sap hana migration to cloud - minfy™...the organizations, we pioneered ourselves on sap on cloud,...
TRANSCRIPT
www.minfytech.com
SAP HANAMIGRATION TOCLOUD
Berger Paints
CUSTOMER CASE STUDY
BERGER
123, Tejgaon Industrial Area
Dhaka-1208, Bangladesh
IN Partnership with: AWS,
GetCo IT Services
www.bergerbd.com 2
Low Cost SAP DR Solution on AWS
Existing ProductionWorkload Runningon Physical Servers
Near Zero Production Impact
Cold DR Readiness
Compliance
3 www.minfytech.com
ABOUTBERGER PAINTSBANGLADESH
BUSINESSCHALLENGE
Across the world – Berger is a
name that is synonymous to Paint.
Started in 1760, Berger is a leading
provider of Paints and Colors
Maintaining a Disaster Recovery
Infrastructure involves heavy investment and
low usage, hence Berger was looking for Low
cost solution for their On Premises SAP
Infrastructure, through which their entire
production houses and factories are
dependent on SAP for Inventory to Dispatch
and Invoicing.
With market condition, the challenge was
up come up with a low cost solution for
compliance ready DR solution for SAP,
Exchange, AD and Share-point. AWS came
with the answer – along with local partner
GetCo IT Services and AWS Implementation
Partner- Minfy Technologies, presented a
unique solution which maintains the Ready
infra for use in case of a Disaster or DR Drill.
With the solution in place, Berger was also
able to maintain the important compliances
for which they are certified in, which
required the DR to be in place.
4 www.minfytech.com
SOLUTION
The Unique Solution was proposed with
help of AWS – Pay as you use functionality
and low cost 24x7 running DB instance for
replication of Production DB.
The Production Application Instances are
replicated and kept on shut down mode for
later use and hence not billed. The DB
replication ensure RPO/RTO for the App
and DB.
Using AWS Marketplace, and third party
tools, back to back replication of DB from
Production to AWS instance was made
possible and all DB clusters are in synch.
Source Source
Volume Volume Volume Volume
Agent
Replication ServersCluster
ReplicationVolume
ReplicationVolume
ReplicationServers
ReplicationVolume
ReplicationVolume
Replication ServersCluster
ReplicationServers
BE
RG
ER
H
LA
5 www.minfytech.com
DEPLOYMENT
With requirement of SAP, AD, Exchange and
Share-Point – to be made available at the least cost
possible for DR - the Deployment was planned as per
below to first make a replica of the Production.
Following were the SAP Stack and AWS Services:
Using Cloud Endure - established the synch schedule
for the essential components/data to be replicated
on AWS instances. The non-essential servers were
replicated and stopped to be used as and when
required. These non-essential services are mostly
static data and application UI.
1. Server will be launched in the AWS Mumbai
Region. Access will be controlled via Identity and
Access Management (IAM) Console of AWS.
Custom IAM Policies and Roles will be written to
secure the access.
2. All of the servers have been launched under a
Virtual Private Cloud (VPC). VPC is like a cloud in
a cloud and private subnet components were not
accessible to the internet world.
3. Server instance and DB instances (ECC HANA +
BW HANA + SCM HANA) have been implemented
in a Private Subnets as this won’t be exposed on
public. Subnets are used to virtually segregate
the servers into various groups. Each subnet is
launched under its own subnet range for
additional security. Network Access Security List
(NACL) is a stateless firewall that provides both
inbound and out bound access restriction
features
INFRASTUCTURE
6 www.minfytech.com
4. Server instance (OpenVPN) have been imple-
mented in public subnet.
5. All the servers will be Auto recovery enabled.
Auto recovery provides an additional layer of
assurance that if there is any underlined Hard-
ware failure from AWS end, there will be no
impact on the servers above the hypervisor layer.
6. To perform Cloud Endure Service we need to
setup a same environment as in on premises
Seamless Migration Leveraging Cloud Endure
Agent
ContinuousReplication
Replication Volumes Replication Volumes
ReplicationInstance
Replica Application Stack
CloudEndureReplicationServer(s)Cluster
Target
Agent
Application StackDiscovery/Entry
Management Server(s)
Could Orchestration & Machine Converstion
Source
ReplicationInstance
7 www.minfytech.com
Seamless MigrationLeveragingCloud Endur
SECURITY
1. Here we have implemented CLOUDENDURE, so
as to replicate the on-premises infrastructure to
AWS Cloud.
2. CloudEndure agents were implemented in the
on-premises, to initiate replication.
3. Using cloud endure console we need to setup the
environment with defined Security groups and
IAM roles, if it is defined perfectly the replication
will takes place without any error.
4. Each and every blocks of the volumes were
replicated synchronously and asynchronously
from on-premises to Cloud
5. With the help of VPN peering we establish
connection between on premises and AWS cloud
6. Here CloudEndure works in DR-Drill Mechanism,
in which if any disaster occurs in on-premises, the
total control will be taken from On-premises
infrastructure to Cloud infrastructure
1. Each server is launched in a security group.
Security groups are stateful firewall where-in we
can control the inbound IP and Port access.
2. APP Server in the VPC Private subnet do not have
public Internet connection. For the server to
access the public Internet a NAT server will be
provisioned. NAT behaves as a proxy for the
server inside the VPC. Server will get access to
Internet only through this NAT Server.
8 www.minfytech.com
3. Since App server is behind a VPC there is no way
for the Admin/Dev/QA team to reach it. Open-
VPN will be installed on the VPC. Users need to
first login to this secure OpenVPN server to
access the server inside the VPC. This also allows
secure and restricted access to the client data in
the server.
All the mission critical environment of
Berger paints was migrated to AWS to be
used as Disaster Recovery environment
and a least operational cost – making
them compliant on statutory audits and
DR Ready.
Their decision to move to AWS helped
them to reduce their investment on IT
and ensure investments in Production
Assets to improve their business – and all
this was made possible by AWS to help
achieve immediate business results.
BENEFITS
Minfy™ a born in the cloud firm, is committed to
helping enterprises with its impeccable IT solutions
in the cloud Era, We help the organizations to move
forward in the digital world by changing the way they
use IT, For over 5 years, we have dedicated ourselves
to providing the best in class & well-architected
cloud solutions to customers, We are committed to
delivering today’s best-of-breed cloud solutions to
the organizations, We pioneered ourselves on SAP
on cloud, NextGen Managed Services, Dev-Ops,
CI&CD & Microservices.
• Cloud consulting&Migration Services
• Application Modernisation Services
• DevOps Services
• Next Gen Managed Services
• Sec- Ops & SOC services
We pioneered ourselves on, SAP on cloud, Dev-ops,
CI&CD & Micro-services.
www.minfytech.com
Copyright © Minfytech 2018. All Rights Reserved.
[email protected] +91-86888 18765