Enabling Cloud Adoption. Addressing the challenges of multi-cloud

Size: px
Start display at page:

Download "Enabling Cloud Adoption. Addressing the challenges of multi-cloud"

Transcription

1 Enabling Cloud Adoption Addressing the challenges of multi-cloud

2 Introduction Organizations of all sizes are adopting cloud for application workloads. These organizations are looking to avoid the costs of running and managing their data centers or, more often, to accelerate the application delivery process. Using cloud enables development teams to operate with a much greater degree of independence from the underlying operational constraints of infrastructure. While early cloud adoption was largely about building new applications on Amazon Web Services (AWS), today it is clear that most enterprises will rely on multiple cloud providers in addition to their private infrastructure. The investments made by Microsoft Azure, Google Cloud Platform, Oracle Cloud, IBM Cloud, and Alibaba Cloud provide compelling infrastructure platforms, each with unique value propositions for new and existing workloads. For most organizations, this means navigating the transition from a relatively static pool of homogeneous infrastructure in dedicated data centers to a distributed fleet of servers spanning one or more cloud providers. The Challenge The primary challenge of cloud adoption is heterogeneity: how can operations, security, and development teams apply a consistent approach to provision, secure, connect, and run this infrastructure efficiently? Traditional Datacenter Hybrid Datacenter Private Cloud AWS Azure GCP 2

3 Essential Elements of Infrastructure We believe a practical place to begin is by deconstructing the layers of infrastructure software that most organizations use today and then mapping those to a multi-cloud world. We can simplify the traditional infrastructure software stack into three essential layers: Core infrastructure includes the operating system and management software that interacts with the physical storage, compute, and networking, and provides the core compute capacity for your applications. Typically, operations or system administrators provision and manage this layer. Application platform includes databases, web servers, message queues, and other components required to run an application or service. This software is the essential application runtime layer with which developers interact. Security layer typically focuses on boundary security through the use of networking to establish a perimeter firewall to protect the infrastructure and application platforms. Usually, a dedicated security team implements and manages this layer. These are the layers of infrastructure necessary to run any applications, with each aligned to a single role: operations, development, and security professionals. Unique Challenges of Cloud The adoption of cloud exposes unique challenges to each of these three layers. 1. Core infrastructure scale and heterogeneity In the traditional data center, a constrained number of servers are available to the operations team. And thanks to the power of virtualization, it is also largely homogeneous: operators provision compute capacity across this pool upon which applications are deployed. 3

4 By contrast, the scale of cloud infrastructure is essentially infinite: the server fleet available really has no practical limit since the cloud providers operate at enormous scale. It is for this reason that cloud providers expose access to their services as APIs: thereby allowing for the use of infrastructure as code approaches that enable users to codify topologies and express them in a repeatable manner. And each cloud provider provides a unique inventory of available infrastructure services: a VM on AWS, for example, is subtly different from a VM on Azure or GCP. This heterogeneity is what gives each cloud its richness but also introduces tremendous complexity for operations professionals who must learn the idiosyncrasies of provisioning each infrastructure type. The challenge for operations teams moving to cloud is to enable the automation through infrastructure as code while embracing the inevitable heterogeneity of different cloud providers. 2. Application platform diversity Development teams always value the ability to use the most appropriate technology for the needs of a particular application and for that reason every large organization inevitably supports an array of languages and runtime technologies. Today we have had an explosion of choice as the traditional options of Java and.net applications have expanded to include technologies that are closer to Cloud Native. In recent years, containers have grown for new applications because they are particularly well-suited to the highly dynamic web applications that are common today. 4

5 Cloud service providers today offer many of these runtime technologies natively but have also increased the heterogeneity even further by offering their own platform technologies Lambda functions on AWS, Google Functions on GCP, Azure Blob stores for storage, for example which have no direct correlation to on-premises runtime technologies. The challenge for architects then is to accommodate the necessary diversity of application platforms across a distributed fleet. 3. Security teams lack an effective network perimeter The traditional data center had four walls and a pipe and a clear network perimeter. Anyone inside the network is assumed to be authorized to access the infrastructure. Firewalls serve as bulkheads between front-end, user-facing applications and backend databases. IP addresses are generally static, which allow security professionals to provide additional constraints on application interactions based on IP address. However, a cloud doesn t have a distinct perimeter, and with multi-cloud, that surface area expands exponentially. And because the network topology is software-defined, any server can become Internet-facing with a few API calls. This lack of control over network topologies makes it hard to force all traffic through security or compliance tools. Infrastructure may also span multiple sites, meaning there isn t a single ingress point to allow secured traffic to flow into a network. And the decomposition of monolithic applications into highly ephemeral microservices means that IP addresses are highly dynamic, rendering IP-based security inappropriate for many scenarios. The challenge for security professionals is to rethink the castle & moat approach to perimeter-based security and reconsider security holistically across the dynamic, distributed fleet. 5

6 Cloud Infrastructure Defined A Consistent Approach to Provision, Secure, Connect, and Run Any Infrastructure for Any Application At HashiCorp, we believe organizations can address these challenges of cloud adoption with tools that provide a consistent workflow to a single, well-scoped concern at each layer of the infrastructure stack. This focus on workflows over technologies allows underlying technologies to change, while the workflow for each part of the organization does not. As a result, organizations simplify challenges related to diversity of technology. More specifically, we believe that successful cloud adoption begins with a separation of concerns: identify the individual challenges for operations, security, and development teams at the corresponding infrastructure, security, and application platform layers and then identify an appropriate technological and organizational blueprint. Provision Cloud Infrastructure The specific types of core infrastructure available on each provider vary but are conceptually similar: they provide the underlying core compute capacity that will be required by the applications and provisioned before all else. Access to these infrastructure resources is made available programmatically and exposed through a native tool: for example, Cloud Formation on AWS, Azure Resource Manager on Azure, or Google Cloud Deployment Manager on GCP. 6

