CONFIDENTIAL Designator - Red Hatpeople.redhat.com/abach/RHEL8/Red Hat Enterprise... ·...

CONFIDENTIAL Designator

1

Partner Day Part 1

Red Hat Enterprise Linux 8

Alfred BachPartner Enablement Manager


CONFIDENTIAL PUBLIC

AGENDA

Red Hat Enterprise Linux 8 Partner Day

● Value of Red Hat Subscriptions● Competition● RHEL 8 Overview● Red Hat Insights

● Installation

○ Composer

○ Upgrade

● Server Management with Cockpit

● Storage / Network / Virtualization

● CoreOS

● Universal Base Image

● Security and Compliance

○ Session Recording

● Upcoming Trainings


Value of Red Hat Subscriptions


CONFIDENTIAL PUBLIC

FROM COMMUNITIES TO ENTERPRISE


CONFIDENTIAL PUBLIC

We take this massive innovation happening in open communities and deliver it in a safe, secure, reliable way so enterprises can consume it in their traditional infrastructure.JIM WHITEHURSTPresident & CEO, Red Hat


CONFIDENTIAL PUBLIC

A RED HAT SUBSCRIPTIONDELIVERS CONTINUOUS VALUE EVERY DAY

access.redhat.com/subscription-value

CUSTOMER PORTAL KNOWLEDGE SECURITY

SUPPORT

CERTIFICATIONS

LIFE CYCLE ASSURANCE


CONFIDENTIAL PUBLIC

RED HAT CUSTOMER PORTAL

Your one place for subscription resources—from product documentation and upgrades to intelligent tools, security updates, and technical support.

PRODUCT DOCUMENTATION

TOOLS AND SOLUTIONS

SECURITY UPDATES

access.redhat.com

SUPPORT SERVICES

SUBSCRIPTION MANAGEMENT


CONFIDENTIAL PUBLIC

KNOWLEDGEBASE

We’ve published thousands of solutions in our community-driven knowledgebase so you can learn from others, resolve issues yourself, and proactively manage your systems.

EXPERTISERed Hat Certified Engineers

GUIDANCE60,000+ technical solutions

EXPERIENCE1,000,000+ resolved issues

access.redhat.com/search/#/knowledgebase


CONFIDENTIAL PUBLIC

PRODUCT SECURITY

Red Hat’s stable code is backed by a dedicated team of engineers who monitor, identify, and address risks to protect you and your customers’ data from meaningful security concerns.

access.redhat.com/security/

SECURITY TOOLS VULNERABILITYRESPONSES CVE DATABASE


CONFIDENTIAL PUBLIC

SUPPORT

If you need to open a support case, it will be routed to a product specialist. Resolutions enable future updates to our products, making you an active participant in improving open source technology.

access.redhat.com/support

SUPPORT CASESGet answers quickly

LIVE CHATWith support engineers

CALL OR EMAILWith a support expert


CONFIDENTIAL PUBLIC

CERTIFICATIONS

Red HatⓇ engineers collaborate with a large ecosystem of partners to ensure your third-party solutions are tested, supported, and certified to perform with Red Hat technologies.

access.redhat.com/ecosystem

CERTIFIEDHARDWARE

CERTIFIEDSOFTWARE

CERTIFIEDCLOUD PROVIDERS


CONFIDENTIAL PUBLIC

ASSURANCES

Red Hat's Quality Assurance team works closely with our product development teams and provides the final engineering check before our open source products are released to customers and partners.

ACCEPTANCE FUNCTIONALITY REGRESSION INTEGRATION PERFORMANCE TESTING

red.ht/open-source-assurance-agreement

http://red.ht/open-source-assurance-agreement


CONFIDENTIAL PUBLIC

LIFE CYCLE

Red Hat subscriptions are not tied to a specific version, but cover the entire life cycle of the product. Our longer life cycles mean more choice, flexibility, and ease of planning.

