mestrado em engenharia informá>ca e de … · iso network security (iso/iec tr 13335:2004,...
TRANSCRIPT
ITManagementandAdministra>on-Part3
MestradoemEngenhariaInformá>caedeComputadoresMasterDegree(MSc)inInforma>onSystemsandComputerEngineering
Administração e Gestão de Infra-estruturas de IT IT Infrastructure Management and Administration
TODAY
ITManagementandAdministra>on
TheDriveristheBusiness
FromNetworkandSystemsManagementtoInfrastructureasCode
Tradi>onalNetworkManagement:TheISOperspec>ve
FacilityInfrastructureandManagement
Considera>onsfortheFuture
2
3
IT Model - Management and Administration
TheCostofComplexityofDigitalServicesHos>ngRequires:Be%erIntelligence
Integratesrepor>nginreal->me
Faster>metomarket
Improvedcapacityplanningandmanagement
Greateragilityinchangemanagement
Theabilitytochargebasedonconsump>on
Opera7onalefficiency
Powerandcooling,facilitycapitalexpensesavings
Improvedu>liza>onoffacili>es
Improvedu>liza>onofITAssets
4
ITdesignsfor3–5yearhorizon
• Hardware,soWwareoWenchangedandupdated
• Typical24-36monthtechnologyrefreshes
• Virtualisa>onstrategies
• High-density
• MeetOLAs/SLAs
• Doesnotpaytheu>litybill
ITandFacili>esOWenMisaligned
5
Facili7esdesignisfor20+yearhorizon
• LargeCAPEXwithmuchlessflexibility
• Hardened,monolithicDataCenters
• Minimalscalability
• Maximizeenergyefficiency
• NocontroloverITenergyuse
• Energysecurity
ITInfrastructureandManagementArchitectureOverview
6
Security
ITServiceManagement(ITSM)
ITInfrastructure&Application
Services
Firewall ContentSecurity Email NotificationStorage Network Rack WebApplication
Server VOIP
Riskmanagement
TechnologyIntegration
Consulting Training HelpDesk NetworkManagement
CMDB
FacilityInfrastructureandManagementArchitectureOverview
7
GreenDataCenter
Safety&Security
EnergyManagement
EnergyEfficiency
Services
Fire Intrusion Access AlarmVentilation Heating AC Light Water PowerDistribution
Riskmanagement
TechnologyIntegration
Consulting Training Metering Measuring Monitoring
EvacuationVideo
FacilityInfrastructureandManagementArchitectureOverview
8
GreenDataCenter
Safety&Security
EnergyManagement
EnergyEfficiency
Services
Fire Intrusion Access AlarmVentilation Heating AC Light Water PowerDistribution
Riskmanagement
TechnologyIntegration
Consulting Training Metering Measuring Monitoring
Eva- cuation
Video
SeekingITEfficiencies
9
Standardization•Enforceconsistencyininfrastructure•ImproveControls
Virtualization•Consolidateinfrastructure
•Increaseutilisationrates
•Improveflexibility
Cloud•OfferITasaService•Reduceoperationalcosts
Benefits• SimplifiedManagement• ImprovedEfficiency
Benefits• Reducedcapitalcosts• Reducedoperationalcosts• ImprovedOperationalEfficiency
Benefits• ImprovedAgility• Improvetimetomarket• ImprovedEnd-useexperience• Reducedoperationalcosts• ImprovedEfficiency
AndtheResultis….
10
70%
%oftimespentbyITprofessionalsisjustkeepingthelightson
Certainly,thiscan’tbetrue!
Itis!–SayHellotoMYSilo
11
MYOperatingSystem MYWorkloadMYServer
MYManagementTools
MYOperatingSystem MYWorkloadMYServer
MYManagementTools
Tradi>onalApproachtoIT-“Onemoretooltoday”
12
“HowmanydifferentinfrastructuremonitoringandapplicationmonitoringtoolsarecurrentlyinuseinyourIToperation(includingnetwork,servers,databasesandapplicationmonitoring)”?
