steve grive head of information technology services session 1 technology framework overview

Steve GriveHead of Information Technology Services

Session 1Technology framework overview

IT Services

Operational, Service and Strategic Overview

• the ‘owners’ of elements of the environment

• supporting the student experience

The purpose of the presentation is to articulate:-

• the systems environment and its components

NETWORK LAYER

SERVER/HARDWARE LAYER

APPLICATION LAYER

USER INTERFACE LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

CO

NFIG

UR

ATIO

N C

ON

TR

OL

IT C

ON

TIN

UIT

Y A

ND

DIS

ASTER

REC

OV

ER

Y

CU

STO

MER

SER

VIC

E &

REPO

RTIN

G

TEC

HN

ICA

L PLA

NN

ING

SEC

UR

ITY

PR

OJE

CT M

AN

AG

EM

EN

T

Operational, Service and Support Framework

OPERATIONAL SERVICE & SUPPORT

PHYSICAL LAYER

ISISManagement Information


UCAS Interface UCAS Interface IRIS/LARESAdmissions and Accommodation

IRIS/LARESAdmissions and Accommodation

ACESAdmissions,

Clearing and

Enquiry System

ACESAdmissions,

Clearing and

Enquiry System

ALUMNIGraduate Students

ALUMNIGraduate Students

SAP/HRPersonnel and

Payroll

SAP/HRPersonnel and

Payroll

UWEOnlineVirtual

Learning Environment

UWEOnlineVirtual


SYLLABUS+Timetabling


AGRESSOFinance

AGRESSOFinance

BUSINESS APPLICATIONS

Online Applications Online Applications





UWEOnlineVirtual


UWEOnlineVirtual




Web Enabled APPLICATIONS

Online Enquiry and Application

Online Enquiry and Application

StudentPortal

StudentPortal

StudentE-Mail

StudentE-Mail

Web-MailWeb-MailOnlineStudent Records

OnlineStudent Records

OnlineTimetables

OnlineTimetables

Tutorial GroupPhoto Lists

Tutorial GroupPhoto Lists

Staff Portal

Staff Portal

Core Applications

On-lineApplications

SAP/HRPersonnel and

Payroll

The layered model

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER


APPLICATION LAYER


NETWORK LAYER


OPERATIONAL

PHYSICAL LAYER


OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

NETWORK LAYER

APPLICATION LAYER



OPERATIONAL

PHYSICAL LAYER

Machine Rooms and Network Stations

FR1 – Main machine/network room in B blockFR1 – Main machine/network room in B block

FR2 – DMZ machine room in B blockFR2 – DMZ machine room in B block

FR3 – Second machine/network roomFR3 – Second machine/network room in Botetourt Housein Botetourt House

FR4 – Library Way Station (in D block)FR4 – Library Way Station (in D block)

IT Continuity and Disaster Recovery

Bristol University

Machine rooms

FR1/FR2

FR4

FR3

PHYSICAL LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER


APPLICATION LAYER



OPERATIONAL

Physical Network

Switch

Router

Switch

LANWANSUPERJANET

NETWORK LAYER

Main Network Equipment in FR1

Network Cabinets in Second Machine RoomFR3

Cisco 6513 partof the campusbackbone

Half of the networkboundary equipment

Bristol University

IT Continuity and Disaster Recovery

Bristol University

Remote UWE Sites

Remote UWE Sites

Bristol University

Continuity and DR Objectives – Phase 1

University of Bristol

PHYSICAL LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

NETWORK LAYER

APPLICATION LAYER




OPERATIONAL

Server Hardware

Server Farm

1 2 3 4

SAP Servers

1 2 3

Server hardware

Rack 2 – FR1

Rack 1 – FR3Rack 1 – FR1

Production

Test

Development

FR1 FR3

Server hardware location design

Building hardware continuity into the various system landscapes, careful consideration for location of servers

