Infrastructure as Code in Large Scale Organizations

1. | © Digital.ai.2020© Digital.ai.2020 Infrastructure as code in large scale organizations Matthias Zieger Sales Engineering and Consulting mzieger@digital.ai

2. | © Digital.ai.2020 Agenda Introduction Challenges Provisioning / Deployment / Orchestration Demo Wrap Up

3. | © Digital.ai.2020 Leader in DevOps Application Release Orchestration & Deployment Automation Combining technology leaders to: 3 • Connect pipelines • Measure outcomes • Maximize business impact • Deliver secure digital experiences your customers trust Leader in Value Stream Management & Enterprise Agile Planning Leader in In-App Protection & App Management Solutions

4. | © Digital.ai.2020 500+ Employees Worldwide 1500+ Global Enterprise Customers 5 Billion+ Application Endpoints Protected Global Team in NA, Europe & APAC $1 Billion Investment + “Fortune 10” Backing Proven Industry Leader ARO VSM EAP APP SEC Info Security 4

5. | © Digital.ai.2020 Innovate Impact Build Commit Deployment Automation Release Orchestration Strategies Portfolios Epics Features App Protect System Of RecordVisualization Data Analytics Security Value Streams 5 Connecting people/teams, tools, and processes Real-time App Performance/Threat Data & Customer Feedback Work Item & Code Test Stage Deploy Operations Strategic Planning In-App Security

6. | © Digital.ai.2020 Definition • Infrastructure as code (IaC) is the process of managing and provisioning computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools.[1] The IT infrastructure managed by this comprises both physical equipment such as bare-metal servers as well as virtual machines and associated configuration resources. The definitions may be in a version control system. It can use either scripts or declarative definitions, rather than manual processes, but the term is more often used to promote declarative approaches. Source: Wikipedia 6 Infrastructure as Code

7. | © Digital.ai.2020 7 Challenges A digital world you can trust.

8. | © Digital.ai.2020 8 What are “large scale organizations” ? • Many environments/stages between DEV and PROD (typical 3-5) • Many types of architectures, applications and infrastructure on hypbrid/multi cloud envs. • applications x environments x delivery frequency = {a large 6 – 7 figure number} • Growing complexity towards PROD • Example: 4000 Applications on ca. 20K Servers , everything from old Mainframe up to latest Cloud and Container Services and everything in between, different release cadences from CI/CD over daily to quarterly PROD deployments • Also: Loosely coupled - but dependencies are still present - also between „new“ and „old“ world systems

9. | © Digital.ai.2020 What challanges did we observe ? Security: How can I control who can create or modify the infrastructure of each environment? How do we manage secrets ? Auditability: WHO made that change, WHEN, HOW and WHY? Configuration Management: How can I manage the specific configurations of each environment ? Organizational Scalability: How can I manage the hundreds or thousands of scripts I have in my organization ? Dependencies: How can I manage dependencies between organization-wide change requests in different tools ? Integrity: Why do I have to use two completely different approaches to provision infrastructure and deploy software on that infrastructure? How do I integrate both flows as if they were one? Compliance: How can I guarantee that the corporate process defined for dealing with supply requests is followed, guaranteeing that all necessary approvals are obtained or that the CMDB is always kept up-to-date? Visibility: How can I get immediate information on the status of a provisioning request ? 9

10. | © Digital.ai.2020 OpsDev IT value chain Businesscapabilities Specialistteam(e.g.,productmanager) Specialistteam(e.g.,UXexpert) Specialistteam(e.g.,developer) Specialistteam(e.g.,QAexpert) Specialistteam(e.g.,sysadmin) Specialistteam(e.g.,DBA) … Silos are amplifying those issues !

