows Server
Microsoft Azure Site Recovery
Primary Site
Windows Server
Key features include:Automated VM protection and replication
Remote health monitoring
Customizable recovery plans
No-impact recovery plan testing
Orchestrated recovery when needed
Test Failover
• Recover the VM
onto the secondary
site without
affecting the
primary site
workload.
• VM can come up in
an isolated
environment or a
predefined
environment.
Planned Failover
• Recover VM by
safely turning off
the VM on the
primary site and
sending latest
changes.
• Ensures 0 data loss.
• VM boots up on
the secondary site.
Active location
changes to
secondary VMM.
Unplanned Failover
Without primary
site operations
• Recover VM when
the primary site is
no longer
reachable.
• May have data loss.
• VM boots up on
the secondary site.
Active location
changes to
secondary VMM.
Unplanned failover
with primary site
operations
• Attempts to
shutdown VM and
send latest
changes.
• If attempt fails,
goes ahead with
the recovery to
ensure better RTO.
ClusterCluster
Cluster
3
flexible development
unified management
common identity
integrated virtualization
complete data platform
Windows Azure Windows Server Microsoft SQL Server Microsoft System Center Windows Intune
single vendor across clouds
single vendor for IaaS & PaaS
single point of support
tenured experience
Trusted Platform
On-premises Cloud
ServiceProvider
Azure
SystemCenterApp
Controller
SystemCenter
OperationsManager
Microsoft AzureMicrosoft Azure global footprint
17 regions world wide in 2014
4
31 2
Cloud Infrastructure as a
Service (IaaS)
Magic Quadrant
x86 Server Virtualization
Magic Quadrant Enterprise Application PaaS
Magic Quadrant
July 2014 May 2014 January 2014
VNet1US West
VNet2East Asia
Contoso NorthAm HQ (10.0.0.0/16)
Connect to more than 1 on-premises location
Enable VNETs toconnect to each other
VNet1US West
VNet2East Asia
Contoso NorthAm HQ (10.0.0.0/16)
Contoso East Asia (10.3.0.0/16)
• Connect multiple datacenter
network sites
• Route traffic through Microsoft
backbone for higher performance
• Build hybrid applications
• Enhance security and isolation
• Enable high availability scenarios
Public Internet
Public Internet
WAN
ExpressRoute location
Customer site
Multiple customer sites
Microsoft Azure Microsoft Azure
Connecting at ExpressRoute Location (Exchange Provider facility)
Connecting from a WAN (e.g. MPLS VPN) provided by network services providers
• Create private, predictable, high
throughput connections between
Azure and your infrastructure
• Enable scenarios like periodic data
migration, replication for business
continuity, disaster recovery and
other high availability strategies
• 99.9% SLA on uptime
It’s your dataYou own it, you control it
We run the service for you
We are accountable to you
5
Microsoft Azure
ISO 27001:5
NIST 800-53
SOC 1 Type 2
SOC 2 Type 2
FedRAMP/FISMA
PCI DSS Level 1
UK G-Cloud
US-EU Safe Harbor
Information
security
standards
Effective controls
Government & industry certifications
Azure Security and Compliance
http://www.networkworld.com/author/Rand-Morimoto/
“Solidifying Microsoft Azure Security for SharePoint and SQL in
the Cloud”
Physical controls, video surveillance, access control
Edge routers, firewalls, intrusion detection, vulnerability scanning
Dual-factor authentication, intrusion detection, vulnerability scanning
Access control and monitoring, anti-malware, patch and configuration management
Secure engineering (SDL), access control and monitoring, anti-malware
Account management, training and awareness, screening
Threat and vulnerability management, security monitoring, and response, access control and monitoring, file/data integrity, encryption
Facility
Network perimeter
Internal network
Host
Application
Admin
Data