7 For enterprises, the challenge is embracing the unique capabilities of each cloud platform without having to become an expert in the nuances of each platformspecific provisioning tool. IT operations teams need to provide some constraints while maintaining the benefits of self-service infrastructure that makes cloud so compelling. Therefore, the primary concerns for provisioning are: 1. Representing Infrastructure as code: using infrastructure as code provides a way to provision infrastructure at scale and provide infrastructure templates that can be reused by other teams. 2. Embracing heterogeneity: providing operators with a consistent workflow to provision infrastructure regardless of cloud provider and without losing access to the full capabilities of each cloud. This eliminates the need to learn cloud-specific provisioning tools. 3. Managing dependencies: infrastructure blueprints necessary include many dependencies to included elements that are not available natively as cloud services such as CDN or Monitoring tools that must be incorporated in every image. The ability to incorporate these in the provisioning process is a prerequisite for most provisioning approaches. Organizations that automate the provisioning of infrastructure across any platform are best able to navigate the transition to multi-cloud. Core infrastructure provides the compute, storage, and networking resources 7

8 Run Applications in Cloud There will always be diversity in the application platform layer, as different development teams embrace different tools and architectures depending on the application type. Some teams will simply bring their own combination of middleware app servers, databases, messaging technologies packaged in VMs, containers, or even native physical format. Others will incorporate cloud-native services uniquely available on a particular cloud: on AWS this might include Lambda functions and cloud native stores such as RDS for example. The architectural goal when considering the realities of multi-cloud is to enable this diversity across one or more infrastructure providers. Therefore, two of the primary requirements are: 1. Separation of concerns: how to separate developers from detailed knowledge of the underlying infrastructure so that they can focus on building the application without needing to consider where that application might physically run. 2. Efficient resource utilization: how to schedule resource consumption across a heterogeneous fleet of servers and application types (containers, virtual machiness, JAR files, etc.) to use all servers efficiently. Organizations addressing these two concerns can then consider the fleet of servers as an available pool of resources that is essentially a single large data center. A consistent approach to accommodate heterogeneity across the application layer 8

9 Secure Cloud Infrastructure The most obvious need in the transition to multi-cloud is a consideration of the security implications given the hybrid, distributed, and dynamic nature. The use of containers, which are highly ephemeral in nature, accentuates this and therefore poses a unique security challenge. Rather than attempting to recreate the traditional castle & moat approach, security professionals typically focus on addressing the following core requirements: 1. Distributed secrets management: application-specific secrets such as database usernames and passwords can become exposed given the lack of network perimeter. Providing a mechanism for operations and development teams to manage and rotate distributed secrets is a much larger issue in this environment and paramount. 2. Encryption of data in flight and at rest: traffic between application components that might reside on different providers and even geographies must be encrypted. 3. Identity management: authenticating identity between application components through the use of expiring tokens, for example, that provide assurance of identity. Addressing these challenges are fundamental for security professionals looking to be enablers of cloud adoption. A consistent approach to security across distributed infrastructure 9

10 Connect Any Application Across Any Infrastructure The dynamic nature of the cloud means that knowing where infrastructure and application components reside at any given time is challenging. We previously relied on the static nature of infrastructure to allow users to discover and interact with infrastructure via hard-coded addresses or using internal load balancers. However, with the dynamic, API-driven nature of the cloud, those techniques are no longer available. Instead, a core requirement of the cloud model is a common backbone in the form of a dynamic registry that describes where services and infrastructure components are running and allow hardware failures to be masked and mitigated. It also enables elasticity, without hard-coding or having a large portion of the infrastructure tasked with load balancing. This common backbone needs to: 1. Dynamically discover services: Developers need to discover and register application services required by their applications on the network. 2. Describe real-time configuration: Operators need the ability to discover and update infrastructure components or example, updating the settings on every load balancer on the network to keep the infrastructure healthy. A common backbone that connects cloud infrastructure provides the linkages so developers can run applications and operators can find the status of the infrastructure at any time. Connecting distributed infrastructure with complex network topologies 10

11 Cloud Infrastructure Delivered HashiCorp enables organizations to provision, secure, connect, and run any infrastructure for any application RUN SECURE PROVISION CONNECT At HashiCorp, we provide a suite of products that form the blueprint for organizations to adopt any cloud. Each tool addresses a focused concern for the technical and organizational challenges of infrastructure automation. This means tools can be adopted one at a time or all together. We do this by enabling consistent workflows not technologies. This enables customers to follow the same approach across their private data centers and their cloud environments. 11

12 Terraform LEARN MORE ABOUT TERRAFORM Terraform is a tool to provision any infrastructure using a consistent workflow through the application of infrastructure as code. There are two parts to Terraform s extensible architecture: Terraform Core, which is the core of the product, and then a series of providers plug-ins to support cloud types such as AWS, GCP, Azure, and vsphere. In this way, a user can adopt a common provisioning workflow and then apply that to any infrastructure type. In addition to support for provisioning on the major cloud providers, Terraform supports more than 70 infrastructure types (each with their own Terraform Provider), and 1000 unique resource types. The open source nature of the Providers makes it easy for anyone to contribute and improve providers as the infrastructure vendors add new capabilities. Operators codify infrastructure in the form of Terraform templates, which typically combine infrastructure types (for example, Fastly configured in AWS). By applying the infrastructure as code concept, operators can collaborate and share these templates in GitHub (or other version control systems) and follow the same principles that software developers use to collaborate on code. 12

13 Terraform allows a small number of operators to produce approved templates that can be consumed by developers. This producer/consumer relationship is a key ingredient to unlocking the organizational challenge of cloud adoption because it reduces the friction and bottlenecks of infrastructure provisioning. Provisioning requires infrastructure-specific images, as there is no common packaging format for virtual machines across providers. HashiCorp Packer enables operators to build many machine image types from a single source. A Terraform configuration can reference these images to provision infrastructure using the cloud specific images created by Packer. 13

