SlideShare a Scribd company logo

Best Practices for Deploying Microsoft Workloads on AWS

Zlatan Dzinic
Zlatan Dzinic

This document provides best practices for deploying Microsoft workloads on AWS. It discusses identity management best practices including AWS IAM, server identity management, and federation. It also covers deploying SQL Server for high availability and disaster recovery. Additional sections discuss deploying Exchange, SharePoint, and other Microsoft server products on AWS, as well as developer best practices and DevOps automation. The document concludes with information on licensing options for Microsoft software on AWS.

1 of 45
Download to read offline
© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Zlatan Dzinic, Professional Services, AWS US Julien Lépine, Solutions Architect, AWS EMEA April 12th , 2016 Best Practices for Deploying Microsoft Workloads on AWS
Identity Best Practices
Main Identity Topics • Infrastructure Identity Management • AWS Identity and Access Management • Server / Application Identity Management • AWS Directory Services (Samba or Active Directory) • Federation • AWS Security Token Service
AWS Identity and Access Management (IAM) Role Based Access Control Multi-Factor Authentication Integrated with all AWS Services IAM Roles
Isolated domains Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2Availability Zone A Private subnet DC3 company.cloud company.local Federation / Synchronization Separate identities with synchronization / Federation à Use partners such as Okta, PingFederate AWS Directory Services company.cloud
Single domain extended to multiple sites Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2 Cost 50 Availability Zone A Private subnet DC3 Cost 10 company.local company.local One single identity, data center extension mode (Rely on Active Directory Sites, Read-Only or not)
One sub domain per site Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2 company.local Availability Zone A Private subnet DC3 cloud.company.local Isolated subset of the directory, single Identity for users (Active Directory Domains in a Single Forest)
One forest per site and trust Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2Availability Zone A Private subnet DC3 company.local company.cloud Separate directories, single identity (Cross-Forest / Resource Forest with trust) AWS Directory Services company.cloud
User Identity Federation with Amazon IAM Active Directory AD Users Enterprise Applications Corporate Systems Amazon Identity & Access Management IAM Roles EC2 DynamoDB S3
Federated API and CLI access using ADFS • ADFS http://tinyurl.com/AWS-ADFS-SAML • CLI http://tinyurl.com/AWS-ADFS-CLI • AWS Tools for Windows PowerShell
SQL Server
SQL Server High Availability Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Private Subnet Secondary Replica Synchronous-commit Synchronous-commit Automatic Failover Primary: 10.0.2.100 WSFC: 10.0.2.101 AG Listener: 10.0.2.102 Primary: 10.0.3.100 WSFC: 10.0.3.101 AG Listener: 10.0.3.102 AG Listener: ag.awslabs.net
WSFC Quorum Availability Zone 1 Primary Replica Availability Zone 2 Secondary Replica Automatic Failover SoftNAS / SIOS
WSFC Quorum Availability Zone 1 Primary Replica Availability Zone 2 Secondary Replica Automatic Failover Witness Server Availability Zone 3
SQL Server HA with Readable Replica Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Private Subnet Secondary Replica 1 Synchronous-commit Synchronous-commit AG Listener: ag.awslabs.net Automatic Failover Asynchronous-commit Secondary Replica 2 (Readable) Reporting Application
SQL Server Disaster Recovery & Backup Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Secondary Replica 1 Private Subnet AG Listener: ag.awslabs.net Corporate Network VPN Automatic Failover Secondary Replica 2 (Readable) Reporting Application Backups Manual Failover
■ AD Integrated ■ Automated failover ■ Automated patching ■ Automated backup ■ Point-in-time recovery Amazon RDS for SQL Server Amazon RDS
Server Products
Core Infrastructure
Exchange
SharePoint
Availability Zone 1 private subnet NAT 10.0.32.0/20 10.0.2.0/24 DB1SP1FE1Exch1 SQL Server 10.0.0.100 10.0.0.101 10.0.0.102 SharePoint Server 10.0.0.140 Lync Server 10.0.0.160 Exchange Server 10.0.0.150 RDG Availability Zone 2 private subnet NAT 10.0.96.0/20 RDG Remote Users / Admins 10.0.0.0/19 On-premises datacenter VPN Direct Connect DC1 10.0.2.0/24 DB2SP2FE2Exch2 SQL Server 10.0.64.100 10.0.64.101 10.0.64.102 SharePoint Server 10.0.64.140 Lync Server 10.0.64.160 10.0.64.0/19 DC2 Active Directory 10.0.0.10 Active Directory 10.0.64.10 private subnet private subnet Exchange Server 10.0.64.150 VPC CIDR 10.0.0.0/16 All-in-one
Going beyond infrastructure SharePoint BLOB storage on S3 Export mails to Amazon S3 AWS Marketplace • On-Demand,License Included or BYOL SharePoint • http://tinyurl.com/AWS-SPS-MP Quick Starts • http://tinyurl.com/AWS-MS-QS
