teched nz 2014: azure and sharepoint
DESCRIPTION
TechEd NZ 2014 - DCIM211 - Aben Samuel This session with take IT Pros, Managers through various aspects of Azure, but with a focus on SharePoint and how organizations should be looking at Azure with regards to: 1. Hybrid Approach 2. Complete Warm SharePoint Platform 3. Disaster Recovery , Business Continuity The session would also look into some of the newer features that have been made available recently and also look into some of the experiences with deploying SharePoint implementations on Azure.TRANSCRIPT
Azure and SharePoint
Aben SamuelSenior SharePoint and Technical ConsultantIntergen
DCIM211
Who am I?
Working for Team Yellow in Auckland
Live and breath Infrastructure and SharePoint
Motorbikes
Drink quite a bit of Coffee
@[email protected]://wellytonian.com
“SharePoint is a Hardware-Eating Monster”
Agenda
Why Azure?
Why do SharePoint on Azure?
What keeps it ticking?
What are the lessons learnt?
Why Azure?
By 2015, 35% of enterprise IT expenditures for most organizations will be managed outside the IT department’s budget.
2015 IT budget
Source: Gartner Predicts, Gartner, 2011
2020
By 2020, cloud will represent nearly 30% of all IT spending
Source: IDC Black Book 2013, IDC, 2013
Azure Platform ScaleWinter Olympics in SochiComputing and Storage for live video encoding and streaming
100 Million viewers
2.1 Million Concurrent users during US vs Canada Hockey
Azure Platform ScaleTitanfall – Multiplayer gameDay 1 Microsoft fired up over 100,000 Azure Virtual Machines
Over 300,000 cores dedicated to the VMs
Azure Platform ScaleHosting over 300 Million Active Directory Users
18 Billion Authentications per week
Azure Storage has over 25 Trillion objects with over 2.5 Million transactions per second for file requests from users
Azure
HyperscaleHybrid Capabilities
Enterprise Capabilities
Azure footprint
16 regions worldwide in 2014
IT Challenges
Save cost and increase revenue
Bring in more and more innovation into the organization
Users demand a higher quality of experience across their enterprise solutions
Business process driving towards new outcomes
Opportunity
System Administrators
Transition
Value Added Service Brokers
The most important cloud characteristic is the ability to migrate workloads between public and private cloudNorth American CloudTrac Survey, IDC, 2012
Public Private
Service Level Agreements
What’s includedCompute Hardware failure (disk, CPU, memory)Datacenter failures - Network failure, power failureHardware upgrades, Software maintenance – Host OS Updates
What is not includedVM Container crashes, Guest OS Updates
99.95% for multiple role instances4.38 hours of downtime per year
What are Infrastructure Services?
Cloud Based Virtual Machines Hyper-V Based Hosting Technology
Run workloads in Azure that were traditionally run on-premises
What are Infrastructure Services?NetworkingPrivate IPV4 Network support, and hybrid connectivity to
on-premises
Access Control Lists, External and Internal Load Balancing,
Reserved IPs
Why do SharePoint on Azure?
Cloud Models On Premises
Storage
Servers
Networking
O/S
Middleware
Virtualization
Data
Applications
Runtime
You m
anage
Infrastructure(as a Service)
Storage
Servers
Networking
O/S
Middleware
Virtualization
Data
Applications
Runtime
Managed b
y M
icroso
ft
You m
anage
Platform(as a Service)
Managed b
y M
icroso
ft
You m
anage
Storage
Servers
Networking
O/S
Middleware
Virtualization
Applications
Runtime
Data
Software(as a Service)
Managed b
y M
icroso
ft
Storage
Servers
Networking
O/S
Middleware
Virtualization
Applications
Runtime
Data
SharePoint Cloud Continuum
CONTROL
CO
ST-E
FF
ICIE
NC
Y
SharePoint (On-premises)
• SharePoint
• Full h/w control – size/scale• Roll-your-own HA/DR/scale
• 100% of API surface area• Easy migration of existing
apps• Roll-your-own HA/DR/scale
SharePoint (IaaS)• Hosted SharePoint
• Auto HA, Fault-Tolerance• Friction-free scale• Self-provisioning, mgmt. @
scale
• SharePoint Service
Office 365 (SaaS)
Recommended SharePoint Solutions for Azure IAASDevelopment and Test Platforms
Intranet and Collaboration Platforms
Disaster Recovery of On-Premises SharePoint Farm to Azure
Internet Facing sites that use features and scale out not available in Office 365
Development and Test Platform
Its easy to create and manage these environments
Value Delivered
FastQuickly get new SharePoint developers on your projects up and running with little downtime.
