Notes from the Field: Windows Azure Pack IaaS and PaaSAnders Bengtsson, PFE Pete Zerger, vTSP, MVP

DCIM-B312

WAP Architecture and Planning Streamlining Setup & Configuration Troubleshooting When Things Don’t WorkUsage Reporting ITSM Integration Automation and Lifecycle Management

Agenda

To help you:Take an approach that aligns with business and the future Match WAP features to customer requirementsAvoid common pitfalls of initial setupUnderstand how pieces fit together Find source cause when things aren’t working

Goals

Q & A Strategy: Hold questions to the end of the session.

Quick Intro to Windows Azure Pack

Virtual Machines

Web Sites and Applications Databases Service Bus

SMA SPFSCOM

WAP Architecture Component Overview

Mgmt Server

Controller

ServiceMgmtAPI

ServiceMgmt Portal

Runtime DB

File Server

Web Worker

(reserved)

Web Worker(shared)

Front End

Publisher

Database Host(s)

VMM

HVHV

Shared by all WAP Components

WAP: Web Sites (PaaS)

(separate VM for each)

WAP: Databases (PaaS)

WAP: IaaS (VMs)Reporting Data , Monitoring &

ITSMSCSM

• Hosting• ResourceMetering• WebAppGallery

• Microsoft.MgmtSvc.MySQL• Microsoft.MgmtSvc.SQLServer

• Microsoft.MgmtSvc.PortalConfigStore• Microsoft.MgmtSvc.Store• Microsoft.MgmtSvc.Usage• SPF

Databases (WAP and friends)

VMs (IaaS)

Web Sites (PaaS)

Databases (PaaS)

• UsageDatawarehouseDB• UsageETLRepositoryDB• UsageStagingDB

Usage Reporting

• SMAAutomation

“Everyone else has a cloud,

I want one too!”

…is not a reason to deploy a cloud

Why Cloud?

Benefits of a Private Cloud 101:Reduced infrastructure costs (through shared capacity)Scale on-demandUsage-based accounting (showback / chargeback) Self-service capabilities

Cloud is about streamlining service delivery and reducing OPEX.

Why Cloud?

WAP enhances / extends private cloud capabilities

Value proposition of WAP: Advanced templated-based deployment capabilities Azure-like user interface (consistent user experience)PaaS provides additional deployment options and capabilities PowerShell Workflow-based automation engine (SMA)

Why WAP?

WAP Gap Analysis

Good Not-so-good

Challenges•Getting buy-in for a pre-built, self-service portal typically easy

• Internal teams excited to see the solution

• The Azure-like interface is intriguing to all

• Lots of moving parts (complexity)

•Web Sites component may compete with other hosted services

•No auditing of user actions

• Setup process can be challenging

•WAP: Web Sites footprint is perceived as large

•No native ITSM integration

Completing these simple prerequisites will save hours of troubleshooting

Design and plan before you deploy. Disable User Account Control (for remote access)Ensure WinRM is enabled Verify Appropriate Firewall Ports are Open Know which systems require Internet connectivity

Prerequisites above can be set via Group Policy

Pre-Install Tips and Best Practices

Demo

Troubleshooting Installation and Configuration

Tips to ensure fast and accurate deployment

Have the WAP Checklist in Hand

Create Service Accts and Set Permissions Ahead of Time

Deploy with PowerShell Deployment ToolkitAutomated deployment, eliminates user error

Streamlining Setup and Configuration

Build a Windows Azure Pack lab using PDThttp://www.systemcentercentral.com/build-windows-azure-pack-2013-lab-using-pdt/

Build a Windows Azure Pack lab using PDT (revisited)http://www.systemcentercentral.com/build-a-windows-azure-pack-2013-lab-using-pdt-revisited/

Replace self-signed certificates with trusted certificates

http://technet.microsoft.com/en-us/library/dn296434.aspx

Enable Console Connections So tenants can connect to VMs powered off or disconnected

Deploy SCOM Agents and MP for WAPSCCM, SCOM, etc. (SCOM makes spotting issues MUCH easier)Provides at-a-glance insight into post-install failures Expedites identifying root case

Consider ADFS (for best tenant user experience)

Post-Install Tips and Best Practices

Installing System Center Agents with PowerShell DSC http://www.systemcentercentral.com/installing-system-center-2012-agents

In a discussion with the Contoso Toys datacenter team, we learned the following details about their (on-premises) hosting needs:

Provide capacity for development, test and production Tenants want choice based on their requirementsTenants need flexibility in delegating SQL access

Scenario: Database Services

Scenario: Database Services IaaS or PaaS?

