Become a Microsoft Azure Stack infrastructure rockstar

Become a Microsoft Azure Stack infrastructure rockstar

BRK3115 Becoming a Microsoft Azure Stack infrastructure rock star Charlie Satterfield Thomas Roettinger Senior Program Managers Agenda A Journey to infrastructure Rock Star status Learn the basics Put a few chords together Get ready to jam Where is my next gig? Questions?

A Journey to infrastructure Rock Star Start the Journey ? The Toolbox of Administrators Today Todays Infrastructure and cloud service mgmt. Many silos of technology responsibility Multiple points of infrastructure management UI & API Deep knowledge required in each silo to operate Not easily managed by a single administrator Tenant Portals

Service 1 Service 2 Monitoring Backup Patching Identity Mgmt Database Mgmt Security Compute Storage Networking

Cloud Administration vision for Azure Stack Cloud Administration vision for Azure Stack Cloud Admins operate and troubleshoot across all infra Single access point of infrastructure management UI & API Fewer knobs to turn, deep silo knowledge not required to operate Can be administered by a single Cloud Administrator Value to the business is Service Learn the basics First Stop on the Journey Single Box Evaluation

Whats in the box? How do I control it? How do I monitor and view health? Azure Stack Architecture Overview Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP Infrastructu re Deploymen Bootstrap t

Patch & Update SRP NRP CRP HRP URP INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER

COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE R Scale Out FRU Workflows RESET START INFRASTRUCTURE ROLES

Builds STOP HARDWARE LAYER NETWORK (SWITCHES) COMPUTE STORAGE Azure Stack Architecture Overview Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP Infrastructu

re Deploymen Bootstrap t Patch & Update PHYSICAL NODE MANAGEMEN T Workflows RESET START STOP NRP CRP HRP

URP INFRASTRUCTURE CONTROL LAYER Scale Out FRU SRP Builds STORAGE CONTROLLER COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE

CONTROLLE R HEALTH CONTROLLE R NETWORK COMPUTE HEALTH INFRA ROLE ACS CONTROLLE CONTROLLE CONTROLLE CONTROLLE ARM R R R R INFRA MGMT PARTITION STORAGE EDGE CONTROLLE CONTROLLE REQ

GATEWAY R BROKER R PHYSICAL INTERNAL LB MUX NODE MGMT DATA STORE INFRA DEPLOYMEN T INFRASTRUCTURE ROLES UPDATE DIRECTORY MGMT MGMT ADFS CERTIFICATE MGMT HARDWARE LAYER NETWORK (SWITCHES)

COMPUTE STORAGE Azure Stack Architecture Overview Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP Infrastructu re Deploymen Bootstrap t Patch & Update

SRP NRP CRP HRP URP INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER COMPUTE CONTROLLER

NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE R Scale Out FRU Workflows RESET START INFRASTRUCTURE ROLES Builds

STOP HARDWARE LAYER NETWORK (SWITCHES) COMPUTE STORAGE Infrastructure Resource Providers Overview FRP HRP URP Enable communication with the underlying infrastructure Roles & Hardware Layer Micro Services running in the Infrastructure Service Ring Can only be called with the Admin Subscription Each RP provides a north bound API REST API Consumed by UX Portal, PowerShell, Visual Studio and other Tools Each RP uses south bound API to communicate with Controllers HRP & URP provide registration interface for ARM deployable RPs

FRP Call Flow Example Azure Portal (UX) Templates/PowerShell/CLI, SDK, etc ARM LAYER Azure Resource Manager (ARM) RP LAYER PARTITION REQUEST BROKER FRP SRP NRP CRP HRP URP

INFRASTRUCTURE CONTROL LAYER PHYSICAL NODE MANAGEMEN T STORAGE CONTROLLER COMPUTE CONTROLLER NETWORK CONTROLLE R INFRA ROLE CONTROLLE R HEALTH CONTROLLE

R OS LAYER Windows Server HARDWARE LAYER NETWORK (SWITCHES) COMPUTE STORAGE Physical Node Management Interacts with Physical Servers Using PcsvDevice IPMI implementation Authenticates using BMC Account or LDAP (Recommended for Larger Scale) Securely Stores BMC Credentials PNM