Quickly get new system test environments provisioned.
Reduced CostTear down developer machines when vendors leave the project.
Reduced capital expenditures as no laptops need to be issued to new developers.
Tear down system test environments when not in use or a particular release has finished.
Integrate the customer’s vendors easily. The customer doesn’t have to add the vendor to the corporate domain.
Reduced Operations
MSDN Azure BenefitMSDN products can be
used on Virtual Machines
Single monetary credit (e.g. VPN gateway fee, no overspending)
Focuses on Dev/Test Usage
R
DemoCreate a development SharePoint 2013 Server
@neop26Aben Samuel#DCIM211
Intranet and Collaboration Solutions and WorkloadsSome ConsiderationsDetermine if O365 meets business requirements
If O365 does not meet all your business requirements, consider a standard implementation of SharePoint 2013 on Premises
If using a cloud platform is important for your business requirements, use Azure. SharePoint solutions are easier to support in Azure than other non-native Microsoft public cloud platforms
Disaster Recovery of On-Premises SharePoint 2013 WorkloadHosted Secondary DatacentreUse Azure instead of investing in secondary datacentre in a different region
Lower-cost disaster recovery environmentsMaintain and pay for fewer resources than on-premises DR environment. Cold, Warm or Hot Standby
More Elastic PlatformIn the event of disaster, easily scale-out your recovery SharePoint farm to meet load requirements.
IaaS And Disaster Recovery
Cloud ServiceVirtual Network
Windows Azure
SQL DR1(A6)
SP DR1
(Large)
AD1(X-Small)
On Premises
Web servers
Application servers
SQL DR2(A6)
SP DR2
(Large)
SP DR4
(Large)
SP DR5
(Large)
SP DR3
(Large)
Directory servers
SQL Server Log Shipping
VPN Tunnel
DemoDisaster Recovery of SharePoint to Azure Workload
@neop26Aben Samuel#DCIM211
Internet Facing Sites using SharePoint on AzureFocus on developing a great site rather than building infrastructure
Take advantage of elasticity in AzureSize the farm for demand and pay only for resources you need.
Use Azure Active DirectoryTaking advantage of Azure AD for customer (External) accounts.
Add SharePoint functionality not available within O356
Extranet and Public-Facing Internet
Cloud Service
Virtual Network
Windows Azure On Premises
Active Directory
Site developers and authors
VPN Tunnel
SharePoint 2013 Farm
Web Application
Windows Azure Active Directory
Internet Zone
Anonymous
Extranet Zone Default Zone
WindowsWindows
SAML
FBA Active DirectoryDomain Services
Partners and Customers
Visitors
What keeps it ticking?
SharePoint farms in Microsoft Azure
Virtual Machine Instance Size
Azure Portal Deployment
Affinity Groups
Azure Storage and Disks
Azure Networking
Availability Sets
PowerShell for Automation
Virtual Machine Instance SizesSize Name CPU Cores Memory Max. data disks Max. IOPS
ExtraSmall Shared 768 MB 1 1x500
Small 1 1.75 GB 2 2x500
Medium 2 3.5 GB 4 4x500
Large 4 7 GB 8 8x500
ExtraLarge 8 14 GB 16 16x500
A5 2 14 GB 4 4X500
A6 4 28 GB 8 8x500
A7 8 56 GB 16 16x500
A8 8 56 GB 16 16x500
A9 16 112 GB 16 16x500
Each data disk can hold up to 1 TB of storage.