Contractual commitments
EU Data Privacy Approval
• Microsoft makes strong contractual commitments to safeguard customer data
covered by HIPAA BAA, Data Processing Agreement, & E.U. Model Clauses
• Enterprise cloud-service specific privacy protections benefit every industry &
region
• Microsoft meets high bar for protecting privacy of EU customer data
• EU Data Privacy approval allows Microsoft to transfer personal data across
international borders
• Only Microsoft is jointly approved from EU Article 29
Broad contractual scope
Migration Tool – Application Migration
• Capture application on source server, and put in a
Virtual Application “bubble”
• Application can then run on a target server
• running the same core OS or a more current core
OS
• on-premise or in a cloud environment
• run in a virtual bubble or natively on the target
system
Target server
VAA
Target server
Capture Application and Data,
and run in a Virtual “bubble”
Capture Application and
Data, and run natively on
a target server
VAA
Source server
Appzero Installed
Target system
Migration Tool – Application Migration
MANAGEMENT & AUATOMATION
NEW! Improve traditional storage with Storage Spaces with
Automated Tiering (SSD/SATA)
and Disk Deduplication
Hyper-V Replica permits replication for business continuity &
failure recovery
NEW! Non-Windows support for Remote Desktop Services (ie:
Apple Mac, iOS, Android)
NEW! Hyper-V Replication (local), Site to Site Replication (to cloud), Azure-based HyperV
Recovery Mgr
NEW! Hyper-V – Grow & Expand Virtual Machines
while they are running
NEW! Multi-Tenant Site-to-Site VPN Gateway to
enable cross-premises
connectivity
UPDATED! Non-Windows endpoint (Mobile Device Management) support in
ConfigMgr / Intune
NEW! WorkPlace Join (iOS, Win8.1), WorkFolders (folder sync
(tablets/phones)), Web Application Proxy (app
authentication)
UPDATED! Hyper-V Network Virtualization to isolate network traffic on
shared infrastructure
UPDATED! Monitor (SCOM) and Provision (VMM) VMs seamlessly on-premise or in
the cloud
6
Best-in-class virtualization, out of the box
System ResourceWindows Server
2012 R2 Hyper-V
vSphere
Hypervisor
vSphere 5.5
Enterprise Plus
Host
Logical Processors 320 320 320
Physical Memory 4TB 4TB 4TB
Virtual CPUs per Host 2,048 4,096 4,096
VM
Virtual CPUs per VM 64 8 641
Memory per VM 1TB 1TB 1TB
Active VMs per Host 1,024 512 512
Guest NUMA Yes Yes Yes
ClusterMaximum Nodes 64 N/A2 32
Maximum VMs 8,000 N/A2 4,000
1. vSphere 5.5 Enterprise Plus is the only vSphere edition that supports 64 vCPUs. Enterprise edition supports 32 vCPU per VM withall other editions supporting 8 vCPUs per VM2. For clustering/high availability, customers must purchase vSphere
vSphere Hypervisor / vSphere 5.x Ent+ Information: http://www.vmware.com/pdf/vsphere5/r55/vsphere-55-configuration-maximums.pdf and http://www.vmware.com/products/vsphere-hypervisor/faq.html,
http://www.vmware.com/files/pdf/vsphere/VMware-vSphere-Platform-Whats-New.pdf
Sync files and data across devices Full Support for CM and Intune
New settings to help provision the work folder
discovery settings
Self-service portals have links to work folders
New feature in Windows 8.1 client and
Windows Server 2012 R2
•
•
•
•
Windows application server or file server
Windows
virtualized
storage
Physical or
virtualized
deployments
Tiered
physical
storage
(Shared) SSD, SAS or SATA
Integrated
with other
Windows
Server 2012
R2
capabilities
Storage poolStorage pool
Management with
PowerShell, server managerHyper-V
Cluster shared volume
Failover clustering
SMB multichannel
Storage QoS
NTFS, ReFS, NFS SMB direct
Storage space Storage space Storage space
SSD
HDD
PDT consists of the following base tools:
• Workflow.xml – defines all possible deployment