Power On Power Off Power Cycle Hardware Base Board Management Controller Clear Log Get Log Set Boot Device Discovery Infrastructure Role Controller Interacts with Infrastructure Roles (Lifecycle Management) Windows Auth to interact with Hosting Platform (SF, FC, WS, IIS) Protocol based on Hosting Platform as well

IRC Role Actions (Restart, Start, Stop) Scale Out / IN Patch & Upgrade Infrastructure Roles / Role Instances Computer Controller Interacts with Scale Unit & Hyper-V to manage Virtual Machines Using PS Implementation Authenticates using JEA CC VM Placement VM Actions

VM Configuration Manage Scale Unit Lifecycle Scale Units / Hyper-V Storage Controller Interacts with Storage Subsystem Using PS Implementation Authenticates using JEA SC Pools Volumes Shares SOFS / S2D Out of Band Health Monitoring Agent less using external monitoring entity such as System Center Operations Manager

Hardware Management Diagram Portal/UX Infrastructure Role ARM FRP NRP Radiu s DS Physical Node Manager Infra

Deployment Network Controller Power On Power Off Recycle Power Change Boot Order - Clear / Get SEL logs Can use external Radius LDAP or Radius

Health BMC (IPMI) *dedicated NIC Hardware Radiu s LDAP/ Radius Networ k Switch Monitoring Azure Stack Monitoring Problem Space Complexity of understanding health Clouds depend on many different technologies Health of the cloud is not the sum of its parts

How do alerts relate to health? Tax of alert deciphering Which alerts do I need to take action on? Which alerts should I address first? What are the steps to resolve? Monitoring Core Principles Health should be simple to understand Health State in Azure Stack is linked to Alerts No Alerts = Healthy 1 or more Warning Alerts = Warning 1 or more Critical Alerts = Critical No Health State Roll Ups Separate health of cloud services from cloud fabric All alerts should be actionable Alerts reported against well know objects Consistent alert severity Critical Alerts = Administrator action required immediately (Wake up the admin at 3am) Warning Alerts = Administrator action required within days Clear description of the problem and remediation required

Links to online troubleshooting guides for step by step guidance Azure Stack Monitoring / HRP Arch. Overview ARM / Portal Layer Azure Resource Manager (ARM) Registration for Resource Providers Infra Roles Health RP Exposes Health Alerts Metrics, log, & security audit storage locations RP Layer Infrastructure Control Layer OS / Physical Infra layer

Service Fabric Ring Health Service Registratio n Data Alert Service Alert Data Alert service generates Alerts based on ETW Events in RP specific storage accounts Azure Monitoring Agent (MA) collects the following for all Azure Stack SW

components: ETW Events Metrics Logs All data written to RP specific Storage account with specific containers Resource Provider X Storage Account Fault Metric Security Container Container Container Diagnosti c Container Hardware Monitoring Overview Azure Stack alerts can be consumed by external monitoring solutions Windows Server Health

Service Alerts for: Physical Disks Network Adapters Node HRP Rest API External Monitoring Solution Network switches monitored via SNMP Agentless monitoring of hyper-converged hardware using Datacenter BMC. Solution dependent on hardware vendor. network Demo Monitor Azure Stack

Charlie Satterfield Put a few chords together Next Stop on the Journey Single Box Evaluation Whats in the box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? API Integration Principles 1. Authenticate with AAD

2. Retrieve a Token for Admin Subscription 3. Call API Namespace with Action Health Resource Provider (HRP) https://Host:30005/subscrip tions/9d334843-0c6e-4bfcb82c-cf229da3a87b/ resourcegroups/System/ providers/ Microsoft.InfrastructureIns ights.Admin 1 Tool 2 ARM 3 FRP/HRP/URP Health Controll er

AAD FRP API Resources Namespace Resources Location (Region) Infrastructure Roles Logical Networks Storage Subsystem File Shares Role Instances Scale Units Physical Server Actions: Get HRP API Resources Namespace Resources Location (Region) Alert Service Health Registrations Resource Health

Registration Actions: Get Put Delete URP API Resources Namespace Resources Location (Region) Region Update Status Updates Update Runs Actions: Get Put Demo: API Infrastructure Management Thomas Roettinger Azure Stack Integrated

