4 VMware Cloud Infrastructure & Services Core IT Services via Virtual AppliancesZimbraFile/ PrintDirectorySaaSSpringSource: Programming Model for the CloudPaaSRedwood: Common Service Model for Infrastructure CloudsvCenter Management Suite: Policy-based Management & AutomationvCloud PartnersEnterpriseProprietary CloudsIaaSView: Desktop Computing via CloudvSphere: Platform for Cloud InfrastructureLet's put our product portfolio if you will into context around this Cloud Computing environment. So I've divided the world up into Private Clouds, things that are happening inside the firewall or the data centers of enterprise IT customers. Then there is the VMware virtualized Public Clouds, our vCloud partners who are building compatible Cloud infrastructures based on VMware technology and then in the third world, the other Clouds that exist out in the marketplace. vSphere is the foundation, the platform for all of the Cloud infrastructure. You really cannot achieve the full benefits of Cloud Computing without getting to that concept of pooling and virtualization is the path to that concept. vSphere is the platform that delivers all of the capabilities required for achieving that Cloud Computing model and that pooling aspect. We think about View as an extension of that model, that architecture where I manage the desktops as a service that is managed and secured within my Cloud architecture and then delivered to users anytime, anywhere. So View extends the value proposition of Cloud Computing all the way out to the end devices that IT has to worry about in any organization. vCenter brings in that policy-driven management and automation at the infrastructure level. And a future initiative that we are working on is called Redwood and Redwood brings into context the service catalog, the self-service capabilities, and managing those services across multiple Cloud environments and that's the direction we're heading with project Redwood. This combination is VMware's infrastructure as a service offering which supports not only the Private Cloud, but those VMware virtualized Public Clouds as well. The next layer up the stack is the programming model for the Cloud. So SpringSource, for example, brought us Spring, the most widely used Java application framework in the world. Sixty percent of all Java applications developed today are developed on top of the Spring framework. Spring framework gives us a model by which developers can focus on application and business logic and the framework gets tied to the infrastructure to help optimize those applications and to help drive policy from the application framework into the infrastructure so that the infrastructure is more responsive. Spring enables a Cloud-ready, but yet a Cloud-independent application development model. And so, we continue to support Spring in our Platform as a Service, if you will, across not only the Private Cloud and our vCloud partners, but against other Clouds that exist in the marketplace as well. And then finally, our Software as a Service offering, Zimbra was the first instance of VMware acquiring a full software solution, Zimbra being that and collaboration solution, and what our intent here is to be able to take core IT services, things that every IT organization needs and is managing for the business that aren't necessarily differentiating that business and offer it as a Cloud-ready virtual appliance and Zimbra's the first example of that.The entire VMware portfolio is aimed at removing and reducing complexity in IT, leveraging a cloud computing approach. Here are the basics:vSphere, the industry’s leading virtualization platform, is the foundation for building out a cloud architecture. It is step 1 on the journey.View takes the benefits of pooling, automation, control, etc. into play for desktops, which is actually the largest workload base in the enterprise. Thus being built on and extending vSphere, since desktop virtualization IS a datacenter problem, and needs to conform into the cloud architecture.vCenter brings automation, simplification, etc. at the infrastructure level.Also note that vSphere + vCenter + View are used by cloud service providers to build out public cloud infrastructure as well. Same foundation for private and public clouds.“Redwood” is a project that is delivering the next level of abstraction, managing services across cloud infrastructure – both private and public. It will become the common management model across private clouds and VMware virtualized public clouds (i.e. vCloud partners).Springsource presents the frameworks and programming model for the cloud, freeing developers from having to be concerned with how and where to deploy applications, whether internally in a private cloud, in a VMware virtualized public cloud, or in any public cloud. VMware is working to optimize Spring-based application deployment into VMware Virtualized cloud environments, but will continue to support full customer choice of deployment destinations.Finally, we are also looking to deliver virtual appliances for common, core IT services that should just be available and reliable in any cloud environment. IT should not be spending valuable resource time on managing these services, so we are making it dramatically simpler through our virtual appliance offerings. Again, these will run in the private cloud inside the enterprise, on VMware Virtualized public clouds, or other public cloud offerings.VMware Virtualized Public CloudPrivate CloudPublic Cloud
