Become a Microsoft Azure Stack infrastructure rockstar
BRK3115 Becoming a Microsoft Azure Stack infrastructure rock star Charlie Satterfield Thomas Roettinger Senior Program Managers Agenda A Journey to infrastructure Rock Star status Learn the basics Put a few chords together Get ready to jam Where is my next gig? Questions?
A Journey to infrastructure Rock Star Start the Journey ? The Toolbox of Administrators Today Todays Infrastructure and cloud service mgmt. Many silos of technology responsibility Multiple points of infrastructure management UI & API Deep knowledge required in each silo to operate Not easily managed by a single administrator Tenant Portals
Service 1 Service 2 Monitoring Backup Patching Identity Mgmt Database Mgmt Security Compute Storage Networking
Cloud Administration vision for Azure Stack Cloud Administration vision for Azure Stack Cloud Admins operate and troubleshoot across all infra Single access point of infrastructure management UI & API Fewer knobs to turn, deep silo knowledge not required to operate Can be administered by a single Cloud Administrator Value to the business is Service Learn the basics First Stop on the Journey Single Box Evaluation
Whats in the box? How do I control it? How do I monitor and view health? Azure Stack Architecture Overview Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP Infrastructu re Deploymen Bootstrap t
Patch & Update SRP NRP CRP HRP URP INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER
COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE R Scale Out FRU Workflows RESET START INFRASTRUCTURE ROLES
re Deploymen Bootstrap t Patch & Update PHYSICAL NODE MANAGEMEN T Workflows RESET START STOP NRP CRP HRP
URP INFRASTRUCTURE CONTROL LAYER Scale Out FRU SRP Builds STORAGE CONTROLLER COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE
CONTROLLE R HEALTH CONTROLLE R NETWORK COMPUTE HEALTH INFRA ROLE ACS CONTROLLE CONTROLLE CONTROLLE CONTROLLE ARM R R R R INFRA MGMT PARTITION STORAGE EDGE CONTROLLE CONTROLLE REQ
GATEWAY R BROKER R PHYSICAL INTERNAL LB MUX NODE MGMT DATA STORE INFRA DEPLOYMEN T INFRASTRUCTURE ROLES UPDATE DIRECTORY MGMT MGMT ADFS CERTIFICATE MGMT HARDWARE LAYER NETWORK (SWITCHES)
COMPUTE STORAGE Azure Stack Architecture Overview Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP Infrastructu re Deploymen Bootstrap t Patch & Update
SRP NRP CRP HRP URP INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER COMPUTE CONTROLLER
NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE R Scale Out FRU Workflows RESET START INFRASTRUCTURE ROLES Builds
STOP HARDWARE LAYER NETWORK (SWITCHES) COMPUTE STORAGE Infrastructure Resource Providers Overview FRP HRP URP Enable communication with the underlying infrastructure Roles & Hardware Layer Micro Services running in the Infrastructure Service Ring Can only be called with the Admin Subscription Each RP provides a north bound API REST API Consumed by UX Portal, PowerShell, Visual Studio and other Tools Each RP uses south bound API to communicate with Controllers HRP & URP provide registration interface for ARM deployable RPs
FRP Call Flow Example Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP SRP NRP CRP HRP URP
INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE
R OS LAYER Windows Server HARDWARE LAYER NETWORK (SWITCHES) COMPUTE STORAGE Physical Node Management Interacts with Physical Servers Using PcsvDevice IPMI implementation Authenticates using BMC Account or LDAP (Recommended for Larger Scale) Securely Stores BMC Credentials PNM
Power On Power Off Power Cycle Hardware Base Board Management Controller Clear Log Get Log Set Boot Device Discovery Infrastructure Role Controller Interacts with Infrastructure Roles (Lifecycle Management) Windows Auth to interact with Hosting Platform (SF, FC, WS, IIS) Protocol based on Hosting Platform as well
IRC Role Actions (Restart, Start, Stop) Scale Out / IN Patch & Upgrade Infrastructure Roles / Role Instances Computer Controller Interacts with Scale Unit & Hyper-V to manage Virtual Machines Using PS Implementation Authenticates using JEA CC VM Placement VM Actions
VM Configuration Manage Scale Unit Lifecycle Scale Units / Hyper-V Storage Controller Interacts with Storage Subsystem Using PS Implementation Authenticates using JEA SC Pools Volumes Shares SOFS / S2D Out of Band Health Monitoring Agent less using external monitoring entity such as System Center Operations Manager
Hardware Management Diagram Portal/UX Infrastructure Role ARM FRP NRP Radiu s DS Physical Node Manager Infra
Deployment Network Controller Power On Power Off Recycle Power Change Boot Order - Clear / Get SEL logs Can use external Radius LDAP or Radius
Health BMC (IPMI) *dedicated NIC Hardware Radiu s LDAP/ Radius Networ k Switch Monitoring Azure Stack Monitoring Problem Space Complexity of understanding health Clouds depend on many different technologies Health of the cloud is not the sum of its parts
