More Related Content Similar to Simplifying Microsoft Architectures with AWS Services (20) More from Amazon Web Services (20) Simplifying Microsoft Architectures with AWS Services 1. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Artur Rodrigues
Sr. Solutions Architect, Amazon Web Services
Simplifying Microsoft Architectures with
AWS Services
2. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Challenge
• Can AWS further simplify the infrastructure environment that I already know?
• Active Directory?
• Corporate applications
• Office 365
• Exchange
• SharePoint
• Dynamics
• System Center
• SQL?
• How do I deploy all of this?
• Any good migration suggestions for simplifying my Microsoft workloads?
• Can AWS help me simplify my legacy .NET architecture?
• I want to innovate!
• I want to use the latest architectural concepts and platforms!
• I want an efficient, fully supported CD/CI!
• Can AWS simplify the management of my Windows workloads?
3. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Innovation for Windows on AWS
62
42
774
instance types, 14 instance families
different AMIs for Windows workloads
Windows ISV listings
inAWS marketplace
Windows Deep Learning AMI
Hyper-V support in SMS
Application-consistent Snapshots through VSS
WS 2008 & SQL Server 2008
Visual Studio Toolkit
Microsoft SCOM plug-in release
AWS Directory Service
EC2 Dedicated Hosts (BYOL)
Microsoft SharePoint 2016 (Marketplace)
Windows Server 2008 R2
SQL Server 2008 R2
Windows Server 2003
.NET SDK
Microsoft SCVMM Plug-in
Windows Server 2012
SQL Server 2012
AWS Tools for Windows PowerShell
Amazon RDS adds SQL Server
EC2 Run Command
EC2 Systems Manager
Windows Server & SQL Server 2016
EC2 Dedicated Instances (BYOL)
.NET on Lambda
NEW!
SAP instance on AWS 2012
Trusted Advisor
checks for Windows
SQL Server 2017
X-Ray .NET SDK
2008
Windows for Lightsail
Innovation
Today
SQL Server 2005
4. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify Infrastructure Environment
5. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon Virtual Private Cloud (VPC) Design Patterns:
Single VPN—Multi-VPC
Shared Services VPC
Transit VPC
6. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Private subnetPrivate subnet
Availability Zone 2
San Francisco
DC1
VPN / Direct
Connect
Availability Zone 1
DC3
Cost 10
• New Active Directory sites configured in each AZ
• Domain Controllers on Amazon Elastic Compute Cloud
(Amazon EC2) Windows servers
• AD site-link costs correctly configured
DC4
AD Domain: amazon.com
AD Replication
AD Site: AwsEastAZ1
AD Domain: amazon.com
AD Site: AwsEastAZ2
Cost 50
New York
AD Domain: amazon.com
AD Site: SanFran
DC2
AD Domain: amazon.com
AD Site: NewYork
AD Pattern: Extending Active Directory Domain to AWS
Corporate Network
7. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Private subnetPrivate subnet
Availability Zone 2
San Francisco
DC1
VPN / Direct
Connect
Availability Zone 1
• Identities mastered on premises;
• Forest Trusts configured between on-premises
Active Directory and AWS Directory Service for
managed Active Directory
AD Domain: Domain A
AD Authentication
AD Domain: Domain A
Cost 50
New York
AD Domain: Domain B
AD Site: SanFran
DC2
AD Domain: Domain B
AD Site: NewYork
AD Trust
DC1 or DC2 or
AD Pattern: Forest Trusts
Corporate Network
8. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Private subnetPrivate subnet
Availability Zone 2Availability Zone 1
Federated
Trust
San Francisco
DC1
Cost 50
New York
AD Domain: amazon.com
AD Site: SanFran
DC2
AD Domain: amazon.com
AD Site: NewYork
Internet
ADFS2
ADFS1
AD Domain: Domain A
• Identities mastered on premises;
• Federated Trust (AD FS) configured between
on-premises Active Directory
DC1 or
ADF
S1
AD Domain: Domain A
DC2 or
ADF
S2
AD Pattern: Federated Trust
Corporate Network
9. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Share your Directory
• Tightly integrated with
AWS Organizations
• Share single directory
with other trusted AWS
accounts within the
same organization
• Share the directory with
other AWS accounts
that are outside your
organization.
10. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
User identity federation with AWS IAM
Active Directory Users
Enterprise
applications
Corporate
systems
IAM
IAM roles
EC2
Amazon
DynamoDB
S3
11. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Options for Deploying SQL Server on AWS
Amazon RDS for SQL
Server
SQL Server on Amazon EC2
Customer-managedAWS managed
Power, HVAC, net
OS Install/Maintenance
OS Patching
DBMS Install/Maintenance
DBMS Patching
Database Backups
High Availability
Scaling
Power, HVAC, net
OS Install/Maintenance
OS Patching
DBMS Install/Maintenance
DBMS Patching
Database Backups
High Availability
Scaling
• Consider Amazon
RDS first
• Focus on business
value tasks
• High-level tuning
tasks
• Schema
optimization
• No in-house
database
expertise
• Need full control over
DB instance
• Backups
• Replication
• Clustering
• Options that are not
available in
Amazon RDS
12. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Multi-Availability Zone Always On Availability Group
https://aws.amazon.com/quickstart/architecture/sql/
14. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify Infrastructure Deployment
15. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Template AWS CloudFormation Stack
JSON/YAML formatted file
Parameter definition
Resource creation
Configuration actions
Configured AWS resources
Comprehensive service support
Service event aware
Customizable
Framework
Stack creation
Stack updates
Error detection and rollback
AWS CloudFormation—Components and Technology
16. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Quick Starts https://aws.amazon.com/quickstart/
17. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify Migration
18. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Migration Tools from AWS and Partners
Data transfer
AWS Storage and
File Gateway
Amazon S3
Transfer
Acceleration
AWS Direct
Connect
Amazon Kinesis
Data Firehose
AWS Snowball
and
AWS Snowmobile
AWS Database
Migration Service
Server and database
migrations
AWS Server
Migration Service
Application
monitoring/profiling
Amazon
CloudWatch
AWS Config
Discovery and planning
AWS Application
Discovery Service
19. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Server Migration Service Overview
• Support VMware virtual machine
migration (support for additional
hypervisors coming soon)
• Agentless VM migration
• Capture incremental change made
to on-premises VMs and
automatically transfer to AWS
• Migrate a group of VMs
simultaneously and orchestrate
multiple migrations
• AWS Management Console and
API/CLI access
Source: on-premises
server
AWS Server Migration
Service
Target: Amazon Machine
Image
20. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Tracking Status Made Easy
21. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify .NET Development
22. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Running AWS Toolkit for Visual Studio
23. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS DevOps Portfolio
AWS CodeCommit
AWS CodeDeploy
AWS CodePipeline
Software Development and
Continuous Delivery Toolchain
AWS CloudFormation
AWS OpsWorks
AWS Config
Infrastructure
as Code
Amazon CloudWatch
AWS CloudTrail
Monitoring
& Logging
AWS Elastic Beanstalk
Platform
as a Service
AWS CodeBuild
AWS CodeStar
24. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
CI/CD Pipeline
Continuous integration/continuous deployment
25. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS CodeStar
26. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
VSTS tools
• Where do I get them?
https://aws.amazon.com/vsts
https://marketplace.visualstudio.com/items?itemName=AmazonWebServices
.aws-vsts-tools
• Open source
https://github.com/aws/aws-vsts-tools
27. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New tasks!