69%
%ofresponderswhouse10ormoretoolsintheirenvironment
Base:161NorthAmericanITdecision-makers
Source:AcommissionedstudyconductedbyForresterConsultingonbehalfofZenoss,October2012
ThesetoolsDONOTWorkTogetherWeboughtMYTOOLS
Butnow,MYTOOLSdon’tworkwithsharedvirtualisa>onandcloudresources
Donotinteroperate
Requiremul>plespecialists
Cannotprovideholis>cinforma>on
Rootcauseanalysisisalongdrawninefficientprocess
13
ModernDataCentersareComplex
14
Monitoring solution 1
Monitoring solution 2 Monitoring solution 3
Monitoring solution 4
Monitoring solution 6
Monitoring solution 7Monitoring solution 8
Monitoring solution 11
Monitoring solution 9
Monitoring solution 10
Monitoring solution 5
AndtheWorkload-Assetrela>onshipsareDynamic
15
Monitoring solution 1
Monitoring solution 2 Monitoring solution 3
Monitoring solution 4
Monitoring solution 6
Monitoring solution 5
Monitoring solution 7Monitoring solution 8
Monitoring solution 11
Monitoring solution 9
Monitoring solution 10
FailoverCloud Bursting
AndtheWorkload-Assetrela>onshipsareDynamic
16
Monitoring solution 1
Monitoring solution 2 Monitoring solution 3
Monitoring solution 4
Monitoring solution 6
Monitoring solution 5
Monitoring solution 7Monitoring solution 8
Monitoring solution 11
Monitoring solution 9
Monitoring solution 10
FailoverCloud Bursting
HowcomeITs>lldoesn’tworkright?ITSM–ITIL,ITPM,MOF,eTom
Organisa7onalChange–Kooer,ADKAR,Kubler,Bridge,EFQM
COBIT–ITGovernance
ProjectManagement–PMI,Prince2
ITAssetManagement-IAITAM
Virtualisa7on-SAAS,PAAS,IAAS,ITAAS,SDDC,DesktopAAS
Enterprise/ITArchitecture–Zachman,Togaf
QualityManagement–SixSigma,PDCA,CMMI,ISO9000
Security–ISO2700x,ISO31000,NIST
RiskManagement–MOR
Sourcing,TechnologyRoadmaps,Applica>onArchitectures,DataManagement
17
ChangesintheMarketCallforNewDigitalServiceDeliveryModel
18
Teams&organization
Flexibleandmodularfacility
ITInfrastructure
Fragmented,manual,devicespecificmanagement
Integrated,holistic,automatedmanagement
SiloedIT,FacilityandOperations
Collaborativeecosystems,end-to-enddatacenterprocesses
Monolithicandrigid
Modular,highlyflexible
Centrallyplanned&procured
Dedicated
Instant&Shared,software-defined
ConvergedSystems
Information&Management
19
TheDriverisTHEBUSINESS!
20
BusinessGoalsandObjectives
ITStrategy Initiatives Maintenance Growth
BusinessRequests Enhancements ServiceRequests NewServices
TheITOpera>ngModel
21
CONFIDENTIAL
22
ITSM
Governa
nce
ITArchitecture
23
Risk
ITAsset
CONFIDENTIAL
24
SDLCSystems
DevelopmentLifeCycle
25
Security• ISM• SecOps• Access
26
ServiceTransition
CONFIDENTIAL
27Presenta7onnamegoeshere
ServiceOperation
ContinualService
Improvement
Organisa>onalConstruct
28
Plan Build Run
Strategy Design Transition Operations Improvement
Architecture Applications Infrastructure Operations Administration
hops://www.youtube.com/watch?v=br4IA32fqzs
30
FromNetworkandSystemsManagement
toInfrastructureasCode
NetworkandSystemsManagementHistoryNetworkandSystemsManagementdidn’texistinitscurrentformun>lthe1980’s
Fromthe’40sto’70s,networksweretypicallyveryhomogeneous(proprietary-only),soNetworkManagementtoolswerespecifictothatinsularenvironment,ifusedatall
Similarly,SystemsManagementwasreducedtotheadministra>onofMainframe/MidframeComputers
TheadventofthePCandMacintoshcomputersmadenetworksgetmuchmoreheterogeneous,andincreasedthecomplexityofNetworkManagement
31NetworkandTroubleManagement
So,WhatisNetworkManagement?ComputerNetworksarecomplexlivesystemsRequireagreatdealofaoen>ontobekeptup&runningE.g.Failures,Performancetuning,ServiceProvisioning,Accoun>ng,…
NetworkManagement:AnythingthathastodowithrunninganetworkTechnologies/ProtocolsTools/SoWwareAc>vi>esProceduresPeople
32
RunningaNetwork:OAM&POpera7onsKeepthenetworkrunningsmoothly,monitorforalarms,watchforintrusionsandaoacks,...