14 LEARN MORE ABOUT VAULT Vault solves the challenge of security for distributed application infrastructure. It provides multiple layers of security that are independent of the network. Vault provides secrets management, encryption as a service, and privilege access management. Security operators use Vault to manage secrets centrally e.g., private encryption keys, API tokens, and database credentials. Vault will store and manage the distribution of those secrets to applications and end users. Security teams use a common Vault interface to manage secrets. Management tasks include password changes, credential rotation, and policy updates. Vault encrypts data at rest and in transit. Its extensible architecture provides support for many types of storage and authentication systems. Its policy support provides granular access control between human and server or between server and server. Vault is highly available within each data center and also provides replication across many data centers for enterprise users. 14

15 LEARN MORE ABOUT NOMAD Nomad is a multi-datacenter-aware cluster manager and scheduler. It provides a consistent approach for deploying any application. This includes batch, dispatch, and long-running services: Batch workloads include big data applications that need jobs to complete quickly. Dispatch workloads include short-lived, elastic applications. Long-running services need secure and highly available data centers. Developers codify the requirements for applications to run in a declarative configuration file. Nomad uses this file to place the application across a fleet of machines. This could include single cloud, span geographic cloud regions, or multiple clouds. Infrastructure operators provision the fleet of machines, whereas developers use Nomad to handle the application deployment across machines. In this way, we decouple infrastructure provisioning from application deployment. 15

16 LEARN MORE ABOUT CONSUL Consul provides a common backbone across hybrid infrastructure. It provides service discovery, monitoring, application configuration, and support for multi-datacenter networking topologies. It creates an automatic central registry the single source of truth for infrastructure. For example, a web server can use Consul to discover its upstream database or API services. While an application is running, Consul can monitor and flag degraded instances, while directing traffic to healthy instances and notifying developers or operators for any issues. Real-time service discovery allows development teams to avoid hard-coding network addresses. Instead, Consul pushes the discovery of other services into the application runtime. A running service broadcasts its availability, and can then be easily reached by other applications. 16

17 Accelerating Cloud Adoption We ve described a consistent toolset to empower operators and developers to provision, secure, connect, and run any infrastructure for any application. It s important for organizations to be able to quickly and efficiently run applications and infrastructure on the cloud best suited for their needs, while still retaining flexibility in their choice as applications and cloud offerings evolve. This is the fundamental purpose of the HashiCorp suite: to provide customers with the infrastructure automation capabilities they need as they move to cloud. The lego piece approach of HashiCorp allows organizations to incrementally adopt the tooling they need and integrate with their existing systems. HASHICORP SUITE

18 Updated: 06/29/17

Service Mesh and Microservices Networking

Service Mesh and Microservices Networking Service Mesh and Microservices Networking WHITEPAPER Service mesh and microservice networking As organizations adopt cloud infrastructure, there is a concurrent change in application architectures towards

More information

Going cloud-native with Kubernetes and Pivotal

Going cloud-native with Kubernetes and Pivotal Going cloud-native with Kubernetes and Pivotal A guide to Pivotal Container Service (PKS) by role Fast, low-risk enterprise-grade Kubernetes has arrived With Pivotal Container Service (PKS), organizations

More information

AWS Integration Guide

AWS Integration Guide AWS Integration Guide Cloud-Native Security www.aporeto.com AWS Integration Guide Aporeto integrates with AWS to help enterprises efficiently deploy, manage, and secure applications at scale and the compute

More information

VMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU

VMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU VMware Cloud on AWS A Closer Look Frank Denneman Senior Staff Architect Cloud Platform BU Speed is the New Currency Cloud Computing We are in the 3 rd fundamental structural transition in the history of

More information

Connecting your Microservices and Cloud Services with Oracle Integration CON7348

Connecting your Microservices and Cloud Services with Oracle Integration CON7348 Connecting your Microservices and Cloud Services with Oracle Integration CON7348 Robert Wunderlich Sr. Principal Product Manager September 19, 2016 Copyright 2016, Oracle and/or its affiliates. All rights

More information

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS Security Without Compromise CONTENTS INTRODUCTION 1 SECTION 1: STRETCHING BEYOND STATIC SECURITY 2 SECTION 2: NEW DEFENSES FOR CLOUD ENVIRONMENTS 5 SECTION

More information

I D C T E C H N O L O G Y S P O T L I G H T. V i r t u a l and Cloud D a t a Center Management

I D C T E C H N O L O G Y S P O T L I G H T. V i r t u a l and Cloud D a t a Center Management I D C T E C H N O L O G Y S P O T L I G H T Orchestration S i m p l i f i es and Streamlines V i r t u a l and Cloud D a t a Center Management January 2013 Adapted from Systems Management Software Purchasing

More information

Developing Enterprise Cloud Solutions with Azure

Developing Enterprise Cloud Solutions with Azure Developing Enterprise Cloud Solutions with Azure Java Focused 5 Day Course AUDIENCE FORMAT Developers and Software Architects Instructor-led with hands-on labs LEVEL 300 COURSE DESCRIPTION This course

More information

Sentinet for Microsoft Azure SENTINET

Sentinet for Microsoft Azure SENTINET Sentinet for Microsoft Azure SENTINET Sentinet for Microsoft Azure 1 Contents Introduction... 2 Customer Benefits... 2 Deployment Topologies... 3 Cloud Deployment Model... 3 Hybrid Deployment Model...

More information

How to Leverage Containers to Bolster Security and Performance While Moving to Google Cloud

How to Leverage Containers to Bolster Security and Performance While Moving to Google Cloud PRESENTED BY How to Leverage Containers to Bolster Security and Performance While Moving to Google Cloud BIG-IP enables the enterprise to efficiently address security and performance when migrating to

More information

EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER

EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER EASILY DEPLOY AND SCALE KUBERNETES WITH RANCHER 2 WHY KUBERNETES? Kubernetes is an open-source container orchestrator for deploying and managing containerized applications. Building on 15 years of experience

More information

How Security Policy Orchestration Extends to Hybrid Cloud Platforms

How Security Policy Orchestration Extends to Hybrid Cloud Platforms How Security Policy Orchestration Extends to Hybrid Cloud Platforms Reducing complexity also improves visibility when managing multi vendor, multi technology heterogeneous IT environments www.tufin.com

More information

YOUR APPLICATION S JOURNEY TO THE CLOUD. What s the best way to get cloud native capabilities for your existing applications?

