The document discusses IBM's Cloud Paks and multicloud management capabilities. It introduces Cloud Paks as enterprise-ready cloud software solutions that are containerized, certified, and can run on private and public clouds. It then summarizes the key capabilities of several Cloud Paks for applications, data, integration, automation, and multicloud management. It positions IBM as providing solutions for building, deploying, integrating, analyzing, automating, and managing applications and infrastructure across hybrid and multicloud environments.
Payment Gateway Testing Simplified_ A Step-by-Step Guide for Beginners.pdf
IBM Multicloud Management on theOpenShift Container Platform
1. Application Portability
Deploy applications in a consistent
manner across multiple clouds
(increase velocity)
IBM Multicloud
Management on the
OpenShift Container
Platform
Michael Elder
IBM Distinguished Engineer
IBM Multicloud Platform
@mdelder
Security & Compliance
Automate the enforcement of
regulatory controls across all
clusters, and simplify audits
1
Themes
2. 2
Next Generation Hybrid Multicloud Platform
Foundation
Infrastructure
Advise Move Build Manage
Certified
Offerings
Open Hybrid
Multicloud
Platform
Common Services
OpenShift
Multi-cluster Management
RHEL
Cloud Paks
Applications Data Integration Automation
Multicloud
Management
Services
2IBM Confidential
IBM Cloud
Systems
IBM Power & Z
Edge
Private
5. Certification Characteristics
IBM Cloud Pak
Built from IBM Containerized SW products.
Delivers a unified experience for a well-defined
use cases.
• Single install path
• Adds additional IP not available outside the Solution Pak
• Embeds ICP Foundation
• Single, unified experience
• And, all features of IBM enterprise grade certified container SW
Certified Container
Standard for building enterprise-grade,
container software. Delivers a “product
edition” integrated with a platform.
• Production Grade topologies
• Secure from the start, managed over time (image and workload)
• Lifecycle Managed / Upgradable
• Integrated with platform services
• Open Deployment Technologies - Helm (+ operators/brokers)
• Multi Platform / Multi Cloud
• Governed for best practices
• And, all features of Red Hat image certification
Red Hat Certification for Containers
Red Hat based images to be certified on to be
officially supported on OCP
Help ensure that applications (images) are built
and packaged according to Red Hat's
recommended practices.
• Red Hat based images
• Secure / Individual images
• Compliant with Red Hat base image best practices (tags, labels, layers)
• Partner managed health of images
• Partner managed to “up to date” and manage vulnerabilities
7. IBM Multicloud Management
Application
Lifecycle
How are containers built,
packaged, and deployed
across all clouds?
How are conditional gates
enforced with tamper-proof
controls?
How do applications scale
from zero to right-sized on
demand to conserve
resources and costs?
Data
Lifecycle
How is data preserved and
restored based on system
failures?
How is data moved to the
right location across a hybrid
architecture?
How are machine learning
models trained and then
continuously delivered to the
right points of presence?
Security &
Compliance Lifecycle
How is identity managed across a
hybrid architecture?
How are the overall compliance
and risk management controls
enforced and audited?
How are keys and certificates
managed for access and
revocation?
Cluster
Lifecycle
How are clusters created,
scaled up or down, and
retired?
How are nodes within the
cluster kept up to date with
the latest operating system
and Kubernetes patches?
How are costs and tenancy
associated with clusters
maintained?
8
9. IBM Multicloud Management
IBM Cloud Pak for Multicloud Management
Application-centric Management
Deploy, upgrade, and manage applications with
consistency across multiple clouds
Policy-Based Governance
Enforce policies and ensure compliance across
clusters, applications and infrastructures
Cluster Lifecycle Management
Manage cloud-native and traditional VM
environments together as your enterprise evolves
Event
Management
Infrastructure
Management
Application
Management
Multicluster
Management
Existing Tools & Processes Security & Compliance
Management
12
11. IBM Multicloud Management
Search through all
clusters based on a
simple query language
Identify potential
impact when planning
changes or diagnose
root causes when
things don’t go as
expected
Multicloud
Visibility
14
12. IBM Multicloud Management
Extend the community app
model with notions of
channels (git, Object Store,
Helm, etc.) and subscriptions
(built-in platform native
continuous delivery of apps)
Declarative placement engine
to distribute apps across your
cluster ecosystem
Aligned health information,
incident management, and
event management around
each application
Application
& Topology
15
13. IBM Multicloud Management
16
Simplified Monitoring
Latency
The time it takes to
service a request
Traffic
Demand being placed
on the system
Errors
Trend view of request
error rate
Saturation
View of utilization
against max capacity
Learn from the SRE discipline
– and focus on the golden
signals
Golden signals are a common
language to monitor across
technologies and clouds,
simplifying communication
and troubleshooting
Direct measure of end user
experience, making it clear
when an important issue
occurs
Waste less time reacting to
unclear or unnecessary alerts
14. IBM Multicloud Management
17
Declarative policies based on
OpenShift operator pattern
Deep visibility for auditing
configuration of apps and
clusters
Unique policy capabilities
around CIS compliance,
detecting unexpected pod
mutations, etc.
Categorize violations based
on your standards, for
immediate visibility into your
compliance posture
Security
& Compliance
15. 19
Manage infrastructure as
code
Operationalize with ‘Git’
Fully scriptable REST API
interface for use with
CI/CD toolchains
Apply custom
configurations to
templates with shared
data objects
Scale efficiently to 1000’s
of VMs
(1) https://www.terraform.io/docs/providers/index.html
(2) Ansible, Chef, Puppet, SaltStack, UrbanCode Deploy
Infrastructure
Automation
16. 20
Cloud Event Management Overview
IBM Multicloud Management
Monitoring, Logging, Config, Automation tools
Incident A
Incident B
Incident C
Incident D
Incident E
Step 1
Step 2
Step 3
Step 4
Prioritized Incidents
Runbook
Line of Business Team Central IT Operations
DevOps Leader DevOps Engineer Site Reliability Engineer,
IT Architect
First Responder
More on Cloud Paks…
Software capabilities aligned to use cases – built on containers & kube – takes out 2/3 of the complexity to deploy, run & manage the SW.
You can envision where this is going – the Cloud Pak layer will extend to more domains over time …… Security, IOT, Weather, …
Let’s bring this home to Security ….
Multicloud – private and public
Multimodal – VMs, containers, cloud native services,
But not everything is containers, your cloud management platform also needs infrastructure automation and management capabilities
Infrastructure as code
GitOps – manage infrastructure definitions through dev, test, staging, prod
Declarative cloud description language
Able to share replicate environments across your development teams exactly
Multicloud, multi architecture
Unified process that works the same in all clouds
Handle containers, VMs, cloud native services, network, and storage
Centrally managed, multitenant