Agenda• About SUNY and ITEC Cloud project
• Challenges and Use cases for ITEC Cloud
• EM Solution
• Business Benefits
About SUNYPower of SUNY• Nations Largest State University System
• 64 Geographically Dispersed Campuses
• Four Categories:
Fast Facts• Number of Campuses: 64
• Number of Students: 462,698
• Number of Employees: 90,254
• Four Categories:
• University Centers, University Colleges
• Technology Colleges, Community
Colleges
About ITECInformation Technology Exchange Center• Grew out of the "17 Campus Computer Procurement" of the mid-80’s
– Collective bargaining with DIGITAL Equipment Corporation for hardware – Collective bargaining with DIGITAL Equipment Corporation for hardware
and software purchases
• Single point of contact for campus, single point of contact for the vendor
– Provided Tier 1 & 2 helpdesk
• Several University-wide contracts including Oracle
• Self funded and self sufficient, budget comes from the services we
provide to SUNY
HelpdeskHelpdeskManaged
Services
Managed
Services
Hosting
Provider
Hosting
Provider
ITEC TodaySUNY’s Private Cloud• Manage 32 Student Information Systems (17 hosted)
• Host SUNY’s Library Information System for 56 campuses
• Host SUNY’s Learning Management System for 32 campuses• Host SUNY’s Learning Management System for 32 campuses
• Host E-mail and other applications
History of ITEC’s Cloud Service
Managed Hosting
• Ad hoc managed servers
• 2 week provisioning
• 12+ years of experience
• 1 free server part of ITEC base services
Server as a Service
• 1 free server part of ITEC base services
• 1 week provisioning
• 2+ years of experience
Cloud Services
• Infrastructure as a Service (IaaS)
• Self-service
• Announced at SUNY Conference in June 2013
Cloud before Cloud was cool
Requirements for Self-Service• Stable, predictable & self-sufficient
• Dynamic, self-service, private cloud environment that
matches the major cloud providers on ease of use and matches the major cloud providers on ease of use and
functionality
• Chargeback/Showback with Metering
• Integrate into existing technology stack, where possible
• Deliver in a compressed timeline due to other SUNY
commitments
Workload Requirements in the Cloud• Basic Linux OS
– DNS and Website backup, network analysis tools
• Basic Windows OS
– AD and Fileserver Backup
• Oracle RDBMS
• Oracle Weblogic
• LAMP stack
• OpenSource LMS/CMS – Moodle, Drupal, Wordpress, Joomla
• Flexibility for custom templates based on feedback
Evaluation of Options• Dell Active System Manager
• HP CloudSystem Matrix• HP CloudSystem Matrix
• OpenStack
• Oracle Enterprise Manager 12c
ITEC’s Implementation• Oracle EM12c Cloud Management Pack
• Oracle VM Hypervisor
• Oracle Virtual Assembly Builder• Oracle Virtual Assembly Builder
• ITEC’s Cloud Services Stack– Dell m1000e
– Dell m620 (E5-26809 2.70GHz, 256GB)
– Dell EqualLogic PS6110XS
What’s Available Today• SUNY Cloud Self Service Portal
• Core Service– Multiple VM Assemblies
– Self-service for:– Self-service for:• Virtual Machines
• Memory
• vCPU
• Disk
– External IPs
– Bandwidth
Virtual Assemblies• Oracle Virtual Assembly Builder
– Create a “template” – simple assembly, single VM appliance
– Create an assembly – multi-tier application topologies
• Initial Assemblies• Initial Assemblies– Basic OS (Windows Template, Linux)
– Oracle Provided Assemblies (RDBMS, Linux)
– ITEC-validated Base OS
– ClearOS Firewall
• Future Assemblies– Full Ellucian Banner Stack – Weblogic, Business Logic and RDBMS tiers
– Load Balanced Web Application Stack – LVS, Tomcat/Apache, MySQL/Oracle
User Portal• Chargeback
– Monthly Charges based on usage of vCPU, Memory and Disk
• Role Based Quota– Each user receives a quota
– Allows us to give “no worse than” pricing
– No surprises for campus CIO
• Access Control– Private VLAN
– Virtual Machine isolation
• Cloud Governance– Private cloud infrastructure
– No renegotiating terms of service
– User driven features
Core Service Features• Advanced Virtual Machine Cloning
• VM High Availability (HA)
• Network IDS/IPS via Dell SecureWorks• Network IDS/IPS via Dell SecureWorks
• Dedicated VLAN structure
• SUNYNet VPN (upon request)
• Base Membership Support (4-hour response, business hours)
“SUNY-goodness”
Enhancing Service• Optional
– File-level Backups
– Managed Network Firewall– Managed Network Firewall
– Cloud Managed Services
• Operating System Patches (ITEC validated or auto)
• System and Application Monitoring and Alerting
• Enhanced Support Level (1-hour, 24x7 for Sev-1)
Future Enhancing Services• Storage-based snapshots
• Disaster Recovery Zone
• Custom Templates & Assemblies• Custom Templates & Assemblies– Scale up/down based on need
– Banner and Load Balanced Web Topologies
• Managed Load Balancing
• Security Vulnerability Scans
Challenges• Compressed timeline
• Network security vs. ease of use
• Windows VMs
– Licensing
– Network customization
• “Multi-tenant-ness” of Cloud Management Pack
Use CasesInternet
Campus A Campus
IP 1 IP 2 IP 3 IP 4Campus x
Internet Accessible VLAN n
Web Server Farm
Business Logic Server 1
Campus A Private VLAN 1 (for PROD)
Campus AInternet Accessible VLAN 1
Campus AInternet Accessible VLAN 2
Load Balancers
Oracle RAC
Campus
ManagedFirewall
DEV Web ServerBusiness Logic
ServerCampus A Private VLAN 2 (for DEV)
Additional InternetAccessible IP's
Database Server
PHASE II
Campus x Private VLAN x
Detailed Assembly
Futures• Beta for 6 months
– Expand availability and capacity
– Market to instructors, not just SUNY IT
• Software Defined Networking• Software Defined Networking
• More “as a Service”
– Database as a Service (DaaS)
– Middleware as a Service (MaaS)
– Test as a Service (TaaS)
• Dynamic Chargeback based on cluster use
– Lower the price as more people use it
• Shared Group Quotas
Drinking Our Own Champagne• Use EM Self-Service Internally
– Systems uses to deploy VMs and Assemblies
• Educating Service Desk• Educating Service Desk
– Deploy managed VMs
• Plan to empower DBAs and Apps Teams
– Deploy test and development VMs
Benefits to SUNY• Private Cloud Infrastructure
– Security
– Local to other University-wide services
– Governed by NYS Laws and Contract Agreements– Governed by NYS Laws and Contract Agreements
• Leverages existing knowledge, infrastructure and licenses
• Empower Users– Immediate access to resources
– Deploy VMs faster than ITEC or their campus IT
• NYSERDA Grants for Consolidation– Campuses that shift workloads to ITEC receive benefits
Top Related