access.redhat.com/support/policy/update_policies/

NO LOCK IN FLEXIBILITY REDUCED COSTS


Competition

CONFIDENTIAL PUBLIC

THE RHEL ENEMY LISTIN ORDER OF REVENUE IMPACT

COMPETITOR IMPACT

Oracle Linux #1 competitor in terms of revenue impact

CentOS #1 competitor by frequency of encounter both on-prem and in the cloud

SUSEOpportunity: SAP Threat of SLES-ES in EMEA

Amazon Linux Occasional losses, many battles lost before we got to the party

Ubuntu Lots of awareness, often first-mover advantage in the cloud

CONFIDENTIAL PUBLIC

ORACLE LINUXTECHNOLOGY & OFFERING

● Oracle Linux is built from Red Hat Enterprise Linux source code we publish● Releases of new versions & patches come within hours of Red Hat● Ships with 2 kernels--ours (RHCK) & theirs (UEK)● Oracle Linux support plan offers support for Red Hat Enterprise Linux● Premium Oracle Linux support comes with Ksplice, Spacewalk, & OpenStack● Priced by the server● No extended update support (EUS) ● Has a version of extended life cycle support (ELS) ● 50% to 90% less than Red Hat Enterprise Linux

CONFIDENTIAL PUBLICORACLE’S RHEL TAKEOVER TACTICSCONVERT/MIGRATE EXISTING RHEL SYSTEMS TO ORACLE LINUX SYSTEMS WITH NO

REINSTALLATION

1. Customer downloads ‘up2date’ script from Oracle2. Customer runs the script which:

a. Removes some RHEL packages b. Removes all Red Hat trademarksc. Adds Oracle Linux packages

3. Reboot 4. System now identifies as Oracle Linux while 60% of the

remaining binaries are the original RHEL install

CONFIDENTIAL PUBLIC

A “MIGRATION” TO ORACLE LINUXTOTAL RHEL SUBSCRIPTIONS REQUIRED = 6

No RHEL subscription

requiredSubscriptions are required for all RHEL installs,

as well as systems that have partial installs

RHEL systems that have been “converted” to OL but still contain RHEL binaries

still require paid subscriptionsIF there are other active RHEL subs

Clean installs of Oracle Linux

Active RHEL subscriptions

OL

OL

OL

OL

OL

OL

CONFIDENTIAL PUBLIC

CONVERT TO RHELCONVERTING SYSTEMS FROM ORACLE LINUX AND CENTOS TO RED HAT

ENTERPRISE LINUX

ORACLE LINUX

convert2rhel

CENTOS RHEL RHEL

CONFIDENTIAL PUBLICCONVERT TO RHEL JOURNEY

DISCOVERY SESSION1-2 days

CONVERSION PILOT1-8 weeks

MIGRATION AT SCALEOngoing

OUTCOMES

CUSTOMER PARTICIPANTS

RED HAT PARTICIPANTS

• High-level architecture• High-level migration approach

• Budget sponsor• OS lead• Application owners• Change managers

• Architect• Migration consultant• Services manager

OUTCOMES



• Migration approach defined& tested• Customer-led migration validated

• OS lead• Migration team

• Architect• Migration consultant• Services manager

OUTCOMES



• Conversion factory operational & working at scale

• Ongoing support & maintenance by customer’s operations team

• Red Hat Customer Experience & Engagement - customer support as needed

CONFIDENTIAL PUBLIC

CentOSCUSTOMER MOTIVATIONS

● CentOS viewed as free RHEL ● RHEL seen as too hard to consume, manage, & track● CentOS is “good enough”● No requirements for certifications

CONFIDENTIAL PUBLIC

CentOS LINUXTECHNOLOGY & OFFERING

● CentOS Linux is built from RHEL source code we publish● Releases of new versions & patches come within hours of Red Hat

release● Forum support for free● Paid support available via Rogue Wave● No EUS, ELS, kpatch, or certifications

CONFIDENTIAL PUBLIC

● SUSE Linux is the #2 paid Linux for on-prem & private cloud● New private owner later this year● Minor releases can rebase kernels ● Generating $300M annually ● SLES-ES support plan offers support for RHEL (No EUS)● Competitively priced ● Live (kernel) patching service available as an add-on

SUSE ENTERPRISE LINUX SERVER (SLES)TECHNOLOGY & OFFERING

CONFIDENTIAL PUBLIC

● Convince SAP customers that SUSE has a stronger partnership with SAP than Red Hat

● Present SUSE Live Patching Service as a better kernel patching solution than kpatch (because it is)

● Promote their own emerging tech including Cloud Foundry ● Offer RHEL customers lower price for support of their RHEL

environments

SUSE ENTERPRISE LINUX SERVER (SLES)MOTIVATIONS & TACTICS

CONFIDENTIAL PUBLIC

● SAP: The World’s Largest Provider of Enterprise Application Software (over $28B in Revenue for 2018)*

● Anecdotal evidence indicates that a substantial portion of it’s over $300M in annual revenue comes from fees as a premier platform for SAP applications.

