This document provides examples of hybrid cloud architectures and scenarios. It describes using a hybrid cloud approach for encrypted backups, replication between two sites, orchestrated recovery in the event of an outage, and remote access through a VPN. Specific solutions mentioned include System Center, Hyper-V, StorSimple, and Azure. The document also discusses migration strategies for different types of servers and applications to a hybrid cloud model.
2. Hybrid Cloud Scenarios
Encrypted Backup
VPN
Recovery
Windows Backup
SC Data Protection Manager
Microsoft Azure
Site A Replication
Site A Site B Hyper-V
System Center
Virtual Machine
Manager
Recovery
plan
Health Monitor
System Center
Virtual Machine
Manager
Replica
Orchestrated Recovery in case of outage
Manage
Site B
System Center
Virtual Machine
Manager
Recovery
Microsoft Azure
Microsoft Azure
VPN
Remote Users
Admin
3. Hybrid Cloud Scenarios
File / Application
Servers
• Live Backups, Archives,
and Disaster Recovery
• Dramatic Cost Reduction
• No Changes to Application
Environment
File / Application
Servers
• File share with integrated
data protection
• All-in-one primary data +
backup + live archives + DR
with de-duplication &
Compression
Most
Active Data
on SSD
Encrypted Policies Automated
• SharePoint storage on
StorSimple + Azure
• StorSimple SharePoint
Database Optimizer
• Improved performance &
scalability
• Control Virtual Sprawl
• Cloud-as-a-tier
• Offload storage footprint
• VMware Storage DRS Storage
pools
• Virtual Machine Archive
• Regional VM Storage
• Storage for Tier 2 – 3 SQL
Databases
• Integrated Backup,
Restore & Disaster
Recovery
StoreSimple
Archive Data
Benefits
• Consolidates primary, archive,
backup, DR thru seamless
integration with Azure
• Cloud Snapshots
• De duplication
• Compression
• Encryption
• Reduces enterprise storage TCO by
60–80%
Warm data
on SAS
Local Tier
Encrypted Backup
Recovery
De duplicated
De duplicated
& Compressed
De duplicated, Compressed &
Encrypted
VPN
Microsoft Azure
4. Hybrid Cloud Scenarios
Availability Set
Load
Balancing
Auto
Scaling
Tier 1
Tier 2
Availability Set
Auto
Scaling
SharePoint
Tier 3
Availability Set
Azure
Storage
SQL
Azure
Analytics
& Reporting
VPN
VPN
Web
Site
Mobile
Service
HDInsight
(Hadoop)
Virtual
Machines
VHD
Storage
BLOB
Storage
Table
Storage
Queue
Microsoft Azure
Cache
Microsoft Azure
CDN
Microsoft
Azure AD
Notification Hub
Microsoft
Azure SDK
Developers
Users
On Premises
Microsoft Azure
Connected Devices
Collect / Decode
Load
Balancing
Auto
Scaling
Worker
Roles
INGRESS NODES
ANALYTICS NODE
Filter / Analyze / Aggregate
Record Reporting / BI
Auto
Scaling
Worker
Roles
Azure
Storage
CONSUME
Azure
Storage
SQL
Azure
Analytics
& Reporting
Microsoft Azure
5. Hybrid Cloud Scenarios
Enterprise Mobility Suite
• Hybrid Identity Management
• Mobile Device Security& Management
• Mobile Application Management
• Strong Authentication & Access based Information
Protection
Consumer identity
providers
PCs and devices
Microsoft apps
Custom ISV/CSV apps
LOB apps
3rd party clouds/hosting
Encrypted Synchronization
Microsoft Azure AD
Multi-Factor ADFS / SAML
Authentication
Server
Multi-Factor
Authentication
Server
Corporate devices
On Premises
Applications
BYOD / Personal
devices
.NET, Java, PHP, …
• Built-in
• SDK for integration
• Strong multi Factor Authentication
• Real Time Fraud Alert
• Reporting, Logging & Auditing
• Enables compliance with NIST 800-63
Level 3, HIPAA,
PCI DSS, and other regulatory
requirements
Microsoft Azure AD
6. SQL Server Hybrid Cloud Scenarios
Publish
Compare
Sync
Import / Export
Register / Unregister
Management Portal
VPN Dispersed Teams
Microsoft Azure
SQL Backup tool for legacy
Manual Console Backup
Managed Backups
Management Portal
VPN / Encrypted Data
Microsoft Azure
Primary Asynchronous Commit Secondary
VPN
Console 2014 / Scripts 2012
Backup
Availability Groups
Periodic Snapshots
Geo Replication
Disaster Recovery
Powering BI Apps
Microsoft Azure
7. File / Application
Servers
For example:
• AD
• File server
• DNS
• DHCSP
• WSUS
Web Server 3rd Party App
Server
Migration scenario 1
Uses default roles &
features provided by OS
Used as a web application
server
Uses 3rd party solution atop
OS
Used as a database server
Migration scenario 2
Migration scenario 3
Migration scenario 4
Database
Servers
Windows Server 2003 EOS
Windows 2003
Physical or Virtual
Server
For example:
• IIS + .Net
• Java WAS + J2EE
For example:
• Custom software
• ERP
• CRM
Tools for Migration:
• Windows Server
Migration Tool (WSMT)
• Migration Guides
Tools for Migration:
• Web Deploy 3.5
In Azure, Consider Using:
• Active Directory Premium
• IaaS
• Azure Storage
• ExpressRoute or VPN
For example:
• SQL Server
• Oracle
• MySQL
Tools for Migration:
• MAP Toolkit
• SQL Server Migration
Assistant (SSMA)
Tools for Migration
• Follow the 9 Step Migration
Process
• Leverage MCS & Partners
(AppZero, Vision Solutions)
Methods:
• Refactor
• Revise
• Replace/Retire
Methods:
• Rehost
• Refactor
• Replace/Retire
Methods:
• Revise
• Rebuild
• Replace/Retire
