Scenarios for Building Hybrid Cloud

1

Pracheta Budhwar | @prachetabHema S | @hemagurusen

Your World is changingEvolving Business ModelsMoving away from Infrastructure builds

Evolving IP ModelsBuilding new on-demand services, rather than focusing on infrastructure support

Startup Agility, Enterprise MentalityStakeholders expecting better results, faster

0

2

4

6

8

0

2

4

6

801234567

82%of enterprises have a hybrid cloud strategy

83%of CIOs consider cloud IaaS as an infrastructure option

45%of total IT services will be spent on cloud services by 2020

$25,000in the cloud would cost $100,000 on premises(Microsoft Azure BI Team, STMG Proof Points Central)

EconomicsScale

30,000

to

250,000

Scale from

site visitors instantly(Case Study: Autocosmos)

2 weeksto deliver new services vs. 6-12 months with traditional solution(Case Study: HarperCollins Publishers)

Speed

The benefits of speed, scale, and economics are driving cloud adoption

of CIOs will embrace a cloud-first strategy in 2016(IDC CIO Agenda webinar)

Cloud Trend:70%

BENEFITS

CLOUD ADOPTION

Huge infrastructure scale is the enabler19 Regions ONLINE…huge datacenter capacity around the world…and

we’re growing

100+ datacentersOne of the top 3 networks in the world (coverage, speed, connections) 2 x AWS and 6x Google number of offered regionsG Series – Largest VM available in the market – 32 cores, 448GB Ram, SSD…

Operational Announced

Central USIowa

West USCalifornia

North EuropeIreland

East USVirginia

East US 2Virginia

US GovVirginia

North Central USIllinois

US GovIowa

South Central USTexas

Brazil SouthSao Paulo

West EuropeNetherlands

China North *Beijing

China South *Shanghai

Japan EastSaitama

Japan WestOsakaIndia

Central India South East Asia

Hong Kong

SE AsiaSingapore

Australia WestMelbourne

Australia EastSydney

* Operated by 21Vianet

Challenges of cloud adoption

5

Hybrid Cloud ScenariosAzure Backup

File Server

SQL

Exchange

Recovery

Encrypted Backup

VPNWindows Backup

SC Data Protection Manager

Microsoft Azure

Azure Site Recovery

System Center Virtual MachineManager

Recoveryplan

Health MonitorSystem Center Virtual MachineManager

Site A Site BHyper-V Replica

Orchestrated Recovery in case of outage

Manage

Site BSystem Center Virtual MachineManager

Site A

Replication

Recovery

Microsoft Azure

Microsoft Azure

Development / Test

VPN

Remote UsersAdmin

Enabling TechnologyAzure Site Recovery and Azure Backup

Datacenter Availability on DemandAzure Site Recovery

Azure Backup

MICROSOFT CONF IDENT IAL – INTERNAL ONLY

Azure Site RecoveryOne solution for multiple platforms and clouds

Communication and Replication

Microsoft Azure Site Recovery

VMware/

Physical

Vcenter/Physical

Orchestration and Replication:

Microsoft Azure Site Recovery

Windows Server

On-premises to On-premises protection

Microsoft Azure Site Recovery

Communication Channel

Replication channel:

Primary Site

Windows Server

Recovery Site

Windows Server

Microsoft Azure Site Recovery

Download Scout

Replication channel:

Primary Site

Physical/

VMware Recovery Site

VMware

VcenterVcenter/Physical

Protect to Azure

Primary Site

Primary Site

GA!

Hybrid Cloud ScenariosInfrastructure as a Service (3-Tier highly available example)

Availability Set

Load Balancin

g

AutoScalin

g

Tier 1Availability SetTier 2

AutoScalin

g

SharePoint

Availability SetTier 3

AzureStorage

SQLAzure

Analytics&

Reporting

ManagementCert

Service Cert

VPN

VPN

Web Site

MobileServic

e

HDInsight

(Hadoop)Storage

BLOBStorageTable

StorageQueue

Virtual Machine

s

VHD

Windows Azure Cache

Windows Azure CDN

MicrosoftAzure AD

Notification Hub

Users

MicrosoftAzure SDK

Developers

On Premises

Microsoft Azure

Platform as a Service (Connected Devices)