● SAP, after years of keeping Red Hat at arm’s length is now actively partnering with us - Oracle is a mutual enemy

● Red Hat’s “RHEL for SAP Solution” SKU is an effective tool for SUSE takeout ● The number 1 application we are in contention for is HANA● SUSE knows we are coming for the SAP business and is swinging back

SUSE & THE SAP CONNECTIONYOUR MOTIVATIONS & TACTICS

CONFIDENTIAL PUBLIC

● Amazon Linux is free

● Red Hat Enterprise Linux is seen as expensive & too hard to

consume, manage, & track

● Amazon Linux is “good enough”

● No requirements for certifications

AMAZON LINUXCUSTOMER MOTIVATIONS



Overview


CONFIDENTIAL PUBLIC

28

RED HAT ENTERPRISE LINUX 8

To deliver business advantages today,

organizations are shifting IT from

traditional infrastructure operations

and are focusing on service delivery.


CONFIDENTIAL PUBLIC

29


Build your future on a stable, high-performing

platform that can scale to meet the needs of

your organization today and tomorrow.


CONFIDENTIAL PUBLICRED HAT ENTERPRISE LINUX 8

30

At a glance

KERNEL VERSION 4.18+

SYSTEM COMPILER GCC 8.2, LLVM 6.0

HARDWARE ARCHITECTURES

Intel/AMD 64-bit, IBM Power LE, IBM z Systems, ARM 64-bit

DEFAULT FILE SYSTEM XFS

PACKAGE MANAGEMENT Yum v4

TIME SYNCHRONIZATION Chrony

NETWORKING NetworkManager

CONFIDENTIAL PUBLIC

Predictable updates


31

6 monthsMinor updates

3 yearsMajor releases

2 phasesSupport life cycle

CONFIDENTIAL PUBLIC

Application streams


32

PostgreSQL 9.6 stream

Red Hat® Enterprise Linux® 8

PostgreSQL 10 stream

PostgreSQL 12 stream

Time of support


More choiceOffers versions of the open source tools and frameworks developers need

Newer versionsProvides access to newer versions as they stabilize

Simpler accessMaintains standard locations for tools and libraries

CONFIDENTIAL PUBLIC

Simplified access to software


33

Red Hat Enterprise Linux 7 repositories

server

optionalsupplementaryextras rhscl dotnet devtools

Red Hat Enterprise Linux 8 repositories

baseos

appstream supplementary codeready-builder

CONFIDENTIAL PUBLIC

The newest yum package manager: version 4

34

New technologyMaintains the same experience while adding new tools

Better dependency managementOffers faster resolution and easier minimization of what's installed

Stable APIProvides new application programming interface (API) for extending yum that will progress into the future


Repository

rpm

rpm

rpm

rpm

rpm

rpm

metadata

rpm rpmrpm

system

yum

CONFIDENTIAL PUBLIC

Create images for all your environments with image builder

35

Single sourceLets you create gold images for any environment from the same blueprint increasing stability and consistency

Any footprintSupports public cloud, private cloud, enterprise hypervisors, and bare metal

Simple interfaceProvides web-based view within the web console for selecting packages and creating blueprints

Blueprint

Bare metal

Hypervisors

Public clouds

Private clouds


CONFIDENTIAL PUBLIC

Speed automation creation with system roles

36

Common automationManage multiple versions of Red Hat Enterprise Linux from a single role

Reduced reworkImport provided roles to eliminate task creation in playbooks

Easy switching of providersChange between default and optional tools quickly and safely

timesync


dbserver

SELinux

network

webserver

CONFIDENTIAL PUBLIC

Optimized experiences for mission-critical databases

37

● Red Hat Enterprise Linux is the reference platform for SQL Server on Linux

● Benchmark-breaking performance

● Fast deployment and portability via containers

● Red Hat Enterprise Linux is 1 of only 2 certified Linux distributions

● More than 20 years of Red Hat and SAP joint engineering collaboration

● Exceptional performance and scalability —the largest SAP install in the world runs on Red Hat Enterprise Linux


CONFIDENTIAL PUBLIC

Hardware partner ecosystem

38

OEMSSILICON IHVS


CONFIDENTIAL PUBLIC

Red Hat Certified Cloud and Service Providers

39


CONFIDENTIAL PUBLIC

Containers are Linux

40

Namespaces

CPU Memory Storage Network

Cgroups

Seccomp

SELinuxRu

n

Build

CONTAINERSApplication dependencies

Application binaries


CONFIDENTIAL PUBLIC

Powering the adoption of containerized workloads

41

Red Hat Enterprise Linux(Podman/Buildah/Skopeo)