5 Delivering IT as a Service: The Private Cloud vCloud APIUser AccessSelf-service user access with metering, monitoring, and chargebackRedwoodvCenter ChargebackStandardized Service DeliveryStandardized services and service level definitions with automated service deliveryRedwoodFully Virtualized ResourcesVirtual DatacentersVirtual DatacentersVirtual DatacentersIn addition, we're pulling together the right architectural framework for them to be able to look at what does the future state architecture in my data center look like, fully virtualized resources with a standardized service delivery framework available in a self-service model and all of this based on open APIs so that those services can be deployed or managed in Private or Public Cloud infrastructure.The VMware model is built around this vision – we think of datacenter transformation into a compute factory – where individual piece parts are virtualized, aggregated and shared across many business units/users. The compute factory is aggregated into a standard set of services which are then available in packaged form for end users.Ultimately, this approach is about user-centricity, where they have on-demand access to the compute factory, without getting bogged down or delayed by the underlying details.Virtual Data Centers –Virtualized, shared pools of server, storage, and network resourcesVirtualized datacenter services (firewall etc)Policy-driven ManagementRedwoodvSphere Enterprise PlusvCenter ManagementvShield TechnologyResource PoolsvSpherevSpherevSphere
6 New Resource Abstractions – Provider Virtual Datacenter Standard Service Tierof InfrastructureCompute:Cumulative block of CPU in GHzCumulative block of RAM in GBAble to be subsequently allocated across organizationsMax is vSphere clusterNetwork:Not an direct property of a Provider vDCStorage:Cumulative block of homogeneous storageMax of 256 datastores per Provider vDCSingle metaphor and naming across both internal and external clouds for consistency
8 2010 – Introducing vShield Products Securing the Private Cloud End to End: from the Edge to the EndpointEdgevShield Edge 1.0Secure the edge of the virtual datacenterSecurity ZonevShield App 1.0 and ZonesApplication protection from network based threatsEndpoint = VMvShield Endpoint 1.0Enables offloaded anti-virusVirtual Datacenter 1Virtual Datacenter 2DMZPCI compliantHIPAA compliantWebTest & DevVMware is introducing the vShield family of products at VMworldvShield solutions secure the edge of the virtual datacenter, protect virtualized application deployments from network-based threats, and streamline antivirus protection for all VMs by offloading AV processing to dedicated security VMs.vShield Edge protects the perimeter of a virtual data center, and provides services such as DHCP (Dynamic Host Config Protocol), NAT (Network Address Translation), Firewall, VPN and Web Load Balancing.vShield App protects application deployments from network based threats. It allows for flexible and elastic groupings of VMs based on business needs such as PCI, HIPAA, DMZ deployments. vShield App extends the basic vShield Zones capability that is included as part of vSphere advanced onward SKUs, by adding flexible VM grouping by user defined policies and supporting vCenter container based policies.vShield Endpoint enables efficient, offloaded AV processing. Partners such as Trend Micro, Symantec and McAfee will ship the security virtual machines that integrate with vShield Endpoint for offloaded AV processing.vShield Manager is the centralized deployment, management, reporting, logging, tracking and integration (REST based APIs) for all vShield products.VMware vSphere + vCenter
9 From inside the Guest to the Edge of the Cloud OverviewFrom inside the Guest to the Edge of the CloudIn GuestVMVMOrgOrgvShield EndpointvShield AppvShield EdgevShield Edge is included with VMware Cloud Director
11 Feature Overview Extensibility Windows 7 Support PCoIP Automation and Integration with PowershellSCOM SupportReporting and Auditing EnablementWindows 7 SupportPCoIPSmartCard Support with PCoIPFIPS ComplianceManagement ImprovementsKiosk Mode (MAC-based client authentication)Automated USB RedirectionLocation-based PrintingReal-time SmartCard Cert RevocationIncreasing Scale and EfficiencyBrokering Architecture for 10,000 VM podScalable Admin UI in FlexRole-Based Delegated AdministrationSemi-Automatic PoolsThin Provisioning Support with vSphereView Composer Performance Optimizations (local storage, temp file/page file redirection)ThinApp AssignmentSystem and User DiagnosticsDashboard and System MonitoringUser TroubleshootingSystem TroubleshootingView Composer EnhancementsSupport for SysPrepRefresh, Recompose & Rebalance for Non-Persistent PoolsTiered Storage SupportPersistent Disk Management (Detach/Reattach/Archive)FIPS Certification is submitted for PCoIPClient LocalizationGerman, Japanese, French, and Simplified ChineseLocal ModeEncryption, Smart Card, Replication & Policy Controls
12 Integrated Dashboard UI View ManagerAdmin UI ported to Admin FlexDashboard ViewReporting DBDelegated AdminSecurity Server Setup ImprovedDesktop AdministratorUser location and FiltersIndividual VM view - Coorelation with VCAutomated USB RedirectionView 4.5: Delta Training – Revision 1.0
16 Tricipher MyOneLogin.com Single sign-on across SaaS and other cloud providers
17 myOneLogin Integrate myOneLogin Secure Sign Sign-On with myOneLogin authenticates user IDs and passwords against an internal Active Directory, while myOneLogin manages the strong authentication factors = your internal directory remains the one, centralized place to manage usersIntegrate myOneLogin with internal portals, such as SharePoint, so that users within your network can access web applications from their corporate portalUse myOneLogin to add strong authentication to SSL VPNs, so that external users accessing corporate resources can take advantage of secure, multi- factor authentication.Or just sign up for an account, setting up your users and applications, and letting users then self-provision to the serviceFuture in Horizon…?