Systems in your Datacenter Typical Datacenter Integration Touchpoints IPv4 IP Space Networ k Identity Syslog NTP Uplink AD / ADFS Syslog Server

Time Server Firewall DNS SSL ITSM Publishing Rules DNS SSL Certificates ITSM Integration IP Network Space

Required as input for Deployment External IP Space, does not need to be continuous IP Space Adding IP Pools is part of Capacity expansion experience Infrastructure = /24 Storage = /26 Switch Management/BMC = /27 External VIPs Integration with Border Switch L3, Point-to- Point IP Subnet Size /31 Described in RFC 3021 Routing Protocol BGP or Static Routing External, Infrastructure Azure Stack internal only Storage

Allow for Active Directory Integration One Way Forest Trust Enable Corporate AD Admin accounts to authenticate in Azure Stack Troubleshooting Device Authentication Grant Permission Add Users from existing Forest to grant permissions in Azure Stack Pre-Defined Groups 1 Forest 1 Root Domain 1 AD Site per Region Minimum 2 DCs per Site Portal Authentication Using Azure Active Directory AAD Portal +

Extensions AAD Graph ARM AAD RPs Azure Stack Inbox MSODS Portal Authentication - Disconnected Using Identities from existing Corporate AD Portal + Extensions AD Graph ARM

AD FS Customer STS RPs Azure Stack Inbox Director y Service Custom er AD Get ready to jam Next Stop on the Journey Single Box Evaluation Whats in the

box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? Production Operation End to end Operations Monitoring Integration Enable ITSM by adopting existing pipes Monitor with existing Datacenter monitoring Tooling Use existing connections from Monitoring to Ticketing and others Azure Stack Software*

Integrated System Physical Server Network Devices *including Storage Rest API BMC Monitoring Solution Ticketing, CMDB SNMP Demo: Monitoring Integration Charlie Satterfield

Thomas Roettinger Monitoring Integration Solutions Azure Stack Software API Nagios Plugin (for Open Source & Enterprise Edition) (Available today http://aka.ms/masnagios) API Examples & Documentation for custom integration (Soon available on GitHub) System Center Operations Manager Management Pack* Physical Server - BMC System Center Operations Manager Hardware Vendor Management Pack Hardware Vendor Nagios Plugins Other OEM supported monitoring solutions Network Devices - SNMP System Center Operations Manager Network Device Discovery Nagios Switch Plugin Other OEM supported monitoring solutions Tenant Subscription Health Monitoring System Center Operations Manager Azure Management Pack Operations Management Suite (OMS) *Post TP2 Just the beginning of the Journey

Reviewed UX Monitoring APIs Datacenter Integration Still to come SW Updating (SW, Drivers, Firmware) Business Continuity / Disaster Recovery Monitoring Content & Tenant Service Health Administrative Actions Field replaceable unit (FRU) strategy

More APIs Where is my next gig? Free IT Pro Resources To advance your career in cloud technology Plan your career path IT Pro Career Center http://www.microsoft.com/itprocareercenter Get started with Azure IT Pro Cloud Essentials https://www.microsoft.com/itprocloudessentials Demos & howto videos Connect with peers and experts

Microsoft Mechanics https://channel9.msdn.com/Mechanics Azure Solutions Get Started with Azure Solutions Today http://azure.com/solutions Azure Monthly Webinar Series Join live or watch on-demand http://aka.ms/AzureMonthlyWebinar Ask questions, get answers, exchange ideas https://techcommunity.microsoft.com Upcoming cloud role training Cloud Administrat or Cloud Architect

DevOps Microsoft Professional Program In-depth knowledge of Microsoft Azure. Responsible for day to day management and implementation of Azure, Azure Stack and other cloud platform services. In-depth online training in 2017 Responsible for planning, design and implementation of onpremises hybrid cloud infrastructure and service integration, such as Azure Stack. In-depth online training in 2017 Responsible for implementation and management of modern application development infrastructure, with Microsoft, Open Source and third party tools and services. In-depth online training in 2017

Data Science available today (details here) Coming for IT Pros in 2017 Start your Journey with Azure Stack TP2 Single Box Evaluation Whats in the box? How do I control it? How do I monitor and view health? Automation & Integration What APIs? What points of integration should I consider? Production Operation End to end