TRADITIONAL DEVELOPMENT

Find Run Build Share

CLOUD-NATIVE

Integrate Deploy

Quay Red Hat OpenShift®

(Kubernetes)


CONFIDENTIAL PUBLIC

Manage containers with Podman

42

Fast and lightweightNo daemons required

Advanced namespace isolationRootless operations for container run and build

Open standards compliantCreates and maintains any standard Open Containers Initiative (OCI) -compliant containers and pods

Podman

RunC

Kernel

Images


CONFIDENTIAL PUBLIC

Create images with Buildah

43

More controlScriptable tooling for fine-grained image control, and maximum control starting from base or scratch images

Minimization of imagesElimination of unneeded dependencies by using host-based tools

From base, multilayer From scratch, single layer


Java runtime and dependencies, and

application

OS update layer

Java™ runtime layer

Application layer

Base Red Hat Enterprise Linux

CONFIDENTIAL PUBLIC

Inspect and transport images with Skopeo

44

Inspect images remotelyExamine image metadata without needing to download

Publish and transfer imagesCopy images from registries to hosts or directly between registries

Sign and verify imagesSupports GPG key signing on publish

Image registry Image registry

Image repositoryMetadata signature

Host

SKOPEO


CONFIDENTIAL PUBLIC

Configuring systemwide cryptographic policies

45

Central configurationSet acceptable algorithms from a single tool

Improved consistencyCovers multiple cryptographic providers and consumers like TLS, kerberos, and Java

Built-in policiesIncluding legacy systems requiring 64-bit security and FIPS allowed or approved algorithms


Default

LegacyClient

Future

Encryption algorithm OpenSSL

httpdSecured

communications

CONFIDENTIAL PUBLIC

Recording user terminal sessions

46


Audit activitiesCreate a record of actions taken for review against security policies

Create visual guidesBuild run books and training materials with demonstrations

Record and play backLogged via standard channels with multiple playback options

CONFIDENTIAL PUBLIC

A highly secure platform

47

Latest protocol supportIncluding TLS 1.3 via OpenSSL 1.1.1

Hardened codeIncluding PIE and RELRO binaries and code analysis in our pipelines

Integrated identity managementAs a stand-alone provider or trusted member of an Active Directory, with expanded integrations to tools like the web console

Updated toolsIncluding the LUKS v2 on-disk format for encryption


Security policy, process, and procedures

DESIGN BUILD

RUN

MANAGE

ADAPT

CONFIDENTIAL PUBLIC

Remote single-system views in the web console

48

Browser-based interfaceOffers remotely accessible user interface using host security mechanisms

Consolidated viewProvides single view of tasks to speed understanding and completion

Standard management toolsUses system tools to change state, not a separate workflow


CONFIDENTIAL PUBLIC

In-place upgrades for your systems

49

Reduced migrationsAnalyze systems to determine if upgrading in place can avoid a costly migration

Easy rollback optionsCombine with bootable LVM snapshots for safety

Improved frameworkGet better analysis and a simplified process with a more extensible framework


Upgrade framework

Applications

7 8

CONFIDENTIAL PUBLIC

RUN LEAPP

CREATE BOOTABLE LVM SNAPSHOT

Can I upgrade this host?

50


PICK CANDIDATE

SERVER

ANALYZE CHECK OUTPUT

REBOOT TO FINISH UPGRADE

UPGRADECOMPLETE


Red Hat Insight & cloud.redhat.com

CONFIDENTIAL PUBLIC

Detect and fix issues with Red Hat Insights

52

Proactive adviceIdentification of issues before they become problems

Continuous assessmentReal-world results to help find new risks

Simpler remediationsTailored results at the host level


CONFIDENTIAL PUBLIC

Gain operating intelligence

53

Analyze Identify Prioritize Resolve



BREAK


linkedin.com/company/red-hat

youtube.com/user/RedHatVideos

facebook.com/redhatinc

twitter.com/RedHat

Red Hat is the world’s leading provider of

enterprise open source software solutions.

Award-winning support, training, and consulting

services make

Red Hat a trusted adviser to the Fortune 500.

Thank you

55

CONFIDENTIAL Designator - Red Hatpeople.redhat.com/abach/RHEL8/Red Hat Enterprise... ·...

Documents

Transcript of CONFIDENTIAL Designator - Red Hatpeople.redhat.com/abach/RHEL8/Red Hat Enterprise... ·...