19 vCenter Product Family The vCenter Product Family focuses on 2 layers: infrastructure & operations and application management.Today we will be focusing on vCenter Configuration Manager
20 vCenter Configuration Manager Overview Deep Collection and VisibilityScalable, secure data collection, track changes to them automaticallyCompliance Policy IntelligenceEnsure compliance with various industry and regulatory standards and requirements on a continuous basisRemediation and Patch ManagementDetect and fix configuration problems and security vulnerabilities automatically across multiple systemsServer Provisioning and Application Stack DeploymentProvision Linux, Windows and ESX images and optimized JeOS-based application stacksMultiplatform SupportSupport physical & virtual, Windows desktops and servers, UNIX and Linux servers, and vSphereAutomation: vCM will help you increase the number of systems under management. It will also let you control cost and increase availability of trained systems administrators. Being able to understand and prioritize who needs to do what, leaving mundane tasks to less skilled admins, will help you and your organization deliver against set targets. vCM automatically tracks more than 80,000 configuration variables and detects changes to these values.Regulatory Compliance / Best Practices: vCM compares changes to policies to determine a violation, providing deep compliance capabilities. With vCM users can enable best practices and track adherence to corporate, industry and regulatory best practices and mandates . Customers have access to a wide variety of compliance related content to meet both general purposes and industry specific needs such as:Regulatory and industry: SOX, PCI, HIPPA Basel II, NERC/FERC, DISA/NISTSecurity and Pest Practices : CIS , Vendor specific e.g. Microsoft and VMware hardening guidesDetect violations and remediate: vCM tracks more than 80,000 configuration variables and when change is needed, as it always is, vCM enables you to effectuate this by a “Right Click Fix”, which can be either immediate or scheduled, for a single system, machine group or for the complete data center. Furthermore, for every change completed (through vCM), vCM will keep an audit trail as well as the capability to roll back any unwanted or unapproved changes.Provisioning and DeploymentvCM’s application stack management capabilities allow users to:Build, optimize, manage & deploy server software in physical, virtual & cloud infrastructuresOS-level application dependencies identified automatically‘Just enough operating system’ (JeOS) calculated in secondsBare metal provisioningApplication updates and deployments
21 vCenter Product Family The vCenter Product Family focuses on 2 layers: infrastructure & operations and application management.Today we will be focusing on vCenter Application Discovery Manager
22 vCenter Application Discovery Manager Overview Application Discovery Manager capabilities can be summarized in four categories:Passive discovery of your application infrastructureActive high-definition discovery of hardware and software configuration detailsDiscovery analytics to visualize, analyze, and report on the collected dataThe hybrid discovery methodology of ADM intelligently combines 3 forms of discovery: passive network observations, active remote queries, and discovery analytics to result in discovery that is far less intrusive than competitive solutions. This discovery is completely agentless, so no additional software components need be distributed.Additional key points:(on left) ADM can collect from thousands of servers across a widely, geographically dispersed set of data centers(on bottom) ADM collect configuration, dependency, and change data that can be integrated into other 3rd party systems, CMDB, and vCenter Configuration Manager(on right) the ADM GUI presents dashboard summaries and the killer-app: detailed application dependency maps
23 Passively Discover Application Dependencies with vCenter ADM TitleMonth YearPassively Discover Application Dependencies with vCenter ADMTitleMonth YearESX to VC DependenciesRemember to planto protect all three of these!Virtualized On RelationshipESX serverWith ADM’s ability to discover tiered applications you can gain confidence in your ability to see all layers of a distributed application, continuously monitor them for configuration compliance with best practices, and ensure a smooth restart after a migration or site fail-over. ADM discovers many different types of dependencies – including dependencies between applications residing on the same or different ESX Servers. It can even discover dependencies between VMs that are managed by different vCenter Servers.ADM discovers VMs, ESX servers, dependencies, configuration detailsRelate individual parts of a VM infrastructure to the different application services / componentsVMs defined on each ESX including detailed configuration for each VMDisplay in mapsDependency between the virtual environment and the virtualized environmentDependencies (ESX -> Virtual Center, VM -> ESX, VM -> VM)VMs, ESX servers, Virtual Center, configuration filesDetect relationships between VMs on the same physical serverThere could be a database server and app server and a web server all on the same physical serverListening to internal ESX traffic via a virtual collectorvCollector deployed as a VM on ESX servers, using the customers VI infrastructureVMsVirtual to Virtual DependenciesDiscover instances of DBs, Application servers, etcPhysical to Virtual DependenciesDiscover hidden dependencies, prepare for moves, build DR protection groups23
Your consent to our cookies if you continue to use this website.