Developers
AWS SDK and Tools for .NET ArchitectureEXECUTION PLATFORM AWSSDK LOW- LEVEL SERVICE APIS AWS TOOLS HIGHER- LEVEL UTILITY APIS .NET 3.5 .NET 4.5 PHONE STORE SERVICE CLIENTS AMAZON S3 TRANSFERUTILITY AMAZON DYNAMODB OBJECT PERSISTANCE VM IMPORT RESOURCE API AWS TOOLS FOR WINDOWS POWERSHELL AWS TOOLKIT FOR VISUAL STUDIO ASP.NET SESSION PROVIDER TRACE LISTENER … AWS ENDPOINTS: REST API
AWS Toolkit for Visual Studio Full Integration in Visual Studio
Blob storage in Amazon S3 var bucketName = "<BucketName>"; var fileName = "<FileName>"; var s3Client = new Amazon.S3.AmazonS3Client(); // Write Data to Amazon S3 s3Client.PutObject(new Amazon.S3.Model.PutObjectRequest { BucketName = bucketName, Key = fileName, InputStream = fileStream }); // Read Data from Amazon S3 var s3Object = s3Client.GetObject(bucketName, fileName); Amazon S3
Loose Coupling Sets You Free var queueUrl = "https://sqs.<region>.amazonaws.com/<AcctNum>/<QueueName>"; var sqsClient = new Amazon.SQS.AmazonSQSClient(); // Send to Amazon SQS sqsClient.SendMessage(queueUrl, "My Message Data"); // Process Amazon SQS while(!exit) { var messages = sqsClient.ReceiveMessage(queueUrl); foreach(var message in messages.Messages) { // Process message then delete sqsClient.DeleteMessage(queueUrl, message.ReceiptHandle); } } Amazon SQS
AWS Also Provides Extended Support AWS Elastic Beanstalk • Deploy from within Visual Studio / Automatic Log Rotation to Amazon S3 AWS CodeCommit / CodePipeline / CodeDeploy • Manage a large (on-premises and cloud-based) fleet .NET SDK and PowerShell CmdLets • Integration in custom build pipelines in TFS or CruiseControl.NET AWS is the de-facto standard • Jenkins, Bamboo have native integration to AWS • Other IDE Support AWS (Unity, Xamarin Studio, Eclipse…)
DevOps
Secure remote administration architecture Availability Zone Gateway Security Group Web Security Group Private SubnetPublic Subnet Accept TCP Port 443 from Admin IP Accept traffic from Gateway SG AWS Administrator Corporate Data Center WEB2 TCP 443 WEB1 RDGW Requires one connection: • Connect to the RD Gateway, and the gateway proxies the RDP or PowerShell connection to the back- end instance.
One step further: Go DevOps • AWS Tools for Windows PowerShell • Leverage AWS Simple Systems Manager • Auto-Domain Join • No machine access • Full traceability • Fine-grained control • http://tinyurl.com/AWS-SSM-Home
Automated Log Management and Analysis Amazon CloudWatch Logs AWS Lambda Amazon Kinesis Amazon EC2
Automation for every use case IAAS* Amazon EC2 AWS CloudFormation AWS OpsWorks AWS Elastic BeanStalk AWS Lambda PAAS*DEVOPS DEVOPS AUTOMATION* Definition may vary
Licensing
License Mobility is a Microsoft Program that allows customers to move their existing license from on premises to the cloud • Leverage their Enterprise Agreement • Must have Software Assurance License Mobility through Software Assurance
Microsoft Workloads on AWS Pay-as-you-go – AMI pricing provides access to software • Windows Server • SQL Server Standard • SQL Server Web • SQL Server Enterprise Leverage Microsoft’s License Mobility Program (BYOL) • SQL Server • SharePoint Server • Exchange • Lync • RDS • Dynamics Leveraged Dedicated Host • Windows Server • SQL Server - no SA • SharePoint – no SA • Exchange – no SA • Lync – no SA • Dynamics – No SA
Licensing Continuum License Included • Amazon manages the licenses • Pay-as-you-go pricing • Multi-tenant or dedicated • No license management overhead Hybrid • Baseline in BYOL • Leverage scalability and pay-as-you-go where applicable • Limit management overhead BYOL • Import and use your own software • Reduce your spend if you already pay an ISV for licensing • You manage licensing costs and compliance with your ISV • Committed contracts with your ISVs
MSDN
Supportability on AWS Microsoft workloads are supported on AWS. Amazon Web Services fully supports Microsoft Windows Server as both infrastructure and a platform. Our customers have successfully deployed in the AWS cloud virtually every Microsoft application available, including Microsoft Exchange,SharePoint,Lync, Dynamics,and Remote Desktop Services. If you have support related issues you should contactAWS Support.
Every immaginable use case Collaboration Full/Partial Franchise Migration Web / Mobile / Media Mail ERP VDI BI
We are here to help
AWS Resources Solution Architects Professional Services Premium Support AWS Partner Network (APN)
AWS Training and Certification Certification aws.amazon.com/certification Demonstrate your skills, knowledge, and expertise with the AWS platform Self-Paced Labs aws.amazon.com/training/ self-paced-labs Try products, gain new skills, and get hands-on practice working with AWS technologies aws.amazon.com/training Training Skill up and gain confidence to design, develop, deploy and manage your applications on AWS
Best Practices for Deploying Microsoft Workloads on AWS
Ad

