MGT1761BU Swisscom Modernizes Its Cloud for Enterprises with VMware Our Cloud Journey 2013 - Present Stephan Massalt, VP Cloud Swisscom Cloud Lab Ltd. Paul Kennedy, Chief Functional Architect vrealize Automation - VMware #VMworld #MGT1761BU
Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. CONFIDENTIAL 3
Swisscom. That s us. 4
Swisscom customer key figures as at 31 December 2016 1.5 million Swisscom TV customers 3.5 million Ultra-fast broadband connections 2.4 million fixed-line network customers 6.6 million mobile communications customers 1.5 million All IP connections 5
6
Global trends are placing new demands on Swisscom Local competition Saturated market for priceaggressive competition (B2C/B2B) Digitisation brings with it new competitors from other industries (e.g. the post office) National isolated solutions make scalability more difficult Future-oriented infrastructure Dividends Flexibility Cashflow Investment Digitisation Innovation Security Global competition IT companies offer services over our network Global competitors with economies of scale and low prices (e.g. Amazon) Customer contact and data are being transferred abroad Partners become competitors (e.g. Microsoft) 7
How we started the Swisscom Cloud 8
IT Cloud Two core propositions > Swisscom Enterprise Cloud IT operations oriented IaaS Traditional (Mode 1) IT Infrastructure management > Private EC: Enterprise Outsourcing (Self Service) > Public & Virtual Private DCS: Dynamic Compute (Pay as you Go) Dynamic Server Dynamic Data Center Dynamic Storage > Swisscom Application Cloud Developer oriented PaaS Cloud native (Mode 2) applications Services marketplace Services Applications 9 Mode 1&2: Gartner Research https://research.gartner.com/definition-whatis-bimodal Source: Swisscom Application Cloud https://developer.swisscom.com
2013 Cloud Disruption: Software Defined Infrastructure Ambition 2013: Cloud Provider > Apply Cloud Native principles: 12 Factor > Hyper convergence: scalable, standard > Software defined everything > Use startup technology to be on cutting edge > Value is in the scalable Infrastructure Learnings from MVP 0.4 > Legacy workloads not designed for this approach > ITSM Best practices do make sense > Security concepts not ready for this pace > Market expectations high on cost and agility First MVP led to a re-orientation on technology for an Enterprise workload platform CloudOS Cloud 0.x 10
2014: Cloud Based Outsourcing Ambition: Cloud based Outsourcing provider > Mode I / Legacy workloads (Gartner) > ITSM as a leading design principle > Customer requirements to manage Infrastructure, not cloud native services > Standard stack with deviations in added value on infrastructure level (backup) > No market solution available, built own CMS Learnings from v1.3 > Infrastructure management requires other tooling: our stack was not developed for this! > Build your self in fast evolving market is hard > Maintaining support for hardware (LCM) Cloud 1.x Cloud Management System 11
Summer of 16 Rethinking our strategy 12
Paradigm shift in the Sourcing Markets From Full Outsourcing to Hybrid Sourcing Models combining Best-of-Breed Providers with Customer Services In the past One Outsourcing provider delivering full IT stack of services Today Combination of Cloud & Managed Service Providers combined with customers home made services 13
and what it means for Service Providers Full Service Providers are disappearing. Specialists take over. highly standardized and automated services global reach highly scalable low margins low Cloud Provider Full Service Provider VMworld 2017 Content: Not for Customer Proximity Integrator & Hybrid Service Provider Business critical applications publication Business continuity and security Integration capabilities Value add through Managed Services Hybrid solutions high 14
Basically it is about: Investments vs Value creation Services Orchestration Infrastructure $ $$ $$$ Value creation COTS Commodity 15
Building the 2 nd generation Swisscom Cloud 16
2016: Managed Service Provider Ambition: Deliver service across clouds > Standardized infrastructure, Off the self tools > Move from infrastructure focus to services Outsourcing 2.0 is service driven! > Solution for managing a Private Cloud and support Public Clouds > Select one strong partner to implement an maintain core components Key changes and challenges: > Rely on portfolio development of our partner: how can we steer? > Integrate Service provider requirements with an in essence Enterprise focused solution > How to develop and integrate our own tools for building and managing services Example is our IP Address Management solution 17