PaaS

IaaS

The datacenter team is looking for a solution that will

Provide best performance Minimize administrative effort Provide flexibility to business units to scale and delegate as necessary Ensure the business units are accountable for resources they consume

Focus on VM Roles, not just VM Templates Don’t author resources manually, use VM Role Authoring ToolGallery resources are available for a variety of workloads, including database (MS SQL and Oracle) GRIT (Gallery Resource Import Tool)

IaaS: Notes from the Field

VM Role Authoring Tool https://vmroleauthor.codeplex.com/

Gallery Resource Import Tool http://gallery.technet.microsoft.com/Gallery-Resource-Import-2273ce71

WAP VMRole Gallery Items for Database Workloads http://blogs.technet.com/b/privatecloud/archive/2014/01/15/windows-azure-pack-vmrole-gallery-items-for-database-workloads.aspx

Virtual Machine Role (what you build)

Application (RESEXT)

• Roles and Features

• Payload and scripts

• OS Image requirements

• Network IP and Load balancer

• RESEXT Parameters

Virtual Machine Role (RESDEF)

• VM settings (size)• OS Settings• OS Image

Reference• RESEXT Reference• RESEXT

Parameter bindings

• RESDEF Parameters

UI Wizard (VIEWDEF)

• UI for RESDEF Parameters

• Grouping• Ordering• Validation• Localization

Deployment Configuration (RESCONFIG)

• RESDEF Parameter Values

• Single deployment

• Versioned

Gallery Item (what you import)

VMMWAP

Import via UI

Import via PowerShell

Resource Definition (.resdefpkg)

Resource Extension (.resextpkg)

•Resdef file•Viewdef file• Icon•Language directories and files

•Resext file•Script Payload•Application Payload

Demo

IaaS: SQL Server Provisioning

Scenario: Web Sites

Contoso Toys maintains a number of web-based .NET and PHP applications developed in-house

Applications are developed on a rapid release cycle with weekly interim releases

The development team struggling to maintain clean dev and test environments

The inability to quickly deploy an interim release translates to lost productivity and delayed releases

In a discussion with the Contoso Toys application development team, we learned the following:

Requirements: Web Sites The application development team is looking for a solution that will

enable quick and easy deployment of interim releases of their web applications

with minimal responsibility for care and feeding of a hosting environment

with minimal expense (pay-for-what-you-use is very desirable)

IaaS or PaaS?

PaaS

IaaS

WAP: Web Sites install requires 7 servers at minimum

Pay attention to the prerequisites…they are critical Verify WinRM is enabled on other nodes from the Controller

winrm id –r:<servername>

Logging…know where to find error messages WebPI logs at %localappdata%\microsoft\web platform installer\logs\Windows Event Logs – Windows Azure Pack

Do-overs Take a snapshot before install…and another before you begin configuration To start over, apply the snaphot and delete the Hosting and ResourceMetering databases

PaaS: Notes from the Field

Native Reporting System Center

Cloud Cruiser ExpressProvides tenant usage reporting Integrated in the WAP PortalFree to WAP Users

Usage Reporting

Usage Reporting Data Warehouse

Reporting Data

ETL Staging

SPFSPF

Understanding the flow is critical to troubleshooting

SCOM

OpsDB

VMM VMM

DW

WAP

MS.MgmtSvc.Usage

Usage Repor

t

Demo

Usage Reporting (and troubleshooting empty reports)

Request Management provisioning in unified portal through WAP integration

Enables users to submit, track and update incidents and requests

Enables request approval and task completion in the Tenant Portal

Publish request offerings to users from the SCSM 2012 Service Catalog

Express version is free

3rd Party Requirement for ITSM IntegrationRequest Management for WAP from GridPro

Demo

ITSM Integration with WAP

This is a critical item in a WAP environment for a number of reasons

Easy deployment means easier to create “sprawl”