Administra7onKeeptrackwhat’sinthenetwork,whouseswhat,housekeeping
MaintenanceRepairsfailuresandupgradesnetwork
ProvisioningConfigurethenetworktoprovideservices,turnupservicesforendcustomers
33
OtherPerspec>ves/DimensionsTheNetworkManagementopera>ons&procedures&func>onali>esisclassifiedfromotherperspec>ves/dimensionsthan(tradi>onal)OAM&P
Classifica>onbasedfunc>onali>esISO’spointofview:FCAPS
Classifica>onbasedonlayersITU-T’spointofview:TMN
Classifica>onbasedonbusinessmodelTMF’spointofview:eTOM
34
StandardManagementFrameworksOSINetworkManagementFrameworkCMIP(X.700Series)
InternetNetworkManagementFrameworkSNMPv1SNMPv2SNMPv3
TeleManagementForumSID,eTOM,NGOSS
DistributedManagementTaskForceCIM,WBEM
OpenMobileAllianceOMADM
35
But,whyNetworkManagement?Thereamanyobviousreasons,e.g.,Faultsshouldbedetected&resolvedNewcustomer/usershouldbeabletousethenetworkNewdevicesshouldbeconfiguredproperlyResourceusagemustbeaccounted…?
Thesearetechnical&low-levelrequirements
However,therearealsolessobviousbutimportantreasonsfromabusinessmanagementpointofviewNeedforefficientnetworkmanagementisalsosa>sfiedbyhighlevelbusinessmanagement
36
WhyNetworkManagement?(cont’d)Computer/TelecomnetworkingisaBusinessITInfrastructures(andNetworks)arebuilttomakemoney
Income(revenue)vs.TCO(TotalCostofOwnership)
IncomeServiceprovisionforcustomerswithdesiredQoS
TCOCosttobuilduptheinfrastructureanditsopera7oncost
37
WhyNetworkManagement?(cont’d)Cost(toprovidetheservices)NMtomaximizeefficiency—>minimizingcost
Revenue(realizedthroughtheservices)NMtoensureservicesareaccountedforanddeliveredwhenandwheretheyareneeded
Quality(ofthedeliveredservices)NMtomaximizetheinherent“value”ofthemanagednetworkandtheservicesprovided
38
WhyNetworkManagement:CostCAPEX(CapitalExpenses):Equipments,SoWware,License,Loca>on,…
OPEX(Opera>onExpenses):People,electricity,maintenance,…
39
WhyNetworkManagement:Cost(cont’d)Importantfact
OPEX>>CAPEX
WhilenetworkequipmentandNMso6wareareexpensive,thecostisamor;zedoverthelife;meofthenetwork
So,weshouldaoempttodecreaseOPEXEvenifitresultsinincreasinginCAPEX
EfficientnetworkmanagementsystemcandecreaseOPEXsignificantly
40
WhyNetworkManagement:Cost(cont’d)Moreefficienttroubleshoo7nganddiagnos7csFreeupoperatorsfromrou>neproblemstofocusonthehardstuffReduceamountofexper>serequired
Automa7onofserviceprovisioningbyworkflowsLessoperatorinvolvementIncreasedthroughputLesspronetooperatorerror>50%ofnetwork&serviceoutages!(impactscostandquality)
Planning,bo%leneckanalysisDeployresourceswheretheyareneededmostOp>miza>onoftopologiesMinimizeinvestmentneededforgivennetworkgoals
Andmore…
41
WhyNetworkManagement:RevenueFlexiblebillingandaccoun>ngsystemsCombinemul>pleservices
AutomatedprovisioningsystemsServicesondemand–“instanton”
CustomerviewsofservicesdeliveredStatsoncallsmade,bandwidthconsumed,servicelevels
Timeun>lrevenueMinimize>metoservicefrom>meserviceisordered
Andmore…
42
WhyNetworkManagement:Quality(cont’d)AutomatedprovisioningMoreefficientprovisioning(lessorder-to-service>me)Avoidmisconfigura>onthroughend-to-endprovisioning