YOUR APPLICATION S JOURNEY TO THE CLOUD. What s the best way to get cloud native capabilities for your existing applications? YOUR APPLICATION S JOURNEY TO THE CLOUD What s the best way to get cloud native capabilities for your existing applications? Introduction Moving applications to cloud is a priority for many IT organizations.

More information

Exam C Foundations of IBM Cloud Reference Architecture V5

Exam C Foundations of IBM Cloud Reference Architecture V5 Exam C5050 287 Foundations of IBM Cloud Reference Architecture V5 1. Which cloud computing scenario would benefit from the inclusion of orchestration? A. A customer has a need to adopt lean principles

More information

Vblock Infrastructure Packages: Accelerating Deployment of the Private Cloud

Vblock Infrastructure Packages: Accelerating Deployment of the Private Cloud Vblock Infrastructure Packages: Accelerating Deployment of the Private Cloud Roberto Missana - Channel Product Sales Specialist Data Center, Cisco 1 IT is undergoing a transformation Enterprise IT solutions

More information

Integrated Access Management Solutions. Access Televentures

Integrated Access Management Solutions. Access Televentures Integrated Access Management Solutions Access Televentures Table of Contents OVERCOMING THE AUTHENTICATION CHALLENGE... 2 1 EXECUTIVE SUMMARY... 2 2 Challenges to Providing Users Secure Access... 2 2.1

More information

Genomics on Cisco Metacloud + SwiftStack

Genomics on Cisco Metacloud + SwiftStack Genomics on Cisco Metacloud + SwiftStack Technology is a large component of driving discovery in both research and providing timely answers for clinical treatments. Advances in genomic sequencing have

More information

ebook ADVANCED LOAD BALANCING IN THE CLOUD 5 WAYS TO SIMPLIFY THE CHAOS

ebook ADVANCED LOAD BALANCING IN THE CLOUD 5 WAYS TO SIMPLIFY THE CHAOS ebook ADVANCED LOAD BALANCING IN THE CLOUD 5 WAYS TO SIMPLIFY THE CHAOS Introduction Load balancing isn t just about managing traffic anymore. As your infrastructure expands to include applications in

More information

Sentinet for Windows Azure VERSION 2.2

Sentinet for Windows Azure VERSION 2.2 Sentinet for Windows Azure VERSION 2.2 Sentinet for Windows Azure 1 Contents Introduction... 2 Customer Benefits... 2 Deployment Topologies... 3 Isolated Deployment Model... 3 Collocated Deployment Model...

More information

Automating the Software-Defined Data Center with vcloud Automation Center

Automating the Software-Defined Data Center with vcloud Automation Center Automating the Software-Defined Data Center with vcloud Automation Center Alex Tanner EM Specialist SE July 2014 2014 VMware Inc. All rights reserved. The Impact of the Accelerating Pace of Business The

More information

Hedvig as backup target for Veeam

Hedvig as backup target for Veeam Hedvig as backup target for Veeam Solution Whitepaper Version 1.0 April 2018 Table of contents Executive overview... 3 Introduction... 3 Solution components... 4 Hedvig... 4 Hedvig Virtual Disk (vdisk)...

More information

Cloud Confidence: Simple Seamless Secure. Dell EMC Data Protection for VMware Cloud on AWS

Cloud Confidence: Simple Seamless Secure. Dell EMC Data Protection for VMware Cloud on AWS Cloud Confidence: Simple Seamless Secure Dell EMC Data Protection for VMware Cloud on AWS Introduction From the boardroom to the data center, digital transformation has become a business imperative. Whether

More information

Cisco Cloud Application Centric Infrastructure

Cisco Cloud Application Centric Infrastructure Cisco Cloud Application Centric Infrastructure About Cisco cloud application centric infrastructure Cisco Cloud Application Centric Infrastructure (Cisco Cloud ACI) is a comprehensive solution for simplified

More information

Module Day Topic. 1 Definition of Cloud Computing and its Basics

Module Day Topic. 1 Definition of Cloud Computing and its Basics Module Day Topic 1 Definition of Cloud Computing and its Basics 1 2 3 1. How does cloud computing provides on-demand functionality? 2. What is the difference between scalability and elasticity? 3. What

More information

The Emerging Role of a CDN in Facilitating Secure Cloud Deployments

The Emerging Role of a CDN in Facilitating Secure Cloud Deployments White Paper The Emerging Role of a CDN in Facilitating Secure Cloud Deployments Sponsored by: Fastly Robert Ayoub August 2017 IDC OPINION The ongoing adoption of cloud services and the desire for anytime,

More information

Easily Managing Hybrid IT with Transformation Technology

Easily Managing Hybrid IT with Transformation Technology White Paper White Paper Managing Public Cloud Computing in the Enterprise Easily Managing Hybrid IT with Transformation Technology A Quick Start Guide 1 Table of Contents Abstract... 3 Traditional Approaches

More information

Transform to Your Cloud

Transform to Your Cloud Transform to Your Cloud Presented by VMware 2012 VMware Inc. All rights reserved Agenda Corporate Overview Cloud Infrastructure & Management Cloud Application Platform End User Computing The Journey to

More information

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY Managing and Auditing Organizational Migration to the Cloud 1 TELASA SECURITY About Me Brian Greidanus bgreidan@telasasecurity.com 18+ years of security and compliance experience delivering consulting

More information

What is Dell EMC Cloud for Microsoft Azure Stack?