11. | © Digital.ai.2020 Resulting in an inability to make informed business decisions as a team 11 What is the issue with siloed organizations ? • Reduce defects by 15% • Improve UX interface • Add 10 high-priority features • Improve app security • Decrease release time by 50% ✘ Siloed teams for Infra, App Dev, Deployment and disconnected hand-offs & disparate tools ✘ Development has limited visibility into business KPIs ✘ Business has limited visibility into development & delivery KPIs ✘ No awareness of application threat landscape Typical Application Delivery Goals Application Delivery Challenges Business Goals • Improve profitability • Increase retention rate • Improve acquisition rate • Reduce risk & costs • Protect IP

12. | © Digital.ai.2020 OpsDev IT value chain Businesscapabilities Cross-functional product team … Cross-functional product team Cross-functional product team Cross-functional product team DevOps organization – the non-economical approach

13. | © Digital.ai.2020 DevOps at large scale organizations 10% 2016 202020122008 Tactical DevOps Strategic DevOps Siloed Point Tools Economics of scale

14. | © Digital.ai.2020 OpsDev IT value chain Businesscapabilities Cross-functional product team … DevOps IT organization (optimized) Cross-functional product team Cross-functional product team Cross-functional product team Platformteam SelfServiceandAPIdriven

15. | © Digital.ai.2020 15 Positioning Provisioning Deployment Orchestration A digital world you can trust.

16. | © Digital.ai.2020 Development Test Acceptance Production App B V 3.3 App B V 3.2 App B V 3.1 App B V 3.0 Development Test Acceptance Production App A V 2.0 App A V 1.2 App A V 1.1 App A V 1.0 Multi Pipeline Continuous Integration Infrastructure Provisioning and Configuration Automated deploy Artefact Repo Infrastructure requests Developer input/output Provisioning / Deployment / Orchestration Secrets

17. | © Digital.ai.2020 Hypothesis • Questions to clearify • Compliance, Auditability • IT SM Integration • Central Configuration and Paramer Management • Integrate Secret Management • Organizational Scalability • Business and technical dependencies beetwen Infra, Apps, Products • Visibility Aka full stack deploy + release 17 Provision Infra + Deploy App + Orchestrate Release with the same DevOps Platform

18. | © Digital.ai.2020 Tools in action

19. | © Digital.ai.2020 Terraform • Produced by Hashicorp • Purpose • Use Infrastructure as Code to provision and manage any cloud, infrastructure, or service • 2 Versions: • Open Source (TF/OSS) , interaction using the terraform command line • Enterprise (TFE), interaction using GUI & REST API, it provides RBAC • In the same area… • AWS Cloudformation, Azure Template (ARN),

20. | © Digital.ai.2020 Ansible • Produced by RedHat/IBM • Purpose • provision and configure infrastructure • 2 Versions: • Open Source , interaction using the ansible-playbook command line • RedHat Tower, interaction using GUI & REST API, provides RBAC • In the same area… • Chef, Puppet, Powershell DSC, Salt stack etc.

21. | © Digital.ai.2020 XL Deploy • Produced by Digital.ai • Purpose • Deploy any kind of applications on any kind of environments • Features: • Declarative approach for App Deployment and Infrastructure Provisioning by integration of • Terraform (OSS + Enteprise) • Ansible (Client + Tower), Chef, Puppet, Salt • CloudFormation • Helm, K8s Native, openShift • AWS, Azure, Google Cloud + managed Container Platforms • Generate the deployment plan based on rules (no scripting needed) • Agentless solution • Interaction using GUI & REST API & Command Line, provides RBAC

22. | © Digital.ai.2020 XL Release • Produced by Digital.ai • Purpose • Orchestrate, connect & Automate multiple delivery pipelines • Features: • Multi-Pipeline/Release Management • Full Tracability Dev to Production. • Real-time integration with Product & Infrastructure Management • Jira, VersionOne, ServiceNow,… • interaction using GUI & REST API & Command Line, provides RBAC

23. | © Digital.ai.2020 Development Test Acceptance Production App B V 3.3 App B V 3.2 App B V 3.1 App B V 3.0 Development Test Acceptance Production App A V 2.0 App A V 1.2 App A V 1.1 App A V 1.0 Multi Pipeline Continuous Integration Infrastructure Provisioning and Configuration Automated deploy Artefact Repo Infrastructure requests Developer input/output Provisioning / Deployment / Orchestration Secrets