Reduces risk of loss of all hardware in the case of destruction

Reduces risk through loss of powerto server rack, whole room or site

Contributes towards our Disaster Recovery and Continuity Strategy

APPLICATION LAYER


NETWORK LAYER



OPERATIONAL

OperatingSystem

Backups

System Monitoring

Same for all servers

1 2 3 4

PHYSICAL LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

PHYSICAL LAYER


NETWORK LAYER



OPERATIONAL

OperatingSystem

Backups

System Monitoring

Database

Application

SAP Serversonly

APPLICATION LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

PHYSICAL LAYER

NETWORK LAYER


APPLICATION LAYER


OPERATIONAL

OperatingSystem

Backups

System Monitoring

Server Farmonly

SAP Graphical User Interface


OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

Physical Room: FR1/FR2/FR3/FR4

Physical Network

Server Hardware

NETWORK LAYER


OPERATING SYSTEM LAYER

APPLICATION LAYER


DATABASE LAYER

Operational Service Framework

OPERATIONAL

OperatingSystem

Backups

System Monitoring

Database

Application

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER


PHYSICAL LAYER

IT Services/Faculty and/or Central Services

IT Services

IT Services Emphasis

Customer EmphasisEmphasis of Ownership

NETWORK LAYER


OPERATING SYSTEM LAYER

APPLICATION LAYER


DATABASE LAYER

OPERATIONAL

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

PHYSICAL LAYER

The simple picture

1

2

3

4

PC/Winterm

Server

Printer

Network

Start of the day

1

2

3

4

User logs-in

Server responds

Network

1

2

3

4

Connection established

Network

1

2

3

4

Request login to SAPSAP Starts running on server

Network

1

2

3

4

SAP Responds

Network

1

2

3

4

Request to print pay-slips

Network

1

2

3

4

Server initiates printing

Printer responds

Network

1

2

3

4

Pay-slips are printed and sent off

Network

1

2

3

4

User logs-off

Network

1

2

3

4

User goes home

Network

1

2

3

4

Overnight backups start

Network

The real picture

How does it work?(the login process)

Switch

RouterSwitch

Router

Switch

DNS/DHCP

Where am I on the network? and

What is my name?You are

here!

The routers and switchesare programmed to find theDHCP server which has theanswers.

You are allocated an IP address e.g. 164.11.56.134.The routers and switches also know how to find their way back to you to tell you.

Router

Switch Router

Switch

Server Farm

Switch

DNS/DHCP

Switch

1 2 3 4

User log-in?

Where is the server farm?

Ask the DNS server!

Farm is now visible!

User login request sent

Router Switch

Switch Router

Security Controller

Switch

Server Farm

Switch

DNS/DHCP

1 2 3 4

User log-in

Farm asks DNS to locatethe security controller

DNS replies

Security controller nowin sightLogin request is authenticated

And so the process continues….

Until the full network and servers are available and the applications are running