Connected Devices

Collect / Decode

Load Balancin

g

AutoScalin

g

Worker Roles

INGRESS NODESFilter / Analyze / AggregateANALYTICS NODE

AutoScalin

g

Worker Roles

AzureStorag

e

Record Reporting / BICONSUME

AzureStorage

SQLAzure

Analytics&

ReportingMicrosoft Azure

SQL Server Hybrid Cloud ScenariosSQL Development

PublishCompareSyncImport / ExportRegister / Unregister

Management Portal

VPN Dispersed TeamsMicrosoft

Azure

SQL Backup/RecoverySQL Backup tool for legacyManual Console BackupManaged Backups

Management Portal

VPN / Encrypted Data

Microsoft Azure

SQL Business ContinuityPrimar

ySecondar

yAsynchronous

Commit

Console 2014 / Scripts 2012

VPN BackupAvailability GroupsPeriodic SnapshotsGeo Replication

Disaster Recovery

Powering BI Apps

Microsoft Azure

Hybrid Cloud ScenariosEnterprise Mobility Suite

• Hybrid Identity Management• Mobile Device Security& Management• Mobile Application Management• Strong Authentication & Access based

Information ProtectionMicrosoft Azure Active Directory

Consumer identity

providersActive Directory

PCs and devices

Microsoft apps

3rd party clouds/hosting

ISV/CSV apps

Custom LOB apps

Encrypted Synchronization

Microsoft Azure AD

Microsoft Azure Multi-Factor Authentication

ADFS / SAMLMulti-FactorAuthenticationServer

Cloud AppsMulti-FactorAuthenticationServer

Corporate devices

On Premises Applications

BYOD / Personal devices

.NET, Java, PHP, …

• Built-in• SDK for integration• Strong multi Factor

Authentication• Real Time Fraud Alert• Reporting, Logging & Auditing

Microsoft Azure AD

Hybrid Identity with Azure AD• No such a thing as hybrid identity• Azure AD is not on-prem• Cloud service is not bound to a region• Connect your own identity to Azure AD• Normal AD Sync• Federation (ADFS)• Identity mgmt. (MIM / Azure AD > Self Pass reset, group mgmt.)

• Pros / Cons• Cons: Two factor has to be Phone in Azure. ADFS give more options• Pro: Auth is supported in Azure not on-prem

• Whitepaper: http://blogs.technet.com/b/privatecloud/archive/2015/06/08/identity-in-hybrid-cloud.aspx

Hybrid Networking

What is ExpressRoute?

Security

Lower cost

Predictable performance

High throughput

ExpressRoute provides a private, dedicated, high-

throughput network connection between

on-premises and Microsoft Azure

Customers want Azure on their network

Cloud on your WANTraffic flows directly from customer WAN to AzureReduces complexityProvides lower latency, higher bandwidth and greater availability

Azure

WAN

Corp HQ

Branch office 1

Branch office 2

Public internet

IPsec VPN over InternetEncrypted data traverses Internet to reach AzureLimited bandwidth and higher availability

Azure

WAN

Corp HQ

Branch office 1

Branch Office 2

Public internet

Opportunity to rethink your datacenter approach: think services, not serversTraditional datacenterTight coupling between infrastructure and apps Expensive, vertically integrated hardware Silo-ed infrastructure and operationsHighly customized processes and configurations

Microsoft Azure datacenterLoosely coupled apps and micro-services Industry-standard hardware Service-focused DevOps Standardized processes and configurations

Introducing: Microsoft Azure Stack

Cloud-consistent service delivery

Cloud-optimized application platform

Cloud-inspired hybrid infrastructure

Microsoft Azure

APP INNOVATION

HybridHyper-scale

Enterprise-grade

Power of Azure with the control of the datacenterIntroducing the Microsoft Azure Stack

Microsoft Azure StackDatacenter

Windows Server Linux

Portal IaaS | PaaS services

Cloud-inspired infrastructurePowered by Windows Server, Hyper-V, System Center, and Azure technologies

Windows Server Linux

Portal IaaS | PaaS services

Cloud infrastructure

Cloud-consistent service delivery – adopt to your Hybrid Cloud model Agility Simplified, abstracted experienceWrite once, deploy anywhereSupport traditional and cloud-native appsEasier acquisition of IT resources

Control Unified configuration, provisioning, and updatingReduced developer chaos through a common service modelIntegrated IT and business processes

FlexibilityAzure-consistent APIs and servicesAzure-consistent resource managementExtensible framework for resources and service delivery

Cloud is a journey & going the Hybrid route is mostly the best way to test the waters & make right choices !

Envision Explore Engage Expand