SharePoint Virtual Machines
Azure Portal
Create new VM from image gallery
Virtual Machine booted. Changes direct-write
to blob storage
Log in toWindows Azure
Management Portal
The image is copied toyour blob storage account
Affinity Groups
Closely locate your compute, network and storage resources in the same datacentre
Get better performance
Get lower latency
Reduce egress costs
AffinityGroup
Persistent Disks And Highly Durable
Windows Azure Storage
Windows Azure Storage (Disaster Recovery)
Virtual Machine
Persistent Disks And Highly Durable
Windows Azure Storage
Windows Azure Storage (Disaster Recovery)
Virtual Machine
Virtual Machine
Protocols And Endpoints
Port Forwarded EndpointsDirect communication to multiple VMs in the same cloud app
Support for All IP-Based Protocols (VM to VM)Instance-to-instance communicationTCP, UDP, and ICMP, dynamic ports
UDP Traffic Supported in WALoad-balanced incoming traffic and allows outbound traffic
Custom Load Balancer Health ProbesHealth check with probe timeoutsHTTP-based probing, allowing granular control of health checks
Windows Azure
WA Gatew
ay
On-premises
Your datacenter
Hardware VPN or Windows RRAS
Virtual Network
<subnet 1>
<subnet 2>
<subnet 3>
DNS Server
Site-to-Site VPN
Virtual Networks – Site-to-Site
Windows Azure
On-premises
Your datacenter
Individual computers behind corporate firewall
Point-to-Site VPN
Remote workers
Virtual Networks – Point-to-Site
Virtual Network
<subnet 1>
<subnet 2>
<subnet 3>
DNS Server
Hardware VPN or Windows RRAS
Site-to-Site VPN
WA Gatew
ay
DemoVPN Connectivity with Azure
@neop26Aben Samuel#DCIM211
External Load Balancing
Load BalancerExternal – public sites
Uses health probes for additional availability
Use Reserved IP for Public IP addresses or map external domains using a CNAME
AD-VM-01Subnet AD10.0.2.4
AD-VM-02Subnet AD10.0.2.5
SP-WFW-01Subnet WEB
10.0.3.4
Cloud Service
SP-WFE-02Subnet WEB
10.0.3.5
AV Set: ADAV Set: SPWFE
SP-APP-01Subnet APPS
10.0.4.4
SP-APP-02Subnet APPS
10.0.4.5
AV Set: SPAPP
SQL-AO-01Subnet SQL
10.0.1.5
SQLWITNESSSubnet SQL
10.0.1.6
SQL-AO-01Subnet SQL
10.0.1.4
AV Set: SQL
AD-VM-03Subnet AD10.0.2.6
SP-WFE-02Subnet WEB
10.0.3.5
SP-APP-02Subnet APPS
10.0.4.5
SPVNET
Load Balancing With Always On Listener
SQL Always On uses external load balancer for listener virtual name.
Use Reserved IP for Public IP. SQL AO will stop working if external IP changes.