Server Farm

1 2 3 4Router

Domain Controller

Switch Router

SAP Servers

1 2 3

Switch

DNS/DHCP

1

2

3

4

Switch Switch

PrinterServer

Backups

Switch

1

2

3

4

Router

Domain Controller

Switch

Switch Router Switch

Switch

PrinterServer

Server Farm

Modem

SAP LandscapeSwitch

Backups

DNS/DHCP

ISDN Router

1 2 3 4

1 2 3

StaffPrivate UWE

DomainThat’s this bit

Router

WWW/MAN/VPN

IT Service DMZ

External DNS

Router

UWE Domain

Public Domain

StudentsIncluding new

village

Staff

Rackhay

ISDN/ModemRAS

Faculty DMZ

Private UWE

Domain

Steve GriveHead of Information Technology Services

Session 2Service framework overview

NETWORK LAYER


APPLICATION LAYER


OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

CO

NFIG

UR

ATIO

N C

ON

TR

OL

DIS

ASTER

REC

OV

ER

Y

CU

STO

MER

SER

VIC

E &

REPO

RTIN

G

TEC

HN

ICA

L PLA

NN

ING

SEC

UR

ITY

PR

OJE

CT M

AN

AG

EM

EN

T


OPERATIONAL SERVICE & SUPPORT

PHYSICAL LAYER

CO

NFIG

UR

ATIO

N C

ON

TR

OL

IT C

ON

TIN

UIT

Y A

ND

DIS

ASTER

REC

OV

ER

Y

CU

STO

MER

SER

VIC

E &

REPO

RTIN

G

TEC

HN

ICA

L PLA

NN

ING

SEC

UR

ITY

PR

OJE

CT M

AN

AG

EM

EN

T


SERVICE & SUPPORT

CONFIGURATION CONTROL

IT CONTINUITY AND DISASTER RECOVERY

CUSTOMER SERVICE & REPORTING

TECHNICAL PLANNING

SECURITY

PROJECT MANAGEMENT


SERVICE & SUPPORT


ITS / UWE PROJECT MANAGEMENT FRAMEWORK

Post Project Activities

Post Project Activities

Starting up a

Project

Starting up a

Project

Corporate or Programme ManagementCorporate or Programme Management

Initiating a Project

Initiating a Project

Controlling a stage

Controlling a stage

Managing Stage

Boundaries

Managing Stage

Boundaries

Closing a projectClosing a project

Managing Product Delivery

Managing Product Delivery

PlanningPlanning

Directing a ProjectDirecting a Project

PROJECT MANAGEMENT

TECHNICAL PLANNING

SECURITY

DISASTER RECOVERY

SERVICE REPORTING



SERVICE & SUPPORTSystem Landscapes

Distinct areas for:

• Development• Testing• Production

1 2 3

Development

DevelopmentProduction server farm

1 2 3 4

ProductionQAS

Terminal Servers

Test

Application and Database Servers

SAP Landscape and configuration control

ConfigurationControl




PROJECT MANAGEMENT

TECHNICAL PLANNING

SECURITY

DISASTER RECOVERY

SERVICE REPORTING



SERVICE & SUPPORTOperational Framework

• Responsibilities clear

• System configuration fully documented

• Procedures defined

• Configuration control

• Ongoing testing

• Service Level Agreements agreed co-managed between users and IT services through User Groups

Adoption of ITIL®

IT Information Library


PROJECT MANAGEMENT

TECHNICAL PLANNING

SECURITY

SERVICE REPORTING

IT CONTINUITY AND DISASTER RECOVERY


SERVICE & SUPPORT

Multiple machine rooms and triangulated network backbone established

Resilience encapsulatedwithin system landscapesis now being extended intooverall infrastructure

Programme of work for ongoing IT Service Continuity and Disaster Recovery Established

IT Services Strategy and Objectives

Continuity and Disaster Recovery

Stability, Reliability and Availability

Supporting the Student Experience

Virtualisation


Phase 1 - complete

Phase 2 - Service Continuity

Phase 3 - Data Continuity


Remote UWE Sites

Bristol University

Continuity and DR Objectives – Phase 1

University of Bristol



Phase 1 - complete




Integrated DesktopWordExcelOutlook

Server Farm

Switch

PrinterServer

APPLICATION LAYER


NETWORK LAYER


OPERATIONAL

PHYSICAL LAYER

OPERATING SYSTEM

DATABASE

BACKUP & MONITORING

LAYER

Continuity and DR Objectives – Phase 2 - Service Continuity

Operational Layer

Network Layer

Application Layer

End-User Layer

Hardware Layer

OS Layer

Resource Layer

Back office Layer

MICROSOFT NETWORKUNIX

Service Register - Matrix

Physical Layer

Service Register - Pulls all of this together into a single view



Phase 1 - complete



ProductionProduction

FR1 FR3

Current Data Storage

Test

• Systems have separate data storage called JBODS

• JBODS are tied to the system and its specific purpose so move with the systems

Backups

• Systems are backed-up Independently.

Production

If the Production system becomes unavailable then …

… Test Server can be recovered as the production system.

Continuity and DR Objectives – Phase 2 - Data Resilience

New System - Storage Area Network

• Highly resilient data storage

• Independent of any particular system

• UWE now has two of these

Continuity and DR Objectives – Phase 2 - Data Resilience

TestProduction

FR1 FR3

Using Storage Area networks for Resilience

Replicate data (real-time)

Production


Virtualisation

What goes around, comes around…

Virtualisation

Virtualization was first introduced in the 1960s to allow partitioning of large, mainframe hardware -- a scarce and expensive resource.