Amazon ECR
Systems Manager
Parameter Store
• Push Docker image to Amazon EC2
Container Registry
• New general-purpose AWS Lambda
deployment task
• Previous task targeted at .NET
Core-based functions and
serverless applications
• Supports deployment of functions
for all supported Lambda runtimes
• Read parameter values from store
into build variables
• Run command remotely against
Amazon EC2 and on-premises fleet
AWS
Lambda
Deployment
Systems Manager
Run Command
28. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify .NET Architecture
29. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
.Net Core
• .NET Core is the future of .NET
• .NET Core is x-platform: Linux, Mac OS X, Windows
• .NET Core is modular, lightweight and open-source (on Github)
• .NET Core runs in AWS Lambda, AWS Fargate, Amazon ECS, Amazon
EKS, Amazon EC2
• Customers have in-house skills, tools & experience w/.NET
• Performance – .NET Core performs faster than Node.js in numerous
tests, and is generally faster than .NET Framework
• “I’ve always loved C#... It’s a truly modern language”
- Werner Vogels, CTO, Amazon
30. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Cognito + Custom Authorizer for Controllers
Options for using Cognito groups for authorization with MVC & Web API
• Use API Gateway w/integrated Cognito Authorization
• Use new ALB Cognito Authorization feature
• Custom authorization-handler in C#
31. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Simplify Management
32. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Systems Manager Capabilities
Run Command
Maintenance
Window
Inventory
State Manager Parameter Store
Patch Manager
Automation
Deploy, configure,
and administer
Track and
update
Shared
capabilities
33. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Managing Your Environment: RD Gateway
34. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Managing Your Environment: AWS Systems Manager
Availability Zone
Web security group
Private subnet
Accept traffic from
SSM
WEB2
WEB1
AWS administrator
Corporate data center
EC2 Systems Manager
Amazon S3
bucket
SNS topic CloudWatch metric
IAM
policy
35. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon CloudWatch and CloudWatch Logs
• Monitor EC2 metrics
(CPU, disk usage, and so
on)
• Monitor AWS resources
(EBS volumes, Elastic
Load Balancers, and so
on)
• Monitor logs and
configure alerts
• Store logs and perform
analytics
Availability Zone
S SharePoint
Front-end
SQL Server Domain
Controller
CloudWatch /
CloudWatch Logs
Amazon Kinesis
Amazon
S3
Amazon
Redshift
AWS
Lambda
Availability Zone
S SharePoint
Front-end
SQL Server Domain
Controller
CloudWatch /
CloudWatch Logs
Email
Amazon
SMS
Workflow
CloudWatch
Alarms
36. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Cost Optimization Monitor
https://docs.aws.amazon.com/solutions/latest/cost-optimization-monitor/welcome.html
37. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New programs that highlight AWS trusted partners
Elite AWS Partner Network partners with demonstrated
technical proficiency and proven customer success in
supporting Microsoft Workloads on AWS
• Rigorous audits; multiple customer references
• Introducing a new competency category focused on
Application Modernization
38. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Thank you
Rate my session.
https://amzn.to/ottawa-sessions
Track: Spotlight
Session: 2:10 PM - Simplifying Microsoft Architectures with AWS
Services
How did we do?
https://amzn.to/ottawa-summit
Editor's Notes MAP - Migration Acceleration Program
MRP - Migration Readiness and Planning .NET Framework, runtime and thousands of assemblies, was created as Windows only.
.NET Framework is monolithic – the runtime and thousands of assemblies had to be installed to run even a trivial app. It’s large.
Eventually there were some open-source implementations that ran on Linux, like Mono
Probably not coincidentally, after Steve Balmer left Microsoft, the next generation of .NET, and ASP.NET was developed as open-source software. It’s on Github. It’s not shadowed on Github, or copied to Github, it’s actually developed on Github.
.NET Core is modular – it consists of a lightweight runtime, and all the assemblies are packages on NuGet, a package manager conceptually similar to Yum, but popular with .NET projects, and it’s integrated into Visual Studio.
Since .NET Core is cross-platform, it runs on the full spectrum of AWS compute offerings – serverless, containers, instances.
Note: C# was originally created in large part by Anders Hejlsberg, the original author of Turbo Pascal.