Recommended

SQL Server in the AWS Cloud
SQL Server in the AWS CloudSQL Server in the AWS Cloud
SQL Server in the AWS Cloud
DBInsight Pty Ltd
 
Amazon Virtual Private Cloud VPC Architecture AWS Web Services
Amazon Virtual Private Cloud VPC Architecture AWS Web ServicesAmazon Virtual Private Cloud VPC Architecture AWS Web Services
Amazon Virtual Private Cloud VPC Architecture AWS Web Services
Robert Wilson
 
Expandindo seu Data Center com uma infraestrutura hibrida
Expandindo seu Data Center com uma infraestrutura hibridaExpandindo seu Data Center com uma infraestrutura hibrida
Expandindo seu Data Center com uma infraestrutura hibrida
Alexandre Santos
 
Generated REST Gateways for Mobile Applications
Generated REST Gateways for Mobile ApplicationsGenerated REST Gateways for Mobile Applications
Generated REST Gateways for Mobile Applications
Wolfgang Frank
 
Security best practices on AWS cloud
Security best practices on AWS cloudSecurity best practices on AWS cloud
Security best practices on AWS cloud
Martin Yan
 
VMware and AWS together (June 2017)
VMware and AWS together (June 2017)VMware and AWS together (June 2017)
VMware and AWS together (June 2017)
Julien SIMON
 
AWS Migration Day - Windows Workloads
AWS Migration Day - Windows WorkloadsAWS Migration Day - Windows Workloads
AWS Migration Day - Windows Workloads
Amazon Web Services LATAM
 