What is Dell EMC Cloud for Microsoft Azure Stack? What is Dell EMC Cloud for Microsoft Azure Stack? Karsten Bott @azurestack_guy Advisory Cloud Platform Specialist AzureStack GLOBAL SPONSORS Why Hybrid Cloud? The New Digital Customer Rising and continuously

More information

STATE OF MODERN APPLICATIONS IN THE CLOUD

STATE OF MODERN APPLICATIONS IN THE CLOUD STATE OF MODERN APPLICATIONS IN THE CLOUD 2017 Introduction The Rise of Modern Applications What is the Modern Application? Today s leading enterprises are striving to deliver high performance, highly

More information

FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS

FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS WHITE PAPER FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS Over the past 15 years, server virtualization has become the preferred method of application deployment in the enterprise datacenter.

More information

Automating the Software-Defined Data Center with vcloud Automation Center

Automating the Software-Defined Data Center with vcloud Automation Center Automating the Software-Defined Data Center with vcloud Automation Center 10 June 2014 Chris Alleaume Senior Systems Engineer 2014 VMware Inc. All rights reserved. The Impact of the Accelerating Pace of

More information

Cloud Essentials for Architects using OpenStack

Cloud Essentials for Architects using OpenStack Cloud Essentials for Architects using OpenStack Course Overview Start Date 5th March 2015 Duration 2 Days Location Dublin Course Code SS15-13 Programme Overview Cloud Computing is gaining increasing attention

More information

Unlocking Azure with Puppet Enterprise. November 29, 2016

Unlocking Azure with Puppet Enterprise. November 29, 2016 Unlocking Azure with Puppet Enterprise November 29, 2016 Unlocking Azure with Puppet Enterprise November 29, 2016 v2.0 Overview Introduction to Sourced Introduction to us Infrastructure as code Evolving

More information

When (and how) to move applications from VMware to Cisco Metacloud

When (and how) to move applications from VMware to Cisco Metacloud White Paper When (and how) to move applications from VMware to Cisco Metacloud What You Will Learn This white paper will explain when to migrate various applications running in VMware virtual machines

More information

Data Protection for Virtualized Environments

Data Protection for Virtualized Environments Technology Insight Paper Data Protection for Virtualized Environments IBM Spectrum Protect Plus Delivers a Modern Approach By Steve Scully, Sr. Analyst February 2018 Modern Data Protection for Virtualized

More information

Networking for a dynamic infrastructure: getting it right.

Networking for a dynamic infrastructure: getting it right. IBM Global Technology Services Networking for a dynamic infrastructure: getting it right. A guide for realizing the full potential of virtualization June 2009 Executive summary June 2009 Networking for

More information

Overview SENTINET 3.1

Overview SENTINET 3.1 Overview SENTINET 3.1 Overview 1 Contents Introduction... 2 Customer Benefits... 3 Development and Test... 3 Production and Operations... 4 Architecture... 5 Technology Stack... 7 Features Summary... 7

More information

AWS Reference Design Document

AWS Reference Design Document AWS Reference Design Document Contents Overview... 1 Amazon Web Services (AWS), Public Cloud and the New Security Challenges... 1 Security at the Speed of DevOps... 2 Securing East-West and North-South

More information

Developing Microsoft Azure Solutions

Developing Microsoft Azure Solutions 1 Developing Microsoft Azure Solutions Course Prerequisites A general understanding of ASP.NET and C# concepts Upon Completion of this Course, you will accomplish following: Compare the services available

More information

ArcGIS in the Cloud. Andrew Sakowicz & Alec Walker

ArcGIS in the Cloud. Andrew Sakowicz & Alec Walker ArcGIS in the Cloud Andrew Sakowicz & Alec Walker Key Takeaways How to Identify Organizational Strategy & Priorities Esri s Cloud Offerings A Broad Spectrum Successfully Executing Your Strategy The Cloud

More information

Architecting Microsoft Azure Solutions (proposed exam 535)

Architecting Microsoft Azure Solutions (proposed exam 535) Architecting Microsoft Azure Solutions (proposed exam 535) IMPORTANT: Significant changes are in progress for exam 534 and its content. As a result, we are retiring this exam on December 31, 2017, and

More information

Deploying and Operating Cloud Native.NET apps

Deploying and Operating Cloud Native.NET apps Deploying and Operating Cloud Native.NET apps Jenny McLaughlin, Sr. Platform Architect Cornelius Mendoza, Sr. Platform Architect Pivotal Cloud Native Practices Continuous Delivery DevOps Microservices

More information

Developing Microsoft Azure Solutions (70-532) Syllabus

Developing Microsoft Azure Solutions (70-532) Syllabus Developing Microsoft Azure Solutions (70-532) Syllabus Cloud Computing Introduction What is Cloud Computing Cloud Characteristics Cloud Computing Service Models Deployment Models in Cloud Computing Advantages

More information

Accelerate Your Enterprise Private Cloud Initiative

Accelerate Your Enterprise Private Cloud Initiative Cisco Cloud Comprehensive, enterprise cloud enablement services help you realize a secure, agile, and highly automated infrastructure-as-a-service (IaaS) environment for cost-effective, rapid IT service

More information

Your Data Demands More NETAPP ENABLES YOU TO LEVERAGE YOUR DATA & COMPUTE FROM ANYWHERE

Your Data Demands More NETAPP ENABLES YOU TO LEVERAGE YOUR DATA & COMPUTE FROM ANYWHERE Your Data Demands More NETAPP ENABLES YOU TO LEVERAGE YOUR DATA & COMPUTE FROM ANYWHERE IN ITS EARLY DAYS, NetApp s (www.netapp.com) primary goal was to build a market for network-attached storage and

More information

Defining Security for an AWS EKS deployment

Defining Security for an AWS EKS deployment Defining Security for an AWS EKS deployment Cloud-Native Security www.aporeto.com Defining Security for a Kubernetes Deployment Kubernetes is an open-source orchestrator for automating deployment, scaling,