How do alerts relate to health? Tax of alert deciphering Which alerts do I need to take action on? Which alerts should I address first? What are the steps to resolve? Monitoring Core Principles Health should be simple to understand Health State in Azure Stack is linked to Alerts No Alerts = Healthy 1 or more Warning Alerts = Warning 1 or more Critical Alerts = Critical No Health State Roll Ups Separate health of cloud services from cloud fabric All alerts should be actionable Alerts reported against well know objects Consistent alert severity Critical Alerts = Administrator action required immediately (Wake up the admin at 3am) Warning Alerts = Administrator action required within days Clear description of the problem and remediation required
Links to online troubleshooting guides for step by step guidance Azure Stack Monitoring / HRP Arch. Overview ARM / Portal Layer Azure Resource Manager (ARM) Registration for Resource Providers Infra Roles Health RP Exposes Health Alerts Metrics, log, & security audit storage locations RP Layer Infrastructure Control Layer OS / Physical Infra layer
Service Fabric Ring Health Service Registratio n Data Alert Service Alert Data Alert service generates Alerts based on ETW Events in RP specific storage accounts Azure Monitoring Agent (MA) collects the following for all Azure Stack SW
components: ETW Events Metrics Logs All data written to RP specific Storage account with specific containers Resource Provider X Storage Account Fault Metric Security Container Container Container Diagnosti c Container Hardware Monitoring Overview Azure Stack alerts can be consumed by external monitoring solutions Windows Server Health
Service Alerts for: Physical Disks Network Adapters Node HRP Rest API External Monitoring Solution Network switches monitored via SNMP Agentless monitoring of hyper-converged hardware using Datacenter BMC. Solution dependent on hardware vendor. network Demo Monitor Azure Stack
Charlie Satterfield Put a few chords together Next Stop on the Journey Single Box Evaluation Whats in the box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? API Integration Principles 1. Authenticate with AAD
2. Retrieve a Token for Admin Subscription 3. Call API Namespace with Action Health Resource Provider (HRP) https://Host:30005/subscrip tions/9d334843-0c6e-4bfcb82c-cf229da3a87b/ resourcegroups/System/ providers/ Microsoft.InfrastructureIns ights.Admin 1 Tool 2 ARM 3 FRP/HRP/URP Health Controll er
AAD FRP API Resources Namespace Resources Location (Region) Infrastructure Roles Logical Networks Storage Subsystem File Shares Role Instances Scale Units Physical Server Actions: Get HRP API Resources Namespace Resources Location (Region) Alert Service Health Registrations Resource Health
Registration Actions: Get Put Delete URP API Resources Namespace Resources Location (Region) Region Update Status Updates Update Runs Actions: Get Put Demo: API Infrastructure Management Thomas Roettinger Azure Stack Integrated
Systems in your Datacenter Typical Datacenter Integration Touchpoints IPv4 IP Space Networ k Identity Syslog NTP Uplink AD / ADFS Syslog Server
Time Server Firewall DNS SSL ITSM Publishing Rules DNS SSL Certificates ITSM Integration IP Network Space
Required as input for Deployment External IP Space, does not need to be continuous IP Space Adding IP Pools is part of Capacity expansion experience Infrastructure = /24 Storage = /26 Switch Management/BMC = /27 External VIPs Integration with Border Switch L3, Point-to- Point IP Subnet Size /31 Described in RFC 3021 Routing Protocol BGP or Static Routing External, Infrastructure Azure Stack internal only Storage
Allow for Active Directory Integration One Way Forest Trust Enable Corporate AD Admin accounts to authenticate in Azure Stack Troubleshooting Device Authentication Grant Permission Add Users from existing Forest to grant permissions in Azure Stack Pre-Defined Groups 1 Forest 1 Root Domain 1 AD Site per Region Minimum 2 DCs per Site Portal Authentication Using Azure Active Directory AAD Portal +
Extensions AAD Graph ARM AAD RPs Azure Stack Inbox MSODS Portal Authentication - Disconnected Using Identities from existing Corporate AD Portal + Extensions AD Graph ARM
AD FS Customer STS RPs Azure Stack Inbox Director y Service Custom er AD Get ready to jam Next Stop on the Journey Single Box Evaluation Whats in the
box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? Production Operation End to end Operations Monitoring Integration Enable ITSM by adopting existing pipes Monitor with existing Datacenter monitoring Tooling Use existing connections from Monitoring to Ticketing and others Azure Stack Software*
Integrated System Physical Server Network Devices *including Storage Rest API BMC Monitoring Solution Ticketing, CMDB SNMP Demo: Monitoring Integration Charlie Satterfield
