Fortisphere Essential Management for Virtual Infrastructures John Suit Founder and CTO

Transcription

1 VM Essential Lifecycle Management for Virtual for the Infrastructures Real World Fortisphere Essential Management for Virtual Infrastructures John Suit Founder and CTO

2 Agenda State of the Virtual Union Virtualization Challenges We See Daily Fortisphere Solutions Discussion

3 Company Overview Vision Providing policy-based management across virtual infrastructure Technology Patent-pending InsideTrack TM technology (3 years in development) Strategic Partners Investors Fairhaven Capital & Globespan Capital Partners Accolades Top Virtualization Company to Watch Fortisphere is one of the most interesting companies at RSA --Cameron Sturdevant Fortisphere s Virtual Essentials product suite provides users with a single interface for managing, tracking and enforcing polices in a heterogeneous hypervisor environment across the enterprise. This drastically simplifies the process of managing the virtualized infrastructure. - Mark Bowker, analyst, Enterprise Strategy Group --Mark Bowker Fortisphere Confidential 3

4 # of VMs State of The Union Virtualization will be the highest-impact trend changing infrastructure and operations through 2012 More than 4 million virtual machines will be installed on x86 servers by Currently, less than 10 percent of all servers are virtualized. We see a future, five years or so out, in which the vast majority of server services will be run in some form of a virtualized environment. Steve Ballmer, Microsoft Fortisphere Confidential 4

5 Industry Challenges Serious knowledge gap in sysadmin, security and audit communities Virtualization specific management challenges Guest & host security issues Shortage of industry security guidance Small but growing Vendor community is catching up Still mostly marketing documents Sysadmin, security & audit teams are often not trained No guidance virtualization s role as an IT control in regulatory compliance SOX, HIPAA, GLBA..very much up to individual interpretation PCI DSS: what does your QSA say? It depends Still way too much that we don t know

6 What We See Every Day Challenge: Increase Visibility Inspect offline and online VMs in real-time Audit configurations & inventories Track mobile and transient virtual resources Challenge: Maintain Control Enforce Configuration Standards Control Change Prevent Sprawl Support Audit Needs Policy-Based Management Discovery & Assessment Automated Enforcement Audit Assurance Heterogeneous Real-Time Across the Infrastructure Ensure best practice operations Maintain compliance with IT policies Fortisphere Confidential 6

7 Discovery & Assessment Challenge: Obtaining visibility inside VM s system, software, security and user information.. Inspecting Online and Offline VM s System, software, security and user information within each VM. Monitoring and Documenting Change Configuration Drift Centralizing Monitoring and Reporting Host, VM and Configuration Inventory License Counts Host, VM and Configuration Activity Resource Usage Policy Activities Virtualization increases the complexity with motion, off-line, snapshot, clone and copy capabilities. Fortisphere Confidential 7

8 Sprawl Management Challenge: Keep VM Sprawl under control. Tag & Track mobile VM s Monitor infrastructure events Snapshots, clones, etc. Reclaim idle or abandoned VM s Utilization and performance visibility VM leasing through TTL With their mobile, transient and reproductive nature, many organizations end up trading the cost savings from server consolidation with those of VM sprawl. Fortisphere Confidential 8

9 Policy-Based Control Challenge: Defining and enforcing policies for the virtual infrastructure Ensuring VMs meet policy as it is installed and inserted into the environment Change & Configuration management Network Communication IT Operations & Security Policies that can survive movement Applying the technologies and best practices from the physical world won t provide adequate protection and policy enforcement for VM s. Fortisphere Confidential 9

10 Fortisphere Solutions: Virtual Essentials Suite POLICY-BASED MANAGEMENT SOLUTIONS Fortisphere Virtual Insight Real-time inventories and configurations Infrastructure Event Monitoring VM Tagging & Tracking Visual topology of the infrastructure Fortisphere Virtual Foresight Real-time policy evaluation and enforcement. Over 100 out-of-the box policy templates for IT Operations and Security. Heterogeneous policy enforcement regardless of location or state. Fortisphere Confidential 10

11 Virtual Insight Features Agentless Inspection: Visibility into the inventory and configuration of all online and offline VMs. Infrastructure Monitoring: record clones, snapshots, migrations, rogue duplicates and policy events. Reporting: More than 300 out-of-thebox reports Virtual Machine Tagging: Embed a virtual machine fingerprint in every VM. Virtual Lineage : Visualize parent, siblings and childr relationships. Complete Audit Trail: Detailed history of all system actions, behaviors, transactions and changes. Fortisphere Confidential 11

12 Virtual Foresight Features Centralized Policy Store: repository of over 100 leading practice policy rules Correlative Policy Engine: Real-time correlation of application, configuration, and network information for policy application, evaluation and enforcement. Manual and Automated Response: Full range of policy violation responses from informational alerts to automated remediation. Migratory Policy Enforcement: Enforcement throughout vmotion Policy Inheritance: Parent policies are applied automatically to clones, snapshots and copies. Fortisphere Confidential 12

13 Virtualization Infrastructure Policy Examples Real-Time Behavior VM Location & Movement VM Network Communication Configuration Change Snapshot or Clone Attribute Change Infrastructure Elements VM & Host Configuration Lineage Offline and online state Customer attributes: owner, purpose, stage, SLA, etc. Enforced Policies Operational Best Practices Sprawl mitigation Change management Configuration management Lifecycle management Regulatory Policies & Best Practices Sarbanes-Oxley/GLBA HIPAA PCI-DSS DISA STIG VMware Hardening Guidelines In a dynamically changing environment, policy-based management means real-time control over the behavior of the virtual infrastructure Fortisphere Confidential 13

14 VM Essential Lifecycle Management for Virtual for the Infrastructures Real World Discussion