ProvisionnetworkforcertainqualityProperdimensioning,Testedserviceconfigura>ons,Policiesfortrafficshaping,connec>onadmissioncontrol
Helpiden>fy,diagnose,fixproblems(reac>ve)Alarmcorrela>on,fasterproblemisresolved,minimizingthe>meofoutages,trynottowaitun>lcustomercomplains
43
44
Tradi>onalNetworkManagement:TheISOperspec>ve
ISONetworkManagementISOhasproducedguidanceonthetypesofnetworkmanagementac>vi>es
ISOnetworkmanagement(ISO/IEC10733:1998)
ISOnetworksecurity(ISO/IECTR13335:2004,ISO/IEC18026:2009andISO/IEC18028-1:2006)
ISOfunc>onalareasofTelecommunica>onsNetworkManagement(TMN):
Fault,Configura7on,Performance,Security,andAccoun7ng
45
TMNModelingMethods
46
(a) Layers
F A U L T
C O N F I G
A C C O U N T
P E R F O R M
S E C U R I T Y
(b) Functional Areas
(d) Information Models
Network Element Layer
Network Element Management
Network Management
Service Management
Business Management
ISONetworkManagementFaultManagement
Detect,isolate,no>fy,andcorrectfaultsencounteredinthenetwork
Configura7onManagement
Configura>onaspectsofnetworkdevicessuchasconfigura>onfilemanagement,inventorymanagement,andsoWwaremanagement
47
ISONetworkManagementPerformanceManagement
Monitorandmeasurevariousaspectsofperformancesothatoverallperformancecanbemaintainedatanacceptablelevel
SecurityManagement
Provideaccesstonetworkdevicesandcorporateresourcestoauthorizedindividuals
Accoun7ngManagement
Usageinforma>onofnetworkresources
48
NMS&NOCAtypicalNMSinaNOC
49
NMS&NOCManagersmanagethenetworkusingNMSinNOCNMS:NetworkManagementSystemToperformNMfunc>onsInterfaceCorelogicProtocols
NOC:NetworkOpera>onCenterWheretheNMSservers&clientsareinstalled
50
CurrentNetworkManagementFramework
51
AgentAgent Agent
AgentAgent Agent
Agent
Collect,organize&interpret OperationalData
AdministratorWorkstation
ManagementPlatform
Observation&Control
Managementrequests/replies
eventreports
NetworkManagementToolsManagementtools:managementsystemsthatnetworkmanagersinteractwith
UserinterfaceofthetoolsText-basedinterfaces:CLIOWenpreferredbypowerusersMoreproduc>ve,don’tbesloweddownbymouseclicksandnaviga>on,scrip>ng(automatedconfigura>on),…
GUIsOccasionalusers“Legi>mate”GUIuses:Monitoring,Visualiza>onoflargequan>>esofdata,ReportsWebBasedGUIiscommoninterfacenowadays
52
NetworkManagementTools:DeviceManagersViewandmanageindividualdevicesoneata>meViewsta>s>csViewalarmsViewconfigura>onChange&tuneparameters
Mostbasicinterface:Telnet/SSHsessions,CLICandoanythingonaper-devicelevelOWeninterfaceofchoicefornetworkadministrators
GUI,Webappmoreuserfriendly(easiertooperate,butsome>meslessproduc>vefor“powerusers”)
OWenspecifictoapar>cularvendoranddevicetype
53
NetworkManagementTools:ElementManagersViewandmanageindividualdevicesinanetwork,similartodevicemanagers;however
Auto-discoversdevicesonanetwork
Providesoverviewofall(ormany)devicesinanetwork
Maintainsstate,e.g.databasewithnetworkelements
AllowtodisplaydevicesonalogicaltopologymapTopologyoWennotdiscoveredbuteditedbyanadministrator
OWenspecifictodevicesofapar>cularvendor