AD-VM-01Subnet AD10.0.2.4
AD-VM-02Subnet AD10.0.2.5
SP-WFW-01Subnet WEB
10.0.3.4
Cloud Service
SP-WFE-02Subnet WEB
10.0.3.5
AV Set: ADAV Set: SPWFE
SP-APP-01Subnet APPS
10.0.4.4
SP-APP-02Subnet APPS
10.0.4.5
AV Set: SPAPP
SQL-AO-01Subnet SQL
10.0.1.5
SQL-AO-03Subnet SQL
10.0.1.6
SQL-AO-01Subnet SQL
10.0.1.4
AV Set: SQL
AD-VM-03Subnet AD10.0.2.6
SP-WFE-02Subnet WEB
10.0.3.5
SP-APP-02Subnet APPS
10.0.4.5
SPVNET
Access Control ListsUsed to restrict access to endpoints Protect SQL Listener Load Balanced EndpointAdd Permit rule for SharePoint Cloud Service IP(Denies everyone else)
Internal Load Balancing
Virtual Network Address Space: 10.0.0.0/16
AD-VM-01Subnet AD10.0.4.4
SP-WFW-01Subnet WEB
10.0.1.4
Cloud Service
SP-WFE-02Subnet WEB
10.0.1.5
AV Set: ADAV Set: SPWFE
SP-APP-01Subnet APPS
10.0.2.4
SP-APP-02Subnet APPS
10.0.2.5
AV Set: SPAPP
SQL-AO-01Subnet SQL
10.0.3.5
SQLWITNESSSubnet SQL
10.0.3.6
SQL-AO-01Subnet SQL
10.0.3.4
AV Set: SQL
SP-WFE-02Subnet WEB
10.0.1.5
SP-APP-02Subnet APPS
10.0.2.5
AD-DC-01192.168.0.1
AD-DC-02192.168.0.2
On Premises192.168.0.0/16
AD-VM-02Subnet AD10.0.4.5
OtherServers
Active Directory ReplicationAccess on-premises resources Access intranet over hybrid connection
https://spintranet Map to: 10.0.0.100
Set Internal Load Balancer IPNew-AzureInternalLoadBalancerConfig
http://spintranet
Hybrid Connection
Virtual Machine
Virtual Machine
Availability Sets
Get SLA by deploying multiple instances in availability sets
Ensure availability during updates & maintenance
Architect availability into the application
Web Front End Tier
Availability Set #1
Front End ServicesDistibuted Cache
Workflow Manager Query Processing
Front End ServicesDistibuted Cache
Workflow Manager Query Processing
Index Partion #0 Index Partion #0Replica
Front End ServicesDistibuted Cache
Workflow Manager Query Processing
ReplicaReplica
XL - 8 cores / 14GB
C: (System) 127GBD: (Page File, Blob Cache) 604GBE: (Log) 40GBF: (Index) 500GB
C: (System) 127GBD: (Page File, Blob Cache) 604GBE: (Log) 40GBF: (Index) 500GB
C: (System) 127GBD: (Page File, Blob Cache) 604GBE: (Log) 40GBF: (Index) 500GB
XL - 8 cores / 14GB XL - 8 cores / 14GB
Replica
Front End ServicesDistibuted Cache
Workflow Manager Query Processing
XL - 8 cores / 14GB
C: (System) 127GBD: (Page File, Blob Cache) 604GBE: (Log) 40GBF: (Index) 500GB
App Server Tier
Availability Set #2
Content Processing
Admin
Crawl
Analytics Back End Services
Content Processing
Admin
Crawl
Analytics Back End Services
C: (System) 127GBD: (Page File) 604GBE: (Log) 40GBF: (Analytics) 300GB
C: (System) 127GBD: (Page File) 604GBE: (Log) 40GBF: (Analytics) 300GB
XL - 8 cores / 14GB XL - 8 cores / 14GB
Content Processing
Admin
Crawl
Analytics Back End Services
C: (System) 127GBD: (Page File) 604GBE: (Log) 40GBF: (Analytics) 300GB
XL - 8 cores / 14GB
Data Server Tier
Availability Set #3
Availability Group #1
Availability Group #2
Availability Group #3
Search
Content
Content
Configuration
Service Applications
C: (System) 127GBD: (Page File) 604GBE:, F:, G:, H: (TempDB Files) 500GBI: (TempDB Logs) 500GBL: (Transaction Logs) 500GBJ:, K:, M:, N: (Content Data) 1024GBO: (Search Databases) 1024GB
XL - 8 cores / 14GB XL - 8 cores / 14GB
C: (System) 127GBD: (Page File) 604GBE:, F:, G:, H: (TempDB Files) 500GBI: (TempDB Logs) 500GBL: (Transaction Logs) 500GBJ:, K:, M:, N: (Content Data) 1024GBO: (Search Databases) 1024GB