More information

Developing Microsoft Azure Solutions (70-532) Syllabus

Developing Microsoft Azure Solutions (70-532) Syllabus Developing Microsoft Azure Solutions (70-532) Syllabus Cloud Computing Introduction What is Cloud Computing Cloud Characteristics Cloud Computing Service Models Deployment Models in Cloud Computing Advantages

More information

Platinum sponsors: Symon Perriman Senior Technical Evangelist

Platinum sponsors: Symon Perriman Senior Technical Evangelist Platinum sponsors: Symon Perriman Senior Technical Evangelist Microsoft @SymonPerriman Traditional Datacenter Windows Server 2003 Virtualized Datacenter Windows Server 2008 R2 with Hyper-V System Center

More information

Data center interconnect for the enterprise hybrid cloud

Data center interconnect for the enterprise hybrid cloud WHITEPAPER Data center interconnect for the enterprise hybrid cloud The world is moving to the cloud. Everything from entertainment and consumer mobile applications to enterprise software and government

More information

Copyright 2015 EMC Corporation. All rights reserved. Published in the USA.

Copyright 2015 EMC Corporation. All rights reserved. Published in the USA. This Reference Architecture Guide describes, in summary, a solution that enables IT organizations to quickly and effectively provision and manage Oracle Database as a Service (DBaaS) on Federation Enterprise

More information

Merging Enterprise Applications with Docker* Container Technology

Merging Enterprise Applications with Docker* Container Technology Solution Brief NetApp Docker Volume Plugin* Intel Xeon Processors Intel Ethernet Converged Network Adapters Merging Enterprise Applications with Docker* Container Technology Enabling Scale-out Solutions

More information

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction WHITE PAPER RedHat OpenShift Container Platform Abstract Benefits: Applications are designed around smaller independent components called microservices. Elastic resources: Scale up or down quickly and

More information

Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard

Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard In my view, Microsoft Azure is fast becoming the trusted platform of choice for SMB and Enterprise customers.

More information

SaaS. Public Cloud. Co-located SaaS Containers. Cloud

SaaS. Public Cloud. Co-located SaaS Containers. Cloud SaaS On-prem Private Cloud Public Cloud Co-located SaaS Containers APP SERVICES ACCESS TLS/SSL DNS NETWORK WAF LOAD BALANCING DNS ACCESS CONTROL SECURITY POLICIES F5 Beside the Cloud Why Get Closer to

More information

Faculté Polytechnique

Faculté Polytechnique Faculté Polytechnique INFORMATIQUE PARALLÈLE ET DISTRIBUÉE CHAPTER 7 : CLOUD COMPUTING Sidi Ahmed Mahmoudi sidi.mahmoudi@umons.ac.be 13 December 2017 PLAN Introduction I. History of Cloud Computing and

More information

Transform your network and your customer experience. Introducing SD-WAN Concierge

Transform your network and your customer experience. Introducing SD-WAN Concierge Transform your network and your customer experience Introducing SD-WAN Concierge Optimize your application performance, lower your total cost of ownership and simplify your network management. 2X Bandwith

More information

The Next Evolution of Enterprise Public Cloud. Bring the Oracle Cloud to Your Data Center

The Next Evolution of Enterprise Public Cloud. Bring the Oracle Cloud to Your Data Center The Next Evolution of Enterprise Public Cloud Bring the Oracle Cloud to Your Data Center The Next Stage of Cloud Evolution Over the past decade, cloud has matured from a fringe technology option that offered

More information

EBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud

EBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud EBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud Contents Introduction... 3 What is VMware Cloud on AWS?... 5 Customer Benefits of Adopting VMware Cloud on AWS... 6 VMware Cloud

More information

Securing Amazon Web Services (AWS) EC2 Instances with Dome9. A Whitepaper by Dome9 Security, Ltd.

Securing Amazon Web Services (AWS) EC2 Instances with Dome9. A Whitepaper by Dome9 Security, Ltd. Securing Amazon Web Services (AWS) EC2 Instances with Dome9 A Whitepaper by Dome9 Security, Ltd. Amazon Web Services (AWS) provides business flexibility for your company as you move to the cloud, but new

More information

Principal Solutions Architect. Architecting in the Cloud

Principal Solutions Architect. Architecting in the Cloud Matt Tavis Principal Solutions Architect Architecting in the Cloud Cloud Best Practices Whitepaper Prescriptive guidance to Cloud Architects Just Search for Cloud Best Practices to find the link ttp://media.amazonwebservices.co

More information

Automating the Software-Defined Data Center with vcloud Automation Center

Automating the Software-Defined Data Center with vcloud Automation Center Automating the Software-Defined Data Center with vcloud Automation Center Aviv Waiss, lead Cloud management Specialist 2014 VMware Inc. All rights reserved. The Impact of the Accelerating Pace of Business

More information

Course Overview This five-day course will provide participants with the key knowledge required to deploy and configure Microsoft Azure Stack.

Course Overview This five-day course will provide participants with the key knowledge required to deploy and configure Microsoft Azure Stack. [MS20537]: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Length : 5 Days Audience(s) : IT Professionals Level : 300 Technology : Azure Delivery Method : Instructor-led (Classroom)

More information

Renovating your storage infrastructure for Cloud era

Renovating your storage infrastructure for Cloud era Renovating your storage infrastructure for Cloud era Nguyen Phuc Cuong Software Defined Storage Country Sales Leader Copyright IBM Corporation 2016 2 Business SLAs Challenging Traditional Storage Approaches

More information

VMWARE CLOUD FOUNDATION: INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017

VMWARE CLOUD FOUNDATION: INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017 : INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017 Table of Contents Executive Summary 3 A Single Architecture for Hybrid Cloud 4 Introducing VMware Cloud Foundation 4 Deploying on Premises 6