“Northboundinterfaces”tointeractwithothersystems
54
NetworkManagementTools:NetworkManagersAddi>onalfunc>onstodealwithconnec>vityDiscoverlogicaltopologyIndicatestateofconnec>ons
Widerrangeofsupporteddevices
Integra>onofmul>pledevicestypesfrommul>plevendorsbecomesa“must”
OWenbuiltonthebasisofvendor-independentmanagementpla}orms
55
NetworkManagementTools:PerformanceAnalysisSystemsCollectperformancesta>s>csMonitorperformancetendsDetectperformanceboolenecksUsesforServicelevelmanagementMonitorifagreed-toservicelevelsarebeingkeptExamples:Delay,jioer,voicequality,…
Proac>vefaultmanagementDetectproblemsthatarebrewingE.g.deteriora>ngresponse>mes
Troubleshoo>nganddiagnos>csNetworkplanning
56
OtherToolsServiceordermanagementsystemsEntryofserviceordersAdding,dele>ng,modifyingaservice
Orchestra>onofserviceorderprocess,e.g.TurningonbillingCreditcardverifica>onFlow-throughsystemstoprovisiontheservice
Trackingofserviceorderstatus
WorkordermanagementsystemsEquipmentinstalla>on,wiring,repair,replacementManagementoftruckrollsInterac>onwithinventoryandorderingsystemsforsparesInterac>onwithworkforceplanningsystems
57
OtherExampleTools(cont’d)Addressmanagementsystems
Helpdesksystems
CustomerRela>onshipManagementSystems
Workflowengines
Intrusiondetec>onsystems
Billingsystems
…
58
59
FacilityInfrastructureandManagement
FacilityInfrastructureandManagement
60
DCIM-DataCenterInfrastructureManagement
61
IntegratedDCIMwithITServiceManagement
Data Center Infrastructure Management
People & Processes
ServiceManagement
IT Infrastructure
Critical Facilities
Hybrid Delivery
Converged Infrastructure
Unified Management
(DCIM)
LinkagebetweenITandFacili>esinfrastructure
InteroperabilitywithITServiceManagementovercomesadop>onchallenges
ITSMtoolssiloopera>onaldatawhichDCIMcanbecomethebackbonetointeroperability
“WorkloadtoWao”correla>onisthefuture
DCIM-BackboneofIntegratedSolu>on
62
CollectInformation
ConsolidateInformation
HDVisualization
DCIM
Fire/LifeSafety Firewall
Security&Access
PowerDistribution
Water
Rack
Lighting
Cooling
VOIP
Server
Storage
WebApplication
Metering
Network
What-IfAnalysis
DCIM-Func>onalOverview
63
Highdefinitionassetvisualizationand
analytics
Real-timemonitoring,alarmandeventnotification
Infrastructurelifecyclemanagement
Collaborationandprocessmanagement
Keyperformanceindicatordashboard
Openinterfaceandprotocolsupport
ComputationalFluidDynamics(CFD)DCIM
hops://www.youtube.com/watch?v=DlA2p5L_osM
65
Considera>onsfortheFuture
ManagementforFutureAutonomicManagement/Self-ManagementSelf-managingframeworksandarchitectureKnowledgeengineering,includinginforma>onmodelingandontologydesignPolicyanalysisandmodelingSeman>canalysisandreasoningtechnologiesVirtualiza>onofresourcesOrchestra>ontechniquesSelf-managednetworksContext-awarenessAdap>vemanagement
66
ITManagementandAdministra>on
TheDriveristheBusiness
FromNetworkandSystemsManagementtoInfrastructureasCode
Tradi>onalNetworkManagement:TheISOperspec>ve
FacilityInfrastructureandManagement
Considera>onsfortheFuture
67
SUMMARY
AnyQues>ons? 68