1

PresidentConvergent Computinghttp://www.cco.comrandm@cco.com

Things: IDC, The Internet of Things is Poised to Change Everything, says IDC 2013; McKinsey & Company,

Big data: The next frontier for innovation, competition, and productivity 2011

Devices: “Info Workers Will Erase Boundary Between enterprise And Consumer Technologies.” Forrester

Research. August 30, 2012

Apps: Gartner: “Predicts 2013: Business Impact of Technology Drives the Futures Application Services

Market.” Nov. 21, 2012

Big data: Compiled from IDC digital universe forecasts

Cloud: “Prepare For 2020: Transform Your IT Infrastructure And Operations Practice.” Forrester Research.

Oct. 24, 2012

Big data

40 Zettabytesthe size of digital universe by 2020, of which 90% will be unstructured data

Things Apps Cloud

212 Billionconnected “things” globally by the end of 2020

25%of external app implementation spend will be on mobility, cloud, analytics & social, by 2016

45%of total IT spend will be cloud-related by 2020

Devices

52%of information workers across 17 countries report using 3+ devices for work

Start Justin

Datacenters of the Past

Storage Network Compute

Today’s datacenter

Datacenter of the (New) Present“Datacenter without boundaries”

Service Provider(ie: Rackspace,

Latisys, etc)

Storage Network Compute

On-premises infrastructure

2

Hyper-V Recovery Manager

• Monitors the health of System Center Virtual Machine Manager clouds

• Automates replication of virtual machines every 15 minutes, 5 minutes, or 30 seconds

• Orchestrated recovery of virtual machines that compose multi-tier services

• Customizable recovery plans, stored in the cloud

• Replicate and Recover to a secondary location – or to Azure!

Orchestrated disaster recovery to a second site…

Microsoft Azure

Site Recovery

Communication Channel

Replication channel: Hyper-V Replica

Primary Site

Windows Server

Recovery Site

Windows Server

Communication and Replication

Microsoft Azure Site Recovery

… Or to Azure

Communication Channel

Replication channel: Hyper-V Replica

Primary Site

Windows Server

Recovery Site

Windows Server

Microsoft Azure Site Recovery

Primary Site

Windows Server

Key features include:Automated VM protection and replication

Remote health monitoring

Customizable recovery plans

No-impact recovery plan testing

Orchestrated recovery when needed

Test Failover

• Recover the VM

onto the secondary

site without

affecting the

primary site

workload.

• VM can come up in

an isolated

environment or a

predefined

environment.

Planned Failover

• Recover VM by

safely turning off

the VM on the

primary site and

sending latest

changes.

• Ensures 0 data loss.

• VM boots up on

the secondary site.

Active location

changes to

secondary VMM.

Unplanned Failover

Without primary

site operations

• Recover VM when

the primary site is

no longer

reachable.

• May have data loss.

• VM boots up on

the secondary site.

Active location

changes to

secondary VMM.

Unplanned failover

with primary site

operations

• Attempts to

shutdown VM and

send latest

changes.

• If attempt fails,

goes ahead with

the recovery to

ensure better RTO.

ClusterCluster

Cluster

3

flexible development

unified management

common identity

integrated virtualization

complete data platform

Windows Azure Windows Server Microsoft SQL Server Microsoft System Center Windows Intune

single vendor across clouds

single vendor for IaaS & PaaS

single point of support

tenured experience

Trusted Platform

On-premises Cloud

ServiceProvider

Azure

SystemCenterApp

Controller

SystemCenter

OperationsManager

Microsoft AzureMicrosoft Azure global footprint

17 regions world wide in 2014

4

31 2

Cloud Infrastructure as a

Service (IaaS)

Magic Quadrant

x86 Server Virtualization

Magic Quadrant Enterprise Application PaaS

Magic Quadrant

July 2014 May 2014 January 2014

VNet1US West

VNet2East Asia

Contoso NorthAm HQ (10.0.0.0/16)

Connect to more than 1 on-premises location

Enable VNETs toconnect to each other

VNet1US West

VNet2East Asia

Contoso NorthAm HQ (10.0.0.0/16)

Contoso East Asia (10.3.0.0/16)

• Connect multiple datacenter

network sites

• Route traffic through Microsoft

backbone for higher performance

• Build hybrid applications

• Enhance security and isolation

• Enable high availability scenarios

Public Internet

Public Internet

WAN

ExpressRoute location

Customer site

Multiple customer sites

Microsoft Azure Microsoft Azure

Connecting at ExpressRoute Location (Exchange Provider facility)

