Rethinking Infrastructure Architecture: Service Oriented Infrastructure Kevin Sangwell...
-
Upload
marina-baile -
Category
Documents
-
view
225 -
download
4
Transcript of Rethinking Infrastructure Architecture: Service Oriented Infrastructure Kevin Sangwell...
Rethinking Rethinking Infrastructure Infrastructure Architecture: Service Architecture: Service Oriented InfrastructureOriented InfrastructureKevin SangwellKevin SangwellInfrastructure ArchitectInfrastructure Architect
Microsoft EMEA HQMicrosoft EMEA HQ
The Organic InfrastructureThe Organic Infrastructure
CRM
ERP
Financial
Portal
Document Mgmt
5 Separate Web Farms5 Separate Web Farms
5 Separate SQL Environments5 Separate SQL Environments
5 Separate Identity Stores5 Separate Identity Stores
The Organic InfrastructureThe Organic Infrastructure
CRM
ERP
Financial
Portal
Document Mgmt
IT PainIT PainSeparate Identity StoresSeparate Identity Stores
Separate and inconsistent SecuritySeparate and inconsistent Security
Separate Config and DeploymentSeparate Config and Deployment
Separate Resilience/Load BalancingSeparate Resilience/Load Balancing
Separate Monitoring and ManagementSeparate Monitoring and Management
The Organic InfrastructureThe Organic Infrastructure
CRM
ERP
Financial
Portal
Document Mgmt
Poor user experiencePoor user experienceConfusing array of usernames & Confusing array of usernames & passwordspasswords
Infrastructure gaps obvious to usersInfrastructure gaps obvious to users
My information is different across My information is different across systemssystems
It takes weeks for me to get access to It takes weeks for me to get access to everything I needeverything I need
Stuff is slowStuff is slow
Consolidation is the answer, Consolidation is the answer, right?right?
Reduces number of stove pipes, but Reduces number of stove pipes, but doesn’t solve themdoesn’t solve them
Next application/project adds another Next application/project adds another stovepipestovepipe
I think of this as “backwards I think of this as “backwards consolidation”consolidation”
Doesn’t change thinkingDoesn’t change thinking
SOI: What it looks likeSOI: What it looks like
IdentityManagement
Management& Monitoring
Database
File
Collaboration
Web Hosting
Services
DeploymentDeployment
SecuritySecurity
Backup & RecoveryBackup & Recovery
PKIPKI
DRDR
MiddlewareMiddleware
Remote AccessRemote Access
and more..and more..
LDAPAuthnAuthzAudit
ProvisioningDe-Provisioning
FederationSelf Service
…
SOI: What it looks likeSOI: What it looks like
IdentityManagement
Management& Monitoring
Database
File
Collaboration
Web Hosting
Services
Subscribers
CRM
Publishers
Portal
Getting ThereGetting There
Define & Prioritise ServicesDefine & Prioritise Services
Define EnterpriseDefine Enterprise Consumer ExperienceConsumer Experience
Plan Forward & Backward ConsolidationPlan Forward & Backward Consolidation
Transition to Service ManagementTransition to Service Management
Define & prioritise services according Define & prioritise services according to ROIto ROI
Put low hanging fruit at the topPut low hanging fruit at the top
The difference between centralised The difference between centralised and service-oriented is “shared and service-oriented is “shared service”service”
Define & Prioritise ServicesDefine & Prioritise Services
Good candidatesGood candidatesIdentity Management / DirectoryIdentity Management / Directory
Web HostingWeb Hosting
DatabaseDatabase
File storeFile store
Define & Prioritise ServicesDefine & Prioritise Services
If IT infrastructure is obvious to the If IT infrastructure is obvious to the business = poor perception of ITbusiness = poor perception of ITIT Infrastructure is not designed IT Infrastructure is not designed around usersaround usersSeek to improve Seek to improve Enterprise Enterprise user user experienceexperience
Unified view (network drive, published Unified view (network drive, published printers)printers)Single sign-onSingle sign-onLocation independence/roamingLocation independence/roaming
User Subscriber experienceUser Subscriber experience
Define EnterpriseDefine Enterprise Consumer ExperienceConsumer Experience
Forward consolidation for each Forward consolidation for each serviceservice
Attach to ProjectsAttach to Projects
Major pain/cost areas such as IDMMajor pain/cost areas such as IDM
Plan Forward ConsolidationPlan Forward Consolidation
Project 1
Web HostingRequirements
New Web Farmas a service
Project 2
Additional HostingRequirements
Increase capacity
Forward consolidation Forward consolidation
The future is difficult to predict - what i/o, The future is difficult to predict - what i/o, RAM, CPU will my future application need RAM, CPU will my future application need … so… so
Abstract & StandardiseAbstract & StandardiseCategorise subscribers as High, Medium or LowCategorise subscribers as High, Medium or Low
Capacity (storage & bandwidth)Capacity (storage & bandwidth)
Load (concurrency / transactions)Load (concurrency / transactions)
Performance (responsiveness / user expectations)Performance (responsiveness / user expectations)
AvailabilityAvailability
Implement Standard platform Implement Standard platform (hardware/software) for each of above(hardware/software) for each of above
When you’re defining services in the When you’re defining services in the application architecture domain (SOA) you application architecture domain (SOA) you should be doing this already.should be doing this already.