Thomas Roettinger Monitoring Integration Solutions Azure Stack Software API Nagios Plugin (for Open Source & Enterprise Edition) (Available today http://aka.ms/masnagios) API Examples & Documentation for custom integration (Soon available on GitHub) System Center Operations Manager Management Pack* Physical Server - BMC System Center Operations Manager Hardware Vendor Management Pack Hardware Vendor Nagios Plugins Other OEM supported monitoring solutions Network Devices - SNMP System Center Operations Manager Network Device Discovery Nagios Switch Plugin Other OEM supported monitoring solutions Tenant Subscription Health Monitoring System Center Operations Manager Azure Management Pack Operations Management Suite (OMS) *Post TP2 Just the beginning of the Journey
Reviewed UX Monitoring APIs Datacenter Integration Still to come SW Updating (SW, Drivers, Firmware) Business Continuity / Disaster Recovery Monitoring Content & Tenant Service Health Administrative Actions Field replaceable unit (FRU) strategy
More APIs Where is my next gig? Free IT Pro Resources To advance your career in cloud technology Plan your career path IT Pro Career Center http://www.microsoft.com/itprocareercenter Get started with Azure IT Pro Cloud Essentials https://www.microsoft.com/itprocloudessentials Demos & howto videos Connect with peers and experts
Microsoft Mechanics https://channel9.msdn.com/Mechanics Azure Solutions Get Started with Azure Solutions Today http://azure.com/solutions Azure Monthly Webinar Series Join live or watch on-demand http://aka.ms/AzureMonthlyWebinar Ask questions, get answers, exchange ideas https://techcommunity.microsoft.com Upcoming cloud role training Cloud Administrat or Cloud Architect
DevOps Microsoft Professional Program In-depth knowledge of Microsoft Azure. Responsible for day to day management and implementation of Azure, Azure Stack and other cloud platform services. In-depth online training in 2017 Responsible for planning, design and implementation of onpremises hybrid cloud infrastructure and service integration, such as Azure Stack. In-depth online training in 2017 Responsible for implementation and management of modern application development infrastructure, with Microsoft, Open Source and third party tools and services. In-depth online training in 2017
Data Science available today (details here) Coming for IT Pros in 2017 Start your Journey with Azure Stack TP2 Single Box Evaluation Whats in the box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? Production Operation End to end
Operations Related Content Session Code Title When BRK2204 Drive business transformation with Windows Server 2016 and System Center 2016 Monday 14:15 BRK2154 Explore Microsoft Azure Stack State of the Union Tuesday 09:00 BRK2030
Learn about Azure Stack Agile Service Delivery Tuesday 12:30 BRK2187 Review Microsoft Azure Stack with Jeffrey Snover and Mark Russinovich Tuesday 14:15 BRK2188 Learn about Azure Stack Infrastructure Operations and Wednesday 09:00 Management BRK2260 Explore Microsoft Cloud Platform System - delivering Azure experiences in an integrated system Wednesday 12:30
BRK4019 Dive into Microsoft Azure Stack Architecture Wednesday 14:15 BRK3327 Dive deep in the Microsoft Azure Stack IaaS Thursday 14:15 BRK3115 Become a Microsoft Azure Stack infrastructure rockstar Thursday 16:00 BRK3112 Learn about the community of templates for Azure Stack
Friday 09:00 BRK3141 Discuss Microsoft DevOps on Azure Stack Friday 10:45 Please evaluate this session Your feedback is important to us! From your PC or Tablet visit MyIgnite at http://myignite.microsoft.com From your phone download and use the Ignite Mobile App by scanning the QR code above or visiting https://aka.ms/ignite.mobileapp 2016 Microsoft Corporation. All rights reserved.
We know some misterious mutations, which generate horroristic monsters Homeotic mutations The homeosis Mutation, that causes transformation of an area of the body into another area The mutated genes the so-called Homeobox genes, shortly Hox genes Products of Hox genes...
Aquesta documentació cal entregar-la a la Secretaria del Club entre el 19 d'Agost i el 6 de setembre o es pot enviar al mail. [email protected] Categories Mini, Premini i pre infantil inscripció on line. www.sallebasquet.cat >> INFORMACIÓ >> Inscripcions Temporada...
The Consultative Model (cont'd) Help w/ complicated assessments, phone calls, crises, visit-sharing for high-utilizers. Re-referral is always appropriate. You will get written and/or verbal recommendations for each referral. Consult probably NOT appropriate for: Specific medication questions. 7
So, remember the 3 R's: Reduce, Reuse, and Recycle Reduce, Reuse, and Recycle 1st grade Social Studies What we do affects our entire planet. So, we have to take care of our planet Earth and the land around us. We...
Payless Shoes, R.E.I. Category killer. Type of specialty store that focuses on specific products on a massive scale and dominating retail sales in respective product categories. Office Depot, Toys R Us, Lowe's. Discount store. Store that offers a wide variety...
Ready to download the document? Go ahead and hit continue!