Usage often has a real cost to business units

Provide tenants visibility into consumption and cost

Mistakes in IT operations have a cascading effect

Lifecycle Management

Demo

Automating Lifecycle Management

Automating InstallationBuild a Windows Azure Pack lab using PDThttp://www.systemcentercentral.com/build-windows-azure-pack-2013-lab-using-pdt/

Build a Windows Azure Pack lab using PDT (revisited)http://www.systemcentercentral.com/build-a-windows-azure-pack-2013-lab-using-pdt-revisited

Installing System Center Agents with PowerShell DSC http://www.systemcentercentral.com/installing-system-center-2012-agents

Configuring ADFShttp://blogs.technet.com/b/privatecloud/archive/2013/12/18/federated-identities-to-windows-azure-pack-through-ad-fs-part-3-of-3.aspx

Additional Resources

Remote Consolehttp://technet.microsoft.com/en-us/library/dn469415.aspx http://www.systemcentercentral.com/how-to-add-rd-gateway-for-remote-console-to-spf-without-wap/ http://www.miru.ch/troubleshooting-windows-azure-pack-console-connect/

Configuring ADFShttp://blogs.technet.com/b/privatecloud/archive/2013/12/02/federated-identities-to-windows-azure-pack-through-ad-fs-part-1-of-3.aspxhttp://blogs.technet.com/b/privatecloud/archive/2013/11/27/federated-identities-to-windows-azure-pack-through-ad-fs-part-2-of-3.aspxhttp://blogs.technet.com/b/privatecloud/archive/2013/12/18/federated-identities-to-windows-azure-pack-through-ad-fs-part-3-of-3.aspx

Additional Resources

VM Role Template Tools and Resources VM Role Authoring Tool https://vmroleauthor.codeplex.com/

Gallery Resource Import Tool http://gallery.technet.microsoft.com/Gallery-Resource-Import-2273ce71

WAP VMRole Gallery Items for Database Workloads http://blogs.technet.com/b/privatecloud/archive/2014/01/15/windows-azure-pack-vmrole-gallery-items-for-database-workloads.aspx

Additional Resources (cont)

Troubleshooting Troubleshooting Installation of Windows Azure Packhttp://blogs.technet.com/b/privatecloud/archive/2013/11/06/troubleshooting-installation-and-configuration-of-windows-azure-pack.aspx

Troubleshooting Installation & Configuration of Windows Azure Pack – An Introductionhttp://blogs.technet.com/b/privatecloud/archive/2013/11/05/troubleshooting-configuration-of-windows-azure-pack.aspx

Web Sites Cloud Troubleshootinghttp://technet.microsoft.com/en-us/library/dn554319.aspx

Additional Resources (cont)

Session Summary

WAP Architecture and Planning Streamlining Setup & Configuration Troubleshooting When Things Don’t WorkUsage Reporting ITSM Integration Automation and Lifecycle Management

Breakout SessionsDCIM-B304 Using Windows Azure Pack to Bring the Cloud On-PremisesDCIM-B317 Lessons Learned: Designing and Deploying the Windows Azure Pack in the Real-WorldCIM-B334 In-Depth Introduction to Service Management Automation

Related content

LabsDCIM-H317 Windows Azure Pack: IaaS Management DCIM-H319 Windows Azure Pack: Service Management AutomationDCIM-H318 Windows Azure Pack: Installation and Configuration

Come Visit Us in the Microsoft Solutions Experience!

Look for Datacenter and Infrastructure ManagementTechExpo Level 1 Hall CD

For More InformationWindows Server 2012 R2http://technet.microsoft.com/en-US/evalcenter/dn205286

Windows Server

Microsoft Azure

Microsoft Azurehttp://azure.microsoft.com/en-us/

System Center

System Center 2012 R2http://technet.microsoft.com/en-US/evalcenter/dn205295

Azure PackAzure Packhttp://www.microsoft.com/en-us/server-cloud/products/windows-azure-pack

Resources

Learning

Microsoft Certification & Training Resources

www.microsoft.com/learning

msdn

Resources for Developers

http://microsoft.com/msdn

TechNet

Resources for IT Professionals

http://microsoft.com/technet

Sessions on Demand

http://channel9.msdn.com/Events/TechEd

Complete an evaluation and enter to win!

Evaluate this session

Scan this QR code to evaluate this session.

© 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.