The technology stack as it is built now > Cloud Management based on VMware's vrealize Suite > VMware virtualization > Dell EMC Infrastructure SDDC ESC Virtual Private vroperations (Monitoring, Metering) Logging (vrli, Splunk, LogStash) VxBlock 740 VMAX 400k vrealize Automation (Tenants, Catalogues, Services) vrorchestration (Workflows) vsphere and NSX (Hypervisor, Network virtualization) Swisscom Portal Workload Platinum DCs (2 locations) VPLEX (Metro) VxBlock 740 VMAX 400k Microservices Billing Events ITSM Sync Impact Mgmt Single instance Multi-Tenancy Support NTP DNS IPAM vsphere and NSX (Hypervisor, Network virtualization) Swisscom System Integration Identity Federation ITSM Billing Reporting Workload Gold DCs (2 locations) VxBlock 740 VMAX 400k VPLEX (Metro) VxBlock 740 VMAX 400k 18 Networker + Data Domain 9500 Geographic distribution Networker + Data Domain 9800
The focus points for our Journey with VMware 19
CAVA: Drink your own Bubbles > Each vra installation requires it own full stack What if each developers needs a vra to develop and test? How to test new versions, without building complete new infrastructures? Deploying and configuring a vra instance can be a time-consuming process > The CAVA concept allows us to use vrealize to create new vra instances The vra catalogue contains an item that, when requested, provisions a new vra/vro deployment One infrastructure environment running a single vra instance that can create other vra deployments, including different vra versions 20 Blog CAVA@Swisscom
Service provider grade Multi-Tenancy DEV TEST INT Customer - Portal Tenant -vra Tenant-vRA Tenant-vRA vro Master - vra vrops vrli Tenant-vRO Infrastructure > We are going to apply the CAVA concept to create a multi-tenant environment Deploy vra and vro instances per tenant on top of a master vra. > Our benefit of having multiple environments Instance per developer (team) to independently develop and test Flexible Integration, Test and Acceptance environments. Sandbox per customer for specific integration testing. Run multiple versions of vrealize in parallel allowing for regression testing of workflows and blueprints 21
Automation of services & CI/CD > In order to deliver new services and functionality fast and flexible, we have build a CI/CD pipeline across our different environments. > All configuration data (artifacts) are treated as code and flows through the different stages until final deployment: Configuration artefacts Workflows for vro Blueprints for vra > The pipelines are build in Concourse GIT repo s for artifacts Semi automated promotion > Customer handover in Sandbox Allows for customer (regression) testing of Blueprints and Workflows Dev Team Pipeline DEV vra(s) DEV vro(s) Integration Pipeline Automated Acceptance Pipeline INT/AAT vra(s) INT/AAT vro(s) Factory Acceptance Pipeline Sandbox Pipeline FAT/SB vra(s) FAT/SB vro(s) DEV Zone INT Zone PRD Zone Production Pipeline Deployment Deployment Deployment Deployment Deployment Prod vra(s) Prod vro 22
Swisscom Portal & VMware vrealize User Interface Swisscom IDP Customer IDP > Default access to Swisscom Portal with basic catalog and deployment options > Advanced user get option to use vrealize management environment > One Single Sign On to Swisscom Portal IAM set roles and access permissions Aggregation of multiple IdPs behind one IAM solution vrealize vidm 23
Going to the multi-cloud > Next steps in the Swisscom Cloud story will be enabling customers to use any type of cloud infrastructure with a seamless user experience. > Support for Public Clouds Management of infrastructure deployment Extend Compliancy and Security policies across various infrastructures Pilots with NSX-T > Provide more advanced managed services Swisscom own developed Leverage 3 rd party services Managed Services Swisscom Cloud Infrastructure Compliancy Networking Managed Operating systems Managed Databases Managed Security VMware Management Suite AWS Azure 24
Recap of the Swisscom Cloud Journey 2013: Cloud Provider Cloud vs. VMware 2014: Cloud Outsourcing Provider Cloud + VMware 2017: Managed Services Provider Cloud = VMware 25