Connecting from a WAN (e.g. MPLS VPN) provided by network services providers

• Create private, predictable, high

throughput connections between

Azure and your infrastructure

• Enable scenarios like periodic data

migration, replication for business

continuity, disaster recovery and

other high availability strategies

• 99.9% SLA on uptime

It’s your dataYou own it, you control it

We run the service for you

We are accountable to you

5

Microsoft Azure

ISO 27001:5

NIST 800-53

SOC 1 Type 2

SOC 2 Type 2

FedRAMP/FISMA

PCI DSS Level 1

UK G-Cloud

US-EU Safe Harbor

Information

security

standards

Effective controls

Government & industry certifications

Azure Security and Compliance

http://www.networkworld.com/author/Rand-Morimoto/

“Solidifying Microsoft Azure Security for SharePoint and SQL in

the Cloud”

Physical controls, video surveillance, access control

Edge routers, firewalls, intrusion detection, vulnerability scanning

Dual-factor authentication, intrusion detection, vulnerability scanning

Access control and monitoring, anti-malware, patch and configuration management

Secure engineering (SDL), access control and monitoring, anti-malware

Account management, training and awareness, screening

Threat and vulnerability management, security monitoring, and response, access control and monitoring, file/data integrity, encryption

Facility

Network perimeter

Internal network

Host

Application

Admin

Data

Contractual commitments

EU Data Privacy Approval

• Microsoft makes strong contractual commitments to safeguard customer data

covered by HIPAA BAA, Data Processing Agreement, & E.U. Model Clauses

• Enterprise cloud-service specific privacy protections benefit every industry &

region

• Microsoft meets high bar for protecting privacy of EU customer data

• EU Data Privacy approval allows Microsoft to transfer personal data across

international borders

• Only Microsoft is jointly approved from EU Article 29

Broad contractual scope

Migration Tool – Application Migration

• Capture application on source server, and put in a

Virtual Application “bubble”

• Application can then run on a target server

• running the same core OS or a more current core

OS

• on-premise or in a cloud environment

• run in a virtual bubble or natively on the target

system

Target server

VAA

Target server

Capture Application and Data,

and run in a Virtual “bubble”

Capture Application and

Data, and run natively on

a target server

VAA

Source server

Appzero Installed

Target system

Migration Tool – Application Migration

MANAGEMENT & AUATOMATION

NEW! Improve traditional storage with Storage Spaces with

Automated Tiering (SSD/SATA)

and Disk Deduplication

Hyper-V Replica permits replication for business continuity &

failure recovery

NEW! Non-Windows support for Remote Desktop Services (ie:

Apple Mac, iOS, Android)

NEW! Hyper-V Replication (local), Site to Site Replication (to cloud), Azure-based HyperV

Recovery Mgr

NEW! Hyper-V – Grow & Expand Virtual Machines

while they are running

NEW! Multi-Tenant Site-to-Site VPN Gateway to

enable cross-premises

connectivity

UPDATED! Non-Windows endpoint (Mobile Device Management) support in

ConfigMgr / Intune

NEW! WorkPlace Join (iOS, Win8.1), WorkFolders (folder sync

(tablets/phones)), Web Application Proxy (app

authentication)

UPDATED! Hyper-V Network Virtualization to isolate network traffic on

shared infrastructure

UPDATED! Monitor (SCOM) and Provision (VMM) VMs seamlessly on-premise or in

the cloud

6

Best-in-class virtualization, out of the box

System ResourceWindows Server

2012 R2 Hyper-V

vSphere

Hypervisor

vSphere 5.5

Enterprise Plus

Host

Logical Processors 320 320 320

Physical Memory 4TB 4TB 4TB

Virtual CPUs per Host 2,048 4,096 4,096

VM

Virtual CPUs per VM 64 8 641

Memory per VM 1TB 1TB 1TB

Active VMs per Host 1,024 512 512

Guest NUMA Yes Yes Yes

ClusterMaximum Nodes 64 N/A2 32

Maximum VMs 8,000 N/A2 4,000

1. vSphere 5.5 Enterprise Plus is the only vSphere edition that supports 64 vCPUs. Enterprise edition supports 32 vCPU per VM withall other editions supporting 8 vCPUs per VM2. For clustering/high availability, customers must purchase vSphere

vSphere Hypervisor / vSphere 5.x Ent+ Information: http://www.vmware.com/pdf/vsphere5/r55/vsphere-55-configuration-maximums.pdf and http://www.vmware.com/products/vsphere-hypervisor/faq.html,