Virtualisation

Over time, minicomputers and PCs provided a more efficient, affordable way to distribute processing power, so by the 1980s, virtualization was no longer widely employed.

VirtualisationIn the 1990s, researchers began to see how virtualization could solve some of the problems associated with the proliferation of less expensive hardware, including:

- Underutilization (15-20%)- escalating management costs (250+ servers)- vulnerability (complexity)

Server FarmsVirtual PCs

‘Thin’ Client

‘Thin’ Client

In 2000 UWEvirtualised PC’s

Virtualisation: The next stage

Enterprise Servers

(Virtualisation Layer)

Virtualization is an abstract ‘layer’ that decouples physical hardware from operating systems and also decouples physical data storage from servers and applications running on them.

EnterpriseStorage(SAN)

Virtualisation…

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

… allows multiple virtual machines, with heterogeneous operating systems to run in isolation, side-by-side on the same physical machine.

Virtu

al S

erv

er


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtual Server

Applications

Operating System

Each virtual server has its own set of virtual hardware (e.g., RAM, CPU, etc.) upon which an operating system and applications are loaded.

Virtu

al S

erv

er


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtual Server

Applications

Operating System

Virtu

al S

erv

er

The operating system sees a consistent, normalized set of hardware regardless of the actual physical hardware components.


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtual servers are encapsulated into files….

…. making it possible to rapidly save, copy


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtual servers are encapsulated into files….

…. making it possible to rapidly save, copy and provision a virtual server.

Virtu

al S

erv

er

Virtu

al S

erv

er


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Full systems (fully configured applications, operating systems, BIOS and virtual hardware) can be moved, within seconds, from one physical server to another for zero-downtime maintenance and continuous workload consolidation.


Virtualisation

Enterprise Servers


Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Virtu

al S

erv

er

Enables greater IT resource utilization and flexibility to the entire architecture dependent upon needs of the business.

Virtual Server - Servers only set up when required

- Applications can be given greater capacity just by removing unutilized servers and/or creating bigger virtual servers



Supporting the Student Experience

UWE Online is available 24 X 7 for 365 days a year and use of the system almost doubles each year, as per the statistics below:

UWE Online comparative ‘hits’2005 - 2006

0

5000000

10000000

15000000

20000000

25000000

30000000

Aug Sep Oct

20052006

2002Separate Application

Database Servers implemented

2004Additional Failover Application

Server & load balancing implemented.

2006Clustered Database Servers and

Two additional ApplicationServers added.

UWE OnlineSystem Architecture

UWE Online

Student Desktop Services

Services Block P2PTraffic

Introducing Web Cam& MSN soon

Voice over IP (VoIP)

Computer availability in Student labs

Displays in real time

Wireless connectivity

Competitive priced Student Laptops:

Drop in Centre in 1E007

• Wireless installation

• Student computing advice

• Laptop Clinics

• Virus software promoted

• Res Net & Net Plus advice

• Late evening opening until 20.45 Mon – Fri

• Focus on students only

Approx 1,800 desktops and 4,200 study bedrooms supported daily

Computer Availability – Student Labs

Trial with student lab occupancy software

How many machines in use, how many available

If successful:

Display around Campusespossibly in receptions

Directs students for betterutilisation of equipment

Should help with access tocomputing

Student Portal

• The portal provides web-based access to a range of University services

• It emphasises services for students and online administration

• These are based on an increasing number of channels:

Syllabus Plus(Timetable)

Student Record data:•Personal details•Marks•Academic record

E Mail

Content from and linksto UWE-online and

coursework submission• Successful proof-of-concept completed 2004

• Pilot completed in 2005-2006 in HSC with c.500+ students

• All students from Feb. 2007 with on-line registration and fee

payment from September 2007

On-line registrationand

fee payment

steve grive head of information technology services session 1 technology framework overview

Documents

fr1 slide

disaster recovery slide

layered model slide

network cabinets

services operational

application online enquiry

main network equipment

student experience