Content
Content
Configuration
Service Applications
C: (System) 127GBD: (Page File) 604GBE:, F:, G:, H: (TempDB Files) 500GBI: (TempDB Logs) 500GBL: (Transaction Logs) 500GBJ:, K:, M:, N: (Content Data) 1024GBO: (Search Databases) 1024GB
XL - 8 cores / 14GB
PowerShell for Automation and Advanced Management
AutomationQuery, manage and configure – at scale:
Virtual Machines
Storage across multiple subscriptions and storage accounts
Tiered deployment workflows
Virtual MachinesConfigure storage and networking
Domain join to AD on-premises
Bring your own machine images or disks
Use remote PowerShell
Virtual NetworkConfigure Virtual Network
Manage configuration and gateway
Connect to on-premises networks
StorageUpload & download VHDs from storage accounts to on-premises
Copy VHDs between storage accounts and subscriptions
Demo PowerShell for Automation and Management
@neop26Aben Samuel#DCIM211
What are the lessons learnt?
SharePoint 2013Deployment Tips
Use Static IP’s
Install SharePoint on C Drive
Put each SharePoint logical tier into its own Availability Set (WFE, APP)
Put blob cache onto a data disk for higher IOPS.
Do not use “D:\” drive for any application information
SharePoint 2013SQL Server Best Practices
Split Content databases across multiple disks
Verify Disk Cache Settings on Data Disks
Put database and transactional logs on separate disks
SharePoint 2013SQL Server Best Practices
Use SQL Server File Groups instead of Disk Stripping
SharePoint is almost married to TempDB – Split and move
TempDB onto its own Data Disk
Consider latency when looking at HA options
SharePoint 2013SQL Server Best Practices
Do not use temporary disk “D:\”
Spend time doing capacity planning on Storage Account.
20,000 IOPS per Storage Account – 500 IOPS per disk
SharePoint 2013Scale Out Not Up
Move content database to separate SQL Servers
Move search databases onto separate SQL Servers
Add more WFE for scaling SharePoint services
Add dedicated Search Servers and SQL Server
SharePoint 2013Active Directory Design Considerations
Should be deployed in a Virtual Network
Specify Static IP to ensure persistence
AD should be deployed within its own Subnet
SYSVOL Location
Deploy it to a Data Disk or disable OS Disk Caching on C:\
Summary
Why Azure?
Why do SharePoint on Azure?
What keeps it ticking?
What are the lessons learnt?
Don’t just deploy SharePoint…. Plan it out !
“SharePoint is a Hardware-Eating Monster”
“Azure is food”
Related contentBreakout Sessions
Creating Enterprise SharePoint solutions in the cloud (OFC202)To the Cloud and Fast(Automating SharePoint Online Deployments) (OFC307)SharePoint Solution Architecture for NZ Size Deployments (OFC320)StorSimple vNext and Microsoft Azure (DCIM313)
Hands-on LabsDBI-H304DCIM-H204DCIM-H301
Resources
TechNet & MSDN FlashSubscribe to our fortnightly newsletter
http://aka.ms/technetnz http://aka.ms/msdnnz
TechNet Virtual LabsFree Virtual Hands-on Labs
http://aka.ms/ch9nz
Microsoft Virtual AcademyFree Online Learning
http://aka.ms/mva http://aka.ms/technetlabs
Sessions on Demand
Azure and SharePoint
Aben Samuel@neop26http://wellytonaian.com
DCIM211
Complete your session evaluation now and win!
© 2014 Microsoft Corporation. All rights reserved.Microsoft, Windows and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.