http://www.vmware.com/files/pdf/vsphere/VMware-vSphere-Platform-Whats-New.pdf

Sync files and data across devices Full Support for CM and Intune

New settings to help provision the work folder

discovery settings

Self-service portals have links to work folders

New feature in Windows 8.1 client and

Windows Server 2012 R2

•

•

•

•

Windows application server or file server

Windows

virtualized

storage

Physical or

virtualized

deployments

Tiered

physical

storage

(Shared) SSD, SAS or SATA

Integrated

with other

Windows

Server 2012

R2

capabilities

Storage poolStorage pool

Management with

PowerShell, server managerHyper-V

Cluster shared volume

Failover clustering

SMB multichannel

Storage QoS

NTFS, ReFS, NFS SMB direct

Storage space Storage space Storage space

SSD

HDD

PDT consists of the following base tools:

• Workflow.xml – defines all possible deployment

building blocks and default settings

• Downloader.ps1 – downloads prerequisites from

the Internet

• VMCreator.ps1 – Creates Virtual machines

• Installer.ps1 – Installs roles and components on

the virtual machines or physical servers

• Variable.xml – Defines the deployment scenario

and settings

Infrastructure provisioning

Enterprise-class multi-tenant infrastructure for hybrid environments

System Center capabilities across clouds – private, public, or service provider

Application performance monitoring

Deep insight into application health

Automation and self-service

Application-owner agility while IT retains control

IT service management

Flexible service delivery

Infrastructure monitoring

Comprehensive monitoring of physical, virtual, and cloud infrastructure

Best-in-class management of Heterogeneous Datacenters

7

• CCO has worked with some of the largest datacenters in the world

• “Server Pods” – 1160 16-core Host Servers in a shipping container at

57% less cost than the deepest corporate discount for HP, Dell,

Fujitsu, IBM servers

• “Cheap Storage” – Instead of $2500/TB (times 2 for site redundancy),

storage costs in bulk (JBOD) now $300/TB (times 3 for high

availability and site redundancy), so $5,000/TB or $900/TB???

• “Virtual Networking” – Instead of appliances and devices, just

embed switching and internetworking within the Hosts, Pods,

Servers, and Apps (decrease of $10,000-$25,000 per site or per

connection)

• “Service Automation” – Spin up 2,350 VMs in 1-hour. Failover 1,000

VMs within a site in 30-seconds. Failover 1,000 VMs across sites in

3-minutes

• THIS hosted datacenter efficiency (now at $.46/$1, heading to

$.37/$1 within 6 months) drives down the cost of a VM, and puts

pressure on internal IT departments to improve their internal IT

efficiencies…

Optimized Datacenter

AutomationIntegration Orchestration

Accelerate time to value with flexible process workflows

SystemCenter

Orchestrator

http://channel9.msdn.com/Events/TechEd/NorthAmerica/2014/DCIM-B330#fbid=

Azure

Monitoring

Systems

Change

Control

Systems

Anything

Runbook Authoring in Azure:Create runbooks to automate all aspects of

cloud operations, from deployment,

monitoring, and optimizations

Highly Available Engine:Support requirements for scale and H/A.

Built on PowerShell Workflow. Isolation for

runbook jobs

Integration into other systems:Import PS modules and create additional

modules and runbooks for Azure services or to

connect into 3rd party systems

Automation

Simple Way to Start…

Service Provider[Rackspace]

Storage Network Compute

On-premises infrastructure

Onsite (Existing) Datacenter

• Run Active Directory for identity

• Focus on Business Applications

(Accounting, HR, etc)

• Manage Compliance (on-premise and

cloud)

• Support Endpoint Devices

Extend to Azure Services as Needed

• Running simple servers (like

www.cco.com, file system storage, time

and billing entry server, etc)

• Extending the corporate network (so the

cloud is seen and managed just like a

virtual guest on the corporate network)

• Servers are geo-replicated (so 99.9%

guaranteed uptime)

• Leverage Azure AD for “shared directory”

between multiple orgs (SharePoint

scenarios, a better “file sharing” solution)

• Copy systems (HyperV

VHDs) to the cloud

• Remote (RDP) to the

guest session and

manage just as you

would a local virtual

guest, so 100% control

• Monthly cost $57/month

for a full running VM

http://www.networkworld.com/community/blog/virtual-networks-windows-2012-and-azure-vms

8

Questions?

Created and Presented by:

Rand Morimoto, Ph.D., MCITP, CISSPAuthor, “Unleashed”-series / Sams PublishingPresident, Convergent Computinghttp://www.cco.com randm@cco.com

Microsoft’s Windows Server / Azure Server Strategy for Datacenters and the Cloud