More information

Cisco CloudCenter Solution with VMware

Cisco CloudCenter Solution with VMware Cisco CloudCenter Solution with Extend, any application, and any cloud The Cisco CloudCenter hybrid cloud management platform securely provisions infrastructure resources and deploys application components

More information

The definitive guide to selecting the right ADC for the digital transformation era

The definitive guide to selecting the right ADC for the digital transformation era The definitive guide to selecting the right ADC for the digital transformation era Pg. 2 Pg. 4 Citrix.com ebook App attack 1 Content Introduction...3 Digital transformation s impact...4 Harness the power

More information

How to Keep UP Through Digital Transformation with Next-Generation App Development

How to Keep UP Through Digital Transformation with Next-Generation App Development How to Keep UP Through Digital Transformation with Next-Generation App Development Peter Sjoberg Jon Olby A Look Back, A Look Forward Dedicated, data structure dependent, inefficient, virtualized Infrastructure

More information

SOLUTION BRIEF RSA NETWITNESS SUITE & THE CLOUD PROTECTING AGAINST THREATS IN A PERIMETER-LESS WORLD

SOLUTION BRIEF RSA NETWITNESS SUITE & THE CLOUD PROTECTING AGAINST THREATS IN A PERIMETER-LESS WORLD RSA NETWITNESS SUITE & THE CLOUD PROTECTING AGAINST THREATS IN A PERIMETER-LESS WORLD THE CLOUD MAKES THREAT HUNTING HARDER The explosion in cloud workloads is driving real, substantial business value.

More information

CONFIDENTLY INTEGRATE VMWARE CLOUD ON AWS WITH INTELLIGENT OPERATIONS

CONFIDENTLY INTEGRATE VMWARE CLOUD ON AWS WITH INTELLIGENT OPERATIONS SOLUTION OVERVIEW CONFIDENTLY INTEGRATE VMWARE WITH INTELLIGENT OPERATIONS VMware Cloud TM on AWS brings VMware s enterprise class Software-Defined Data Center (SDDC) software to the AWS Cloud, with optimized

More information

WHITE PAPER. F5 and Cisco. Supercharging IT Operations with Full-Stack SDN

WHITE PAPER. F5 and Cisco. Supercharging IT Operations with Full-Stack SDN + WHITE PAPER F5 and Cisco Supercharging IT Operations with Full-Stack SDN Contents Introduction 3 Confronting the bottleneck 3 Evolving SDN technologies 4 An integrated solution 5 Application policies,

More information

Developing Microsoft Azure Solutions (70-532) Syllabus

Developing Microsoft Azure Solutions (70-532) Syllabus Developing Microsoft Azure Solutions (70-532) Syllabus Cloud Computing Introduction What is Cloud Computing Cloud Characteristics Cloud Computing Service Models Deployment Models in Cloud Computing Advantages

More information

CHEM-E Process Automation and Information Systems: Applications

CHEM-E Process Automation and Information Systems: Applications CHEM-E7205 - Process Automation and Information Systems: Applications Cloud computing Jukka Kortela Contents What is Cloud Computing? Overview of Cloud Computing Comparison of Cloud Deployment Models Comparison

More information

Microservices Architekturen aufbauen, aber wie?

Microservices Architekturen aufbauen, aber wie? Microservices Architekturen aufbauen, aber wie? Constantin Gonzalez, Principal Solutions Architect glez@amazon.de, @zalez 30. Juni 2016 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

More information

VMWARE PIVOTAL CONTAINER SERVICE

VMWARE PIVOTAL CONTAINER SERVICE DATASHEET VMWARE PIVOTAL CONTAINER SERVICE AT A GLANCE VMware Pivotal Container Service (PKS) is a production-grade Kubernetes-based container solution equipped with advanced networking, a private container

More information

IBM Compose Managed Platform for Multiple Open Source Databases

IBM Compose Managed Platform for Multiple Open Source Databases IBM Compose Managed Platform for Multiple Source Databases Source for Source for Data Layer Blueprint with Compose Source for Comprehensive Catalogue for Simplified Scoping Scalable Platform for FutureProof

More information

RED HAT OPENSHIFT A FOUNDATION FOR SUCCESSFUL DIGITAL TRANSFORMATION

RED HAT OPENSHIFT A FOUNDATION FOR SUCCESSFUL DIGITAL TRANSFORMATION RED HAT OPENSHIFT A FOUNDATION FOR SUCCESSFUL DIGITAL TRANSFORMATION Stephanos D Bacon Product Portfolio Strategy, Application Platforms Stockholm, 13 September 2017 1 THE PATH TO DIGITAL LEADERSHIP IT

More information

Why Kubernetes Matters

Why Kubernetes Matters WHITE PAPER Why Kubernetes Matters We are on the cusp of a new era of software: instead of bolting on operations as an afterthought to the software development process, Kubernetes promises to bring development

More information

70-532: Developing Microsoft Azure Solutions

70-532: Developing Microsoft Azure Solutions 70-532: Developing Microsoft Azure Solutions Exam Design Target Audience Candidates of this exam are experienced in designing, programming, implementing, automating, and monitoring Microsoft Azure solutions.

More information

DevOps Tooling from AWS

DevOps Tooling from AWS DevOps Tooling from AWS What is DevOps? Improved Collaboration - the dropping of silos between teams allows greater collaboration and understanding of how the application is built and deployed. This allows

More information

VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018

VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018 VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018 Table of Contents Executive Summary 3 A Single Architecture for Hybrid Cloud 4 Introducing VMware Cloud Foundation

More information

DevOps Anti-Patterns. Have the Ops team deal with it. Time to fire the Ops team! Let s hire a DevOps unit! COPYRIGHT 2019 MANICODE SECURITY

DevOps Anti-Patterns. Have the Ops team deal with it. Time to fire the Ops team! Let s hire a DevOps unit! COPYRIGHT 2019 MANICODE SECURITY DevOps Anti-Patterns Have the Ops team deal with it. Time to fire the Ops team! Let s hire a DevOps unit! 31 Anti-Pattern: Throw it Over the Wall Development Operations 32 Anti-Pattern: DevOps Team Silo

More information

Modernize Your Backup and DR Using Actifio in AWS

Modernize Your Backup and DR Using Actifio in AWS FOR AWS Modernize Your Backup and DR Using Actifio in AWS 150105H FOR AWS Modernize Your Backup and DR Using Actifio in AWS What is Actifio? Actifio virtualizes the data that s the lifeblood of business.