Hybrid cloud for financial sector :: Felix Candelario :: AWS Finance Seminar
Hybrid cloud for financial sector :: Felix Candelario :: AWS Finance SeminarHybrid cloud for financial sector :: Felix Candelario :: AWS Finance Seminar
Hybrid cloud for financial sector :: Felix Candelario :: AWS Finance Seminar
Amazon Web Services Korea
 
GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and MLGyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
Gyrus AI
 
Cybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure ADCybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure AD
VICTOR MAESTRE RAMIREZ
 
AI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of DocumentsAI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of Documents
UiPathCommunity
 
Financial Services Technology Summit 2025
Financial Services Technology Summit 2025Financial Services Technology Summit 2025
Financial Services Technology Summit 2025
Ray Bugg
 
The Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdfThe Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdf
Precisely
 
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent LasterAI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
All Things Open
 
The Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdfThe Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdf
YvonneRoseEranista
 
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep DiveDesigning Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
ScyllaDB
 
UiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer OpportunitiesUiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer Opportunities
DianaGray10
 
Vaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without HallucinationsVaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without Hallucinations
john409870
 
How to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabberHow to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabber
eGrabber
 
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
BookNet Canada
 
Web and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in RajpuraWeb and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in Rajpura
Erginous Technology
 
TrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token ListingTrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token Listing
Trs Labs
 
fennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solutionfennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solution
shallal2
 
The Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI IntegrationThe Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI Integration
Re-solution Data Ltd
 
Bepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firmBepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firm
Benard76
 
TrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business ConsultingTrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business Consulting
Trs Labs
 
Viam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdfViam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdf
camilalamoratta
 
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
BookNet Canada
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
Storytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design ProcessStorytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
Ad

More Related Content

Recently uploaded (20)

GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and MLGyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
Gyrus AI
 
Cybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure ADCybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure AD
VICTOR MAESTRE RAMIREZ
 
AI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of DocumentsAI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of Documents
UiPathCommunity
 
Financial Services Technology Summit 2025
Financial Services Technology Summit 2025Financial Services Technology Summit 2025
Financial Services Technology Summit 2025
Ray Bugg
 
The Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdfThe Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdf
Precisely
 
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent LasterAI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
All Things Open
 
The Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdfThe Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdf
YvonneRoseEranista
 
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep DiveDesigning Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
ScyllaDB
 
UiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer OpportunitiesUiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer Opportunities
DianaGray10
 
Vaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without HallucinationsVaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without Hallucinations
john409870
 
How to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabberHow to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabber
eGrabber
 
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
BookNet Canada
 
Web and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in RajpuraWeb and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in Rajpura
Erginous Technology
 
TrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token ListingTrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token Listing
Trs Labs
 
fennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solutionfennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solution
shallal2
 
The Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI IntegrationThe Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI Integration
Re-solution Data Ltd
 
Bepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firmBepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firm
Benard76
 
TrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business ConsultingTrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business Consulting
Trs Labs
 
Viam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdfViam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdf
camilalamoratta
 
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
BookNet Canada
 
GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and MLGyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
GyrusAI - Broadcasting & Streaming Applications Driven by AI and ML
Gyrus AI
 
Cybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure ADCybersecurity Identity and Access Solutions using Azure AD
Cybersecurity Identity and Access Solutions using Azure AD
VICTOR MAESTRE RAMIREZ
 
AI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of DocumentsAI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of Documents
UiPathCommunity
 
Financial Services Technology Summit 2025
Financial Services Technology Summit 2025Financial Services Technology Summit 2025
Financial Services Technology Summit 2025
Ray Bugg
 
The Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdfThe Changing Compliance Landscape in 2025.pdf
The Changing Compliance Landscape in 2025.pdf
Precisely
 
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent LasterAI 3-in-1: Agents, RAG, and Local Models - Brent Laster
AI 3-in-1: Agents, RAG, and Local Models - Brent Laster
All Things Open
 
The Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdfThe Microsoft Excel Parts Presentation.pdf
The Microsoft Excel Parts Presentation.pdf
YvonneRoseEranista
 
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep DiveDesigning Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
Designing Low-Latency Systems with Rust and ScyllaDB: An Architectural Deep Dive
ScyllaDB
 
UiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer OpportunitiesUiPath Agentic Automation: Community Developer Opportunities
UiPath Agentic Automation: Community Developer Opportunities
DianaGray10
 
Vaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without HallucinationsVaibhav Gupta BAML: AI work flows without Hallucinations
Vaibhav Gupta BAML: AI work flows without Hallucinations
john409870
 
How to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabberHow to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabber
eGrabber
 
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
Transcript: #StandardsGoals for 2025: Standards & certification roundup - Tec...
BookNet Canada
 
Web and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in RajpuraWeb and Graphics Designing Training in Rajpura
Web and Graphics Designing Training in Rajpura
Erginous Technology
 
TrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token ListingTrsLabs Consultants - DeFi, WEb3, Token Listing
TrsLabs Consultants - DeFi, WEb3, Token Listing
Trs Labs
 
fennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solutionfennec fox optimization algorithm for optimal solution
fennec fox optimization algorithm for optimal solution
shallal2
 
The Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI IntegrationThe Future of Cisco Cloud Security: Innovations and AI Integration
The Future of Cisco Cloud Security: Innovations and AI Integration
Re-solution Data Ltd
 
Bepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firmBepents tech services - a premier cybersecurity consulting firm
Bepents tech services - a premier cybersecurity consulting firm
Benard76
 
TrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business ConsultingTrsLabs - Fintech Product & Business Consulting
TrsLabs - Fintech Product & Business Consulting
Trs Labs
 
Viam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdfViam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdf
camilalamoratta
 
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...Canadian book publishing: Insights from the latest salary survey - Tech Forum...
Canadian book publishing: Insights from the latest salary survey - Tech Forum...
BookNet Canada
 

Featured (20)

2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
Storytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design ProcessStorytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
Expeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
Skeleton Culture Code
Skeleton Culture CodeSkeleton Culture Code
Skeleton Culture Code
Skeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)
contently
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
Tessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing2024 Trend Updates: What Really Works In SEO & Content Marketing
2024 Trend Updates: What Really Works In SEO & Content Marketing
Search Engine Journal
 
Storytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design ProcessStorytelling For The Web: Integrate Storytelling in your Design Process
Storytelling For The Web: Integrate Storytelling in your Design Process
Chiara Aliotta
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
OECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
SocialHRCamp
 
2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
Marius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
Expeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage Engineerings
Pixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
ThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
marketingartwork
 
Skeleton Culture Code
Skeleton Culture CodeSkeleton Culture Code
Skeleton Culture Code
Skeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024
Neil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)
contently
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
Albert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
Kurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
SpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
Tessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Lily Ray
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
Rajiv Jayarajah, MAppComm, ACC
 