Operations Related Content Session Code Title When BRK2204 Drive business transformation with Windows Server 2016 and System Center 2016 Monday 14:15 BRK2154 Explore Microsoft Azure Stack State of the Union Tuesday 09:00 BRK2030

Learn about Azure Stack Agile Service Delivery Tuesday 12:30 BRK2187 Review Microsoft Azure Stack with Jeffrey Snover and Mark Russinovich Tuesday 14:15 BRK2188 Learn about Azure Stack Infrastructure Operations and Wednesday 09:00 Management BRK2260 Explore Microsoft Cloud Platform System - delivering Azure experiences in an integrated system Wednesday 12:30

BRK4019 Dive into Microsoft Azure Stack Architecture Wednesday 14:15 BRK3327 Dive deep in the Microsoft Azure Stack IaaS Thursday 14:15 BRK3115 Become a Microsoft Azure Stack infrastructure rockstar Thursday 16:00 BRK3112 Learn about the community of templates for Azure Stack

Friday 09:00 BRK3141 Discuss Microsoft DevOps on Azure Stack Friday 10:45 Please evaluate this session Your feedback is important to us! From your PC or Tablet visit MyIgnite at http://myignite.microsoft.com From your phone download and use the Ignite Mobile App by scanning the QR code above or visiting https://aka.ms/ignite.mobileapp 2016 Microsoft Corporation. All rights reserved.

Recently Viewed Presentations

  • We know some misterious mutations, which generate horroristic

    We know some misterious mutations, which generate horroristic

    We know some misterious mutations, which generate horroristic monsters Homeotic mutations The homeosis Mutation, that causes transformation of an area of the body into another area The mutated genes the so-called Homeobox genes, shortly Hox genes Products of Hox genes...
  • Presentación de PowerPoint

    Presentación de PowerPoint

    Aquesta documentació cal entregar-la a la Secretaria del Club entre el 19 d'Agost i el 6 de setembre o es pot enviar al mail. [email protected] Categories Mini, Premini i pre infantil inscripció on line. www.sallebasquet.cat >> INFORMACIÓ >> Inscripcions Temporada...
  • Context Aware Computing - University of California, Berkeley

    Context Aware Computing - University of California, Berkeley

    Context Aware Computing (part 2) CS 160 Discussion Section April 18, 2006 Ryan Aipperspach
  • Chapter 9 Linear Programming - 國立臺灣大學

    Chapter 9 Linear Programming - 國立臺灣大學

    Chapter 9 Linear Programming. 9.1 Systems of Linear Inequalities. 9.2 Linear Programming Involving Two Variables. 9.3 The Simplex Method: Maximization
  • www.behavioralconsultationandprimarycare.com

    www.behavioralconsultationandprimarycare.com

    The Consultative Model (cont'd) Help w/ complicated assessments, phone calls, crises, visit-sharing for high-utilizers. Re-referral is always appropriate. You will get written and/or verbal recommendations for each referral. Consult probably NOT appropriate for: Specific medication questions. 7
  • Reduce, Reuse, and Recycle

    Reduce, Reuse, and Recycle

    So, remember the 3 R's: Reduce, Reuse, and Recycle Reduce, Reuse, and Recycle 1st grade Social Studies What we do affects our entire planet. So, we have to take care of our planet Earth and the land around us. We...
  • Sordaria Lab - Henry County School District

    Sordaria Lab - Henry County School District

    Times New Roman MS PGothic Arial Myriad Condensed Calibri Tahoma Default Design Sordaria Lab Sordaria PowerPoint Presentation Sordaria - Life Cycle Sordaria - Perithecium and Asci Sordaria - Ruptured Perithecium Sordaria PowerPoint Presentation PowerPoint Presentation Sordaria Sordaria - Parent Fungi...
  • Business in Action, Eighth Edition

    Business in Action, Eighth Edition

    Payless Shoes, R.E.I. Category killer. Type of specialty store that focuses on specific products on a massive scale and dominating retail sales in respective product categories. Office Depot, Toys R Us, Lowe's. Discount store. Store that offers a wide variety...