25. | © Digital.ai.2020 Wrap up – what we have just seen ? 1. Cloud Provisioning 2 Virtual Machines using Terraform (AWS) 2. Infrastructure Provisioning Middleware using Ansible (Tomcat, MySQL) 3. Deploy the application using XLDeploy 4. Provisioning Release Template connected with ServiceNow using XLRelease 5. Continuous Deployment wit Release Templates orchestrating ALL steps. 6. Compliance and Audit Reporting

26. | © Digital.ai.202026 Software delivery Release orchestration and deployment automation together with IaC Build Commit Deployment Automation Release Orchestration Work Item Test Stage Deploy Operations Any application, anywhere Cloud, on-premises, hybrid, legacy, mainframe, mobile, containers, micro-services Dashboards and reporting Technical and non-technical users across the organization see the same data Enterprise scalability Solutions that scale to meet your business needs; no scripting required Reduced risk Identify bottlenecks, reduce errors and lower the risk of release failures End-to-end visibility Know the status of each release step Use existing tools Hundreds of supported integrations of best-of- breed solutions Developer self-service Enable self-service deployment while maintaining governance and control Standardized release process Automate the entire release pipeline (not only dev, integrate Infra as well)

27. | © Digital.ai.202027 Advantages Model-based approach Eliminates scripting or brittle workflows. XebiaLabs’ highly acclaimed deployment modeling is simpler, more scalable and incredibly time-saving Dual-mode DevOps Easy to use UI for less technical team members or release-as-code and APIs for developers DevOps from containers to hybrid clouds to mainframe Bring DevOps methods to all apps no matter what the technology – public, private and hybrid cloud, container, microservices, mainframe, and web Agentless architecture No need to install proprietary agents: simple rollout, more security, and ready for IoT Unify Provisioning, Deploy and Orchestration Built from the ground up to support enterprise teams, including push-button rollbacks, reliable global deployments, dependency management, distributed teams, and much more Open Continuous Delivery platform Ties together all of the tools in the software delivery pipeline. Vast plugin library for easy integration with Jenkins, Chef, Puppet, ServiceNow, and many more. Export and share data between tools Designed to manage people, processes, and tools Support for both automated and manual tasks. This flexibility allows organizations to maximize their Continuous Delivery process across all people, processes and tools Clear dashboards, detailed analytics, powerful reports Actionable intelligence across the entire software delivery process for real-time decision support

28. | © Digital.ai.2020 Measure outcomes and deliver secure experiences your customers trust To learn more, visit us at digital.ai

30. | © Digital.ai.2020 • https://xebialabs.com/integrations/ • https://docs.xebialabs.com/#get-started • Community (open source plugins): • https://github.com/xebialabs-community • https://community.xebialabs.com/ • Free full functional trial: https://xebialabs.com/trial/ • https://docs.xebialabs.com/v.9.6/xl-deploy/concept/xl-deploy-terraform-plugin/ • https://github.com/bmoussaud/xld-terraform-enterprise-plugin • https://github.com/xebialabs-community/xldeploy-ansible https://github.com/xebialabs-community/xlr-ansible-tower-plugin • https://github.com/bmoussaud/xl-ansible-terraform-demo Links

32. | © Digital.ai.2020 • Dashboards • Security / Compliance • Automated Audits • Value Stream Metrics • Predictive Analytics (AI/ML) DEPLOYMENT AUTOMATION Digital.ai Enterprise Value Stream Platform System of Record and Intelligence for the Software Development and Delivery Lifecycle Business Value Stream ENTERPRISE AGILE PLANNING strategies portfolios epics features APP PROTECT Common DevOps Data Model Business Outcomes Concept work item …… IN-APP SECURITY SECURITY MONITORING AND INTELLIGENCE (AI/ML) RELEASE ORCHESTRATION Development Value Stream Release Value Stream

Infrastructure as Code in Large Scale Organizations

Estás leyendo una previsualización.

Eche un vistazo a continuación

Infrastructure as Code in Large Scale Organizations

Más Contenido Relacionado

Presentaciones para usted (20)

Similares a Infrastructure as Code in Large Scale Organizations (20)

Más de XebiaLabs (16)

Más reciente (20)