Ad

Best Practices for Deploying Microsoft Workloads on AWS

  • 1. © 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Zlatan Dzinic, Professional Services, AWS US Julien Lépine, Solutions Architect, AWS EMEA April 12th , 2016 Best Practices for Deploying Microsoft Workloads on AWS
  • 3. Main Identity Topics • Infrastructure Identity Management • AWS Identity and Access Management • Server / Application Identity Management • AWS Directory Services (Samba or Active Directory) • Federation • AWS Security Token Service
  • 4. AWS Identity and Access Management (IAM) Role Based Access Control Multi-Factor Authentication Integrated with all AWS Services IAM Roles
  • 5. Isolated domains Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2Availability Zone A Private subnet DC3 company.cloud company.local Federation / Synchronization Separate identities with synchronization / Federation à Use partners such as Okta, PingFederate AWS Directory Services company.cloud
  • 6. Single domain extended to multiple sites Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2 Cost 50 Availability Zone A Private subnet DC3 Cost 10 company.local company.local One single identity, data center extension mode (Rely on Active Directory Sites, Read-Only or not)
  • 7. One sub domain per site Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2 company.local Availability Zone A Private subnet DC3 cloud.company.local Isolated subset of the directory, single Identity for users (Active Directory Domains in a Single Forest)
  • 8. One forest per site and trust Availability Zone B Private subnet DC4 Corporate Network Munich DC1 Direct Connect Berlin DC2Availability Zone A Private subnet DC3 company.local company.cloud Separate directories, single identity (Cross-Forest / Resource Forest with trust) AWS Directory Services company.cloud
  • 9. User Identity Federation with Amazon IAM Active Directory AD Users Enterprise Applications Corporate Systems Amazon Identity & Access Management IAM Roles EC2 DynamoDB S3
  • 10. Federated API and CLI access using ADFS • ADFS http://tinyurl.com/AWS-ADFS-SAML • CLI http://tinyurl.com/AWS-ADFS-CLI • AWS Tools for Windows PowerShell
  • 12. SQL Server High Availability Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Private Subnet Secondary Replica Synchronous-commit Synchronous-commit Automatic Failover Primary: 10.0.2.100 WSFC: 10.0.2.101 AG Listener: 10.0.2.102 Primary: 10.0.3.100 WSFC: 10.0.3.101 AG Listener: 10.0.3.102 AG Listener: ag.awslabs.net
  • 13. WSFC Quorum Availability Zone 1 Primary Replica Availability Zone 2 Secondary Replica Automatic Failover SoftNAS / SIOS
  • 14. WSFC Quorum Availability Zone 1 Primary Replica Availability Zone 2 Secondary Replica Automatic Failover Witness Server Availability Zone 3
  • 15. SQL Server HA with Readable Replica Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Private Subnet Secondary Replica 1 Synchronous-commit Synchronous-commit AG Listener: ag.awslabs.net Automatic Failover Asynchronous-commit Secondary Replica 2 (Readable) Reporting Application
  • 16. SQL Server Disaster Recovery & Backup Availability Zone 1 Private Subnet Primary Replica Availability Zone 2 Secondary Replica 1 Private Subnet AG Listener: ag.awslabs.net Corporate Network VPN Automatic Failover Secondary Replica 2 (Readable) Reporting Application Backups Manual Failover
  • 17. ■ AD Integrated ■ Automated failover ■ Automated patching ■ Automated backup ■ Point-in-time recovery Amazon RDS for SQL Server Amazon RDS
  • 22. Availability Zone 1 private subnet NAT 10.0.32.0/20 10.0.2.0/24 DB1SP1FE1Exch1 SQL Server 10.0.0.100 10.0.0.101 10.0.0.102 SharePoint Server 10.0.0.140 Lync Server 10.0.0.160 Exchange Server 10.0.0.150 RDG Availability Zone 2 private subnet NAT 10.0.96.0/20 RDG Remote Users / Admins 10.0.0.0/19 On-premises datacenter VPN Direct Connect DC1 10.0.2.0/24 DB2SP2FE2Exch2 SQL Server 10.0.64.100 10.0.64.101 10.0.64.102 SharePoint Server 10.0.64.140 Lync Server 10.0.64.160 10.0.64.0/19 DC2 Active Directory 10.0.0.10 Active Directory 10.0.64.10 private subnet private subnet Exchange Server 10.0.64.150 VPC CIDR 10.0.0.0/16 All-in-one
  • 23. Going beyond infrastructure SharePoint BLOB storage on S3 Export mails to Amazon S3 AWS Marketplace • On-Demand,License Included or BYOL SharePoint • http://tinyurl.com/AWS-SPS-MP Quick Starts • http://tinyurl.com/AWS-MS-QS
  • 25. AWS SDK and Tools for .NET ArchitectureEXECUTION PLATFORM AWSSDK LOW- LEVEL SERVICE APIS AWS TOOLS HIGHER- LEVEL UTILITY APIS .NET 3.5 .NET 4.5 PHONE STORE SERVICE CLIENTS AMAZON S3 TRANSFERUTILITY AMAZON DYNAMODB OBJECT PERSISTANCE VM IMPORT RESOURCE API AWS TOOLS FOR WINDOWS POWERSHELL AWS TOOLKIT FOR VISUAL STUDIO ASP.NET SESSION PROVIDER TRACE LISTENER … AWS ENDPOINTS: REST API
  • 26. AWS Toolkit for Visual Studio Full Integration in Visual Studio
  • 27. Blob storage in Amazon S3 var bucketName = "<BucketName>"; var fileName = "<FileName>"; var s3Client = new Amazon.S3.AmazonS3Client(); // Write Data to Amazon S3 s3Client.PutObject(new Amazon.S3.Model.PutObjectRequest { BucketName = bucketName, Key = fileName, InputStream = fileStream }); // Read Data from Amazon S3 var s3Object = s3Client.GetObject(bucketName, fileName); Amazon S3
  • 28. Loose Coupling Sets You Free var queueUrl = "https://sqs.<region>.amazonaws.com/<AcctNum>/<QueueName>"; var sqsClient = new Amazon.SQS.AmazonSQSClient(); // Send to Amazon SQS sqsClient.SendMessage(queueUrl, "My Message Data"); // Process Amazon SQS while(!exit) { var messages = sqsClient.ReceiveMessage(queueUrl); foreach(var message in messages.Messages) { // Process message then delete sqsClient.DeleteMessage(queueUrl, message.ReceiptHandle); } } Amazon SQS
  • 29. AWS Also Provides Extended Support AWS Elastic Beanstalk • Deploy from within Visual Studio / Automatic Log Rotation to Amazon S3 AWS CodeCommit / CodePipeline / CodeDeploy • Manage a large (on-premises and cloud-based) fleet .NET SDK and PowerShell CmdLets • Integration in custom build pipelines in TFS or CruiseControl.NET AWS is the de-facto standard • Jenkins, Bamboo have native integration to AWS • Other IDE Support AWS (Unity, Xamarin Studio, Eclipse…)
  • 31. Secure remote administration architecture Availability Zone Gateway Security Group Web Security Group Private SubnetPublic Subnet Accept TCP Port 443 from Admin IP Accept traffic from Gateway SG AWS Administrator Corporate Data Center WEB2 TCP 443 WEB1 RDGW Requires one connection: • Connect to the RD Gateway, and the gateway proxies the RDP or PowerShell connection to the back- end instance.
  • 32. One step further: Go DevOps • AWS Tools for Windows PowerShell • Leverage AWS Simple Systems Manager • Auto-Domain Join • No machine access • Full traceability • Fine-grained control • http://tinyurl.com/AWS-SSM-Home
  • 33. Automated Log Management and Analysis Amazon CloudWatch Logs AWS Lambda Amazon Kinesis Amazon EC2
  • 34. Automation for every use case IAAS* Amazon EC2 AWS CloudFormation AWS OpsWorks AWS Elastic BeanStalk AWS Lambda PAAS*DEVOPS DEVOPS AUTOMATION* Definition may vary
  • 36. License Mobility is a Microsoft Program that allows customers to move their existing license from on premises to the cloud • Leverage their Enterprise Agreement • Must have Software Assurance License Mobility through Software Assurance
  • 37. Microsoft Workloads on AWS Pay-as-you-go – AMI pricing provides access to software • Windows Server • SQL Server Standard • SQL Server Web • SQL Server Enterprise Leverage Microsoft’s License Mobility Program (BYOL) • SQL Server • SharePoint Server • Exchange • Lync • RDS • Dynamics Leveraged Dedicated Host • Windows Server • SQL Server - no SA • SharePoint – no SA • Exchange – no SA • Lync – no SA • Dynamics – No SA
  • 38. Licensing Continuum License Included • Amazon manages the licenses • Pay-as-you-go pricing • Multi-tenant or dedicated • No license management overhead Hybrid • Baseline in BYOL • Leverage scalability and pay-as-you-go where applicable • Limit management overhead BYOL • Import and use your own software • Reduce your spend if you already pay an ISV for licensing • You manage licensing costs and compliance with your ISV • Committed contracts with your ISVs
  • 39. MSDN
  • 40. Supportability on AWS Microsoft workloads are supported on AWS. Amazon Web Services fully supports Microsoft Windows Server as