building blocks and default settings
• Downloader.ps1 – downloads prerequisites from
the Internet
• VMCreator.ps1 – Creates Virtual machines
• Installer.ps1 – Installs roles and components on
the virtual machines or physical servers
• Variable.xml – Defines the deployment scenario
and settings
Infrastructure provisioning
Enterprise-class multi-tenant infrastructure for hybrid environments
System Center capabilities across clouds – private, public, or service provider
Application performance monitoring
Deep insight into application health
Automation and self-service
Application-owner agility while IT retains control
IT service management
Flexible service delivery
Infrastructure monitoring
Comprehensive monitoring of physical, virtual, and cloud infrastructure
Best-in-class management of Heterogeneous Datacenters
7
• CCO has worked with some of the largest datacenters in the world
• “Server Pods” – 1160 16-core Host Servers in a shipping container at
57% less cost than the deepest corporate discount for HP, Dell,
Fujitsu, IBM servers
• “Cheap Storage” – Instead of $2500/TB (times 2 for site redundancy),
storage costs in bulk (JBOD) now $300/TB (times 3 for high
availability and site redundancy), so $5,000/TB or $900/TB???
• “Virtual Networking” – Instead of appliances and devices, just
embed switching and internetworking within the Hosts, Pods,
Servers, and Apps (decrease of $10,000-$25,000 per site or per
connection)
• “Service Automation” – Spin up 2,350 VMs in 1-hour. Failover 1,000
VMs within a site in 30-seconds. Failover 1,000 VMs across sites in
3-minutes
• THIS hosted datacenter efficiency (now at $.46/$1, heading to
$.37/$1 within 6 months) drives down the cost of a VM, and puts
pressure on internal IT departments to improve their internal IT
efficiencies…
Optimized Datacenter
AutomationIntegration Orchestration
Accelerate time to value with flexible process workflows
SystemCenter
Orchestrator
http://channel9.msdn.com/Events/TechEd/NorthAmerica/2014/DCIM-B330#fbid=
Azure
Monitoring
Systems
Change
Control
Systems
Anything
Runbook Authoring in Azure:Create runbooks to automate all aspects of
cloud operations, from deployment,
monitoring, and optimizations
Highly Available Engine:Support requirements for scale and H/A.
Built on PowerShell Workflow. Isolation for
runbook jobs
Integration into other systems:Import PS modules and create additional
modules and runbooks for Azure services or to
connect into 3rd party systems
Automation
Simple Way to Start…
Service Provider[Rackspace]
Storage Network Compute
On-premises infrastructure
Onsite (Existing) Datacenter
• Run Active Directory for identity
• Focus on Business Applications
(Accounting, HR, etc)
• Manage Compliance (on-premise and
cloud)
• Support Endpoint Devices
Extend to Azure Services as Needed
• Running simple servers (like
www.cco.com, file system storage, time
and billing entry server, etc)
• Extending the corporate network (so the
cloud is seen and managed just like a
virtual guest on the corporate network)
• Servers are geo-replicated (so 99.9%
guaranteed uptime)
• Leverage Azure AD for “shared directory”
between multiple orgs (SharePoint
scenarios, a better “file sharing” solution)
• Copy systems (HyperV
VHDs) to the cloud
• Remote (RDP) to the
guest session and
manage just as you
would a local virtual
guest, so 100% control
• Monthly cost $57/month
for a full running VM
http://www.networkworld.com/community/blog/virtual-networks-windows-2012-and-azure-vms
8
Questions?
Created and Presented by:
Rand Morimoto, Ph.D., MCITP, CISSPAuthor, “Unleashed”-series / Sams PublishingPresident, Convergent Computinghttp://www.cco.com [email protected]
Microsoft’s Windows Server / Azure Server Strategy for Datacenters and the Cloud
Top Related