Backward consolidationBackward consolidationLow hanging fruitLow hanging fruit
ChallengesChallengesQOS: many services don’t support QOSQOS: many services don’t support QOS
Plan Backward ConsolidationPlan Backward Consolidation
File, PrintFile, Print MessagingMessaging DatabasesDatabases
Easy Hard
Technology enabledProcess enabled
Assign Service Manager for each Assign Service Manager for each serviceservice
Owns relationship with other servicesOwns relationship with other servicesSubscribersSubscribers
PublisherPublisher
Service DeliveryService Delivery Service Level Management Service Level Management
Capacity Management Capacity Management
Availability Management Availability Management
IT Continuity Management IT Continuity Management
Financial Management Financial Management
Service SupportService Support
Transition to Service ManagementTransition to Service Management
BlockersBlockers
TechnologyTechnology
SecuritySecurity
Regulatory & complianceRegulatory & complianceAim to centralise these instead of Aim to centralise these instead of service-orient themservice-orient them
SOI Enablers/facilitatorsSOI Enablers/facilitators
Virtualisation is your friend, and your Virtualisation is your friend, and your enemyenemy
But doesn’t solve all problems: remember But doesn’t solve all problems: remember virtual hosts still need managing & are lower virtual hosts still need managing & are lower performanceperformance
ClusteringClusteringCost of resilience reduces with addition of Cost of resilience reduces with addition of servicesservices
SANSANFlexibility; capacity, replication, backupFlexibility; capacity, replication, backup
Evaluate on a case-by-caseEvaluate on a case-by-caseSlower than DASSlower than DAS
Some applications don’t support SAN Some applications don’t support SAN replication/backupreplication/backup
Example: Identity Management Example: Identity Management ServiceService
Define Service:Define Service:Single directory of users for Single directory of users for authentication and access controlauthentication and access control
User Experience User Experience Transparency (SSO, location Transparency (SSO, location independence, discoverability)independence, discoverability)
Subscriber Experience (Capabilities)Subscriber Experience (Capabilities)LDAP Directory (e.g. AD)LDAP Directory (e.g. AD)Authentication (LDAP Bind, NTLM, Authentication (LDAP Bind, NTLM, Kerberos)Kerberos)Authorisation (Group membership)Authorisation (Group membership)Auditing (directory access)Auditing (directory access)
Example: Identity and Access Example: Identity and Access ManagementManagement
Design Logical ServiceDesign Logical ServiceCapacityCapacity
PerformancePerformance
ScalabilityScalability
Backup & DRBackup & DR
SecuritySecurity
Extensibility for subscribersExtensibility for subscribers
Design Physical ServiceDesign Physical ServiceServer sizesServer sizes
Server locationsServer locations
ExtensibilityExtensibility
Remember “blockers”?Remember “blockers”?Technology (Schema)Technology (Schema)
Regulatory (Forest)Regulatory (Forest)
Security (Account Policies)Security (Account Policies)
Example: Identity and Access Example: Identity and Access ManagementManagement
Service EvolutionService EvolutionMove to Identity Management ServiceMove to Identity Management Service
Provisioning/de-Provisioning triggered Provisioning/de-Provisioning triggered from HR databasefrom HR database
FederationFederation
User Self ServiceUser Self Service
All subscribers benefit from these All subscribers benefit from these capabilitiescapabilities
Does SOI really have an ROIDoes SOI really have an ROI
Basic
RationalizedVirtualized
Service-Based
Standardized InfrastructurInfrastructure resources e resources
pooledpooled
Services Services managed managed holisticallyholistically
Uncoordinated Uncoordinated infrastructureinfrastructure
Standard Standard resources, resources,
configurationsconfigurations
ConsolidatConsolidate to fewere to fewer
Policy/Value-Based
Dynamic Dynamic optimizatiooptimization to meet n to meet
SLAsSLAs
Objective
Ability to Change
Pricing Scheme
Business Interface
Resource Utilization
Organization
IT Management
Processes
Reduce complexity
Economies of scale
Flexibility, reduce costs
Service-level deliveryReact
WeeksWeeks to days
Weeks to minutes MinutesMonths to
weeks
Fixed costsReduced, fixed costs
Fixed shared costs
Variable usage costsNone, ad hoc
Business agility
Minutes to seconds
Variable business costs
Class-of-service SLAs
Class-of-service SLAs Flexible SLAs End-to-end
SLAsNo SLAs
Known Rationalized Shared pools Service-based poolsUnknown
Central control Consolidated Pooled ownership
Service-orientedNone
Business SLAs
Policy-based sharingBusiness-oriented
Reactive -ProactiveLife cycle management
ProactiveMature problem mgmt
ProactivePrediction, dynamic capacity
ServiceEnd-to-end service management
Chaotic – ReactiveAd hoc
ValuePolicy management
SMDS
Architecture Design Architecture Design ReviewReview
1 Day engagement1 Day engagement
Follow-up reportFollow-up report
Limited numberLimited number
Question & Answer PanelQuestion & Answer Panel
© 2006 Microsoft Corporation. All rights reserved.This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.