Конфигурация и соответствие: две половины единого...
TRANSCRIPT
Configuration and compliance: two halves of a wholeDominic Wellington – Cloud & DCA Marketing, EMEABMC Software
0
50
100
150
200
250
300
'00 '01 '02 '03 '04 '05 '06 '07 '08 '09 '10 '11 '12 '13
Mgmt & Administration - Virtual ServersMgmt & Administration - Physical ServersPower & Cooling ExpenseServer Spending
Worldwide Spending on Servers, Power and Cooling, and Management/Administration
© Copyright 11/30/2012BMC Software, Inc3
Addressing the Pain of Configuration Management
© Copyright 11/30/2012BMC Software, Inc4
Deploy Service- Move – Add – Change
Manage Drift- Unauthorized change- Compliance
Analyze Results- State, trends and KPIs- Compliance
Repeat as Needed
© Copyright 11/30/2012BMC Software, Inc5
ComplianceThe manual approach
• Compliance AuditingBased on individual interpretationOut of date because of constant changeInconsistent implementation of auditsIncomplete audits (to save time)
• Compliance RemediationNo way to verify successNo way to back out changes
• Compliance ReportingNo trust in dataMust be keyed in by handOut of date
© Copyright 11/30/2012BMC Software, Inc6
Policy-Based Compliance & Remediation
OpsSec
Policy Deploy to TargetIdentify
Differences
Package Differences
Sec
Run Compliance Report
Target is Compliant
BI-D
IREC
TIO
NAL
PO
LIC
Y
Begins by using granular, rules-based auditing to compare target servers with a policy in order to identify any differences.
Continues by deploying the changes to the target server using permissions tied to the policy.
Ends when a re-audit of the target verifies
its compliance using bi-directional synchronization.
Target
© Copyright 11/30/2012BMC Software, Inc7
Viewlive state
Compareto desired state
Document exceptions
Remediate discrepancies
ReportKPIs & trends
© Copyright 11/30/2012BMC Software, Inc8
BMC Server Automation – How it works
Server port=”8005”shutdown=”SHUTDOWN”
Website File Config Item
• Live Data– Real-Time access to configuration items
• Granularity at an atomic level– Visibility – Turn the lights on– Accuracy – Timely & Correct info– Precision – Effect surgical change
• Standard actions at the object level– Browse– Snapshot– Audit– Package– Deploy– Change– Remediate
Built-in RollbackReduce Risk – Comprehensive rollback for changes
Granular Configuration VisibilityImprove Service Quality – Execute complex changes correctly
Platform Transparent PackagingReduce Cost – Single change process across all platforms
Role-based Access ControlReduce Risk – Define and enforce administrative roles
Unified BSM ArchitectureReduce Cost – Automate configuration & performance mgmt processes
VirtualizationPlatform
Compute
Platform
NetworkPlatform
Hypervisor Optimizationwith VN-Link
Resource ScalingWith Intel Nehalem
Unified Fabricwith Nexus Series
Site Savings (CAPEX & OPEX)1.Reduced ‘System’ Power2.Lower Cooling3.Better Use of Space4.Lower PUE/Site
Organization Savings (OPEX)1.Fewer FTE/”Service”2.Faster Provisioning3.Seamless Repurposing4.Better Coordination5.Fewer IT Failures
Platform Savings (CAPEX & OPEX)1.Radically Fewer Components2.Lower HW/SW Costs3.More VMs Per Node4.Better Performance Per Node
20% 15% 35%
IT Process Automation
Dynamic Provisioning
© Copyright 11/30/2012BMC Software, Inc11
• Full visibility from one console• Service Profile Templates automate software
configuration set up vs. one-off manual effort
• Simplify and control system admin tasks with role-based access controls
• Automate movement of workloads to meet changing demand patterns and performance spikes
• Automate discovery and population of configuration information to CMDB(s)
• Event reporting and incident diagnosis through built-in Cisco management software
© Copyright 11/30/2012BMC Software, Inc12
Full Stack Server Provisioning
UCS Manager Only
ManualAction
Associate Profile
Associated Blade
ManualSave Template
Create Templates
Available MACS
Available WWNs Cisco UCS
Templates
Manual
RequestNew OS or App stackinstance
Admin
UCS Manager + BMC BladeLogic
Available WWNs
Available MACS
Templates Security ConfigPolicy
Build Guidelines
CMDB Updated
Information
Update Service Model
Notify Requester
Automated App Stack Build
Fully Configured App Server
Automated SecurityConfig
Blade w/ OS + Security
Automated OS Build
Blade w/ OS
RequestNew OS or App stack
instance
Admin
Automated BladeCreation
Associated Blade
BladeLogic BL Data Store
Multiple Cisco UCS Instances
Multiple Manual Steps Required…
$6.3M year one operations savings
$1.5M year one vendor license savings
26 Month Anticipated payback period
Over 30K managed servers
95% Reduction in crashes caused by configuration changes
90% Reduction in emergency system changes
Operations can automatically track changes and delegate selected administrative tasks to subgroups
© Copyright 11/30/2012BMC Software, Inc14
Automation is the route to the cloud
© Copyright 11/30/2012BMC Software, Inc15
Automate Server Infrastructure
Automate Application Provisioning
Enable end user self-service
Streamline IT self-service
Automate Configuration and Compliance
Optimize cloud environment
© Copyright 11/30/2012BMC Software, Inc16
Same solution for continuous compliance in the cloud
• Automated, periodic auditing• Automatic remediation generation• Reduced staff utilization• Consistent high levels of compliance• On-demand compliance reporting
Same solution for continuous compliance in the cloud
• Automated, periodic auditing• Automatic remediation generation• Reduced staff utilization• Consistent high levels of compliance• On-demand compliance reporting
One platform for automation• Software packaging• Deployment• Patching• Policy management• Virtualization management
One platform for automation• Software packaging• Deployment• Patching• Policy management• Virtualization management
Unified architecture for configuration automation and compliance
© Copyright 11/30/2012BMC Software, Inc17
Unified Service Delivery Cloud Lifecycle Management
Common Physical Infrastructure
Partners
Virtualization
Resource Manager
ServerAutomation
Cloud / App Service Management
IP Next Generation
Network
Service Provider Data
Center
Compliance
Assurance
BMC Atrium (Integration & Orchestration)
Service Catalog
Self-Service PortalNetwork
Automation
Unified Fabric
UnifiedComputing
Peering andInterconnect
NetworkIntelligence
Secure Network Container Architecture
Pre-integrated HW
Storage
Service Governor
OrchestrationEngine
Public Company (Nasdaq: BMC)
Strategy•Become the industry’s de facto IT management platform •Committed to heterogeneity across cloud, virtual, distributed, and mainframe •Strong R&D investment with targeted M&A
Key Strengths•One of the ten largest public ISVs (Fiscal 2012 revenues of $2.2B)•Financially strong – highly profitable, strong cash and securities position, low debt•Development centers around the world•187 software technology patents•Market leading solutions•20,000 customers in 120+ countries
© Copyright 11/30/2012BMC Software, Inc19
BMC Software's Global Presence
Спасибо!Просим Вас заполнить анкеты.Ваше мнение очень важно для нас.
Dominic WellingtonCloud & DCA Marketing – [email protected]
@dwellington