More information

PLEXXI HCN FOR VMWARE VSAN

PLEXXI HCN FOR VMWARE VSAN PLEXXI HCN FOR VMWARE VSAN SOLUTION BRIEF Hyperconverged Network Fabric for VMware vsan Solutions FEATURED BENEFITS: Fully automated network configuration, based on VMware, drastically reduces operating

More information

HashiCorp Vault on the AWS Cloud

HashiCorp Vault on the AWS Cloud HashiCorp Vault on the AWS Cloud Quick Start Reference Deployment November 2016 Last update: April 2017 (revisions) Cameron Stokes, HashiCorp, Inc. Tony Vattathil and Brandon Chavis, Amazon Web Services

More information

Networking for a smarter data center: Getting it right

Networking for a smarter data center: Getting it right IBM Global Technology Services October 2011 Networking for a smarter data center: Getting it right Planning the network needed for a dynamic infrastructure 2 Networking for a smarter data center: Getting

More information

5 Things You Need for a True VMware Private Cloud

5 Things You Need for a True VMware Private Cloud 5 Things You Need for a True VMware Private Cloud Introduction IT teams forging their cloud strategies are considering public cloud providers such as Amazon Web Services (AWS) to satisfy growing developer

More information

Vblock Architecture Accelerating Deployment of the Private Cloud

Vblock Architecture Accelerating Deployment of the Private Cloud Vblock Architecture Accelerating Deployment of the Private Cloud René Raeber Technical Solutions Architect Datacenter rraeber@cisco.com 1 Vblock Frequently Asked Questions 2 What is a Vblock? It is a product

More information

Next Generation Privilege Identity Management

Next Generation Privilege Identity Management White Paper Next Generation Privilege Identity Management Nowadays enterprise IT teams are focused on adopting and supporting newer devices, applications and platforms to address business needs and keep

More information

DEVOPSIFYING NETWORK SECURITY. An AlgoSec Technical Whitepaper

DEVOPSIFYING NETWORK SECURITY. An AlgoSec Technical Whitepaper DEVOPSIFYING NETWORK SECURITY An AlgoSec Technical Whitepaper Introduction This technical whitepaper presents and discusses the concept of Connectivity as Code, a complementary concept to Infrastructure

More information

Cisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.

Cisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved. Cisco Enterprise Cloud Suite Overview 2015 Cisco and/or its affiliates. All rights reserved. 1 CECS Components End User Service Catalog SERVICE PORTAL Orchestration and Management UCS Director Application

More information

Cloud Security Gaps. Cloud-Native Security.

Cloud Security Gaps. Cloud-Native Security. Cloud Security Gaps Cloud-Native Security www.aporeto.com Why Network Segmentation is Failing Your Cloud Application Security How to Achieve Effective Application Segmentation By now it s obvious to security-minded

More information

HALO IN ACTION COMPLIANCE DON T LET LEGACY SECURITY TOOLS HOLD UP PCI COMPLIANCE IN THE CLOUD. Automated PCI compliance anytime, anywhere.

HALO IN ACTION COMPLIANCE DON T LET LEGACY SECURITY TOOLS HOLD UP PCI COMPLIANCE IN THE CLOUD. Automated PCI compliance anytime, anywhere. HALO IN ACTION COMPLIANCE DON T LET LEGACY SECURITY TOOLS HOLD UP PCI COMPLIANCE IN THE CLOUD Automated PCI compliance anytime, anywhere. THE PROBLEM Online commercial transactions will hit an estimated

More information

Cloud Computing the VMware Perspective. Bogomil Balkansky Product Marketing

Cloud Computing the VMware Perspective. Bogomil Balkansky Product Marketing Cloud Computing the VMware Perspective Bogomil Balkansky Product Marketing Cloud Computing - the Key Questions What is it? Why do you need it? How do you build (or leverage) one (or many)? How do you operate

More information

DreamFactory Security Guide

DreamFactory Security Guide DreamFactory Security Guide This white paper is designed to provide security information about DreamFactory. The sections below discuss the inherently secure characteristics of the platform and the explicit

More information

Transform Your Business with Hybrid Cloud

Transform Your Business with Hybrid Cloud Transform Your Business with Hybrid Cloud Cisco gives you greater choice and cost savings, so you can transform IT operations in a way that works best for your organization. We offer an open framework

More information

VMWARE ENTERPRISE PKS

VMWARE ENTERPRISE PKS DATASHEET AT A GLANCE VMware Enterprise PKS is a productiongrade Kubernetes-based container solution equipped with advanced networking, a private container registry, and full lifecycle management. VMware

More information

NE Infrastructure Provisioning with System Center Virtual Machine Manager

NE Infrastructure Provisioning with System Center Virtual Machine Manager NE-10981 Infrastructure Provisioning with System Center Virtual Machine Manager Summary Duration 5 Days Audience IT Professionals Level 400 Technology Microsoft System Center 2012 Delivery Method Instructor-led

More information

Exam : Implementing Microsoft Azure Infrastructure Solutions

Exam : Implementing Microsoft Azure Infrastructure Solutions Exam 70-533: Implementing Microsoft Azure Infrastructure Solutions Objective Domain Note: This document shows tracked changes that are effective as of January 18, 2018. Design and Implement Azure App Service

More information

Service Graph Design with Cisco Application Centric Infrastructure

Service Graph Design with Cisco Application Centric Infrastructure White Paper Service Graph Design with Cisco Application Centric Infrastructure 2017 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 101 Contents Introduction...

More information