Methods:
• Refactor
• Revise
• Rebuild
• Replace/Retire
In Azure, Consider Using:
• Active Directory Premium
• Azure Web Sites
• IaaS
• ExpressRoute or VPN
In Azure, Consider Using:
• Active Directory Premium
• IaaS
• Office 365
• CRM Online
• ExpressRoute or VPN
In Azure, Consider Using:
• SQL Azure
• IaaS
• Add-Ons (Azure Store)
• ExpressRoute or VPN
8. SAP on Microsoft Azure
On-Premises
VPN Device
Windows
Server
& SAP (C:)
Shared
Pool (D:)
Windows
Server (C:)
Shared
Pool (D:)
SQL Server
(E:)
.vhd file
.vhd file
.vhd file
.vhd file
.vhd file
Virtual Network
On-Premises
On-Premises
Servers
SAP certifications
Microsoft Azure is certified for the following SAP products, with full support
from Microsoft and SAP.
http://azure.microsoft.com/en-us/campaigns/sap/
SAP Product
Guest
Operating
System
RDBMS
Virtual
Machine
Types
SAP Business Suite Software Windows
SQL
Server
A5
SAP Business All-in-One Windows
SQL
Server
A5
SAP NetWeaver Application Server
ABAP 1 Windows
SQL
Server
A5
SAP HANA Developer Edition
(including the HANA Client software
comprised of SQLDBC, ODBO
(Windows only), ODBC, AND JDBC
drivers), HANA Studio, and HANA
Database) 2
SUSE, Linux N/A A7, A8
Azure VPN
Gateway
1 Only NetWeaver 7.00 and later SAP releases of NetWeaver are supported for
deployment in Azure.
2 Customers can try SAP HANA Developer Edition on Azure using the SAP Cloud
Appliance Library.
9. CASE STUDIES
NASDAQ managing multiple petabytes of data and
quintillions of records in their US Options and Equity
archive
Dell speeding performance of their website apps by up to
9x using In-Memory OLTP
Blinkbox saving million by managing their video library in
the cloud with Azure Media Services and IaaS
Callaway Golf using Windows Intune & System Center to
manage laptops and tablets for their mobile salesforce and
Microsoft Azure to manage their website during peak times
Mazda using StorSimple and Azure to manage storage and
backup in the cloud
Notes de l'éditeur
Microsoft Azure Active Directory is a comprehensive identity and access management cloud solution. It combines core directory services, advanced identity governance, security and application access management. Microsoft Azure Active Directory also offers to developers an identity management platform to deliver access control to their applications, based on centralized policy and rules. For enterprises with more demanding needs an advanced offering, Microsoft Azure Active Directory Premium, currently in preview, helps complete the set of capabilities that this identity and access management solution delivers.
Microsoft Azure Active Directory is a comprehensive identity and access management cloud solution. It combines core directory services, advanced identity governance, security and application access management. Microsoft Azure Active Directory also offers to developers an identity management platform to deliver access control to their applications, based on centralized policy and rules. For enterprises with more demanding needs an advanced offering, Microsoft Azure Active Directory Premium, currently in preview, helps complete the set of capabilities that this identity and access management solution delivers.
Microsoft Azure Active Directory is a comprehensive identity and access management cloud solution. It combines core directory services, advanced identity governance, security and application access management. Microsoft Azure Active Directory also offers to developers an identity management platform to deliver access control to their applications, based on centralized policy and rules. For enterprises with more demanding needs an advanced offering, Microsoft Azure Active Directory Premium, currently in preview, helps complete the set of capabilities that this identity and access management solution delivers.
Microsoft Azure Active Directory is a comprehensive identity and access management cloud solution. It combines core directory services, advanced identity governance, security and application access management. Microsoft Azure Active Directory also offers to developers an identity management platform to deliver access control to their applications, based on centralized policy and rules. For enterprises with more demanding needs an advanced offering, Microsoft Azure Active Directory Premium, currently in preview, helps complete the set of capabilities that this identity and access management solution delivers.
Microsoft Azure Active Directory is a comprehensive identity and access management cloud solution. It combines core directory services, advanced identity governance, security and application access management. Microsoft Azure Active Directory also offers to developers an identity management platform to deliver access control to their applications, based on centralized policy and rules. For enterprises with more demanding needs an advanced offering, Microsoft Azure Active Directory Premium, currently in preview, helps complete the set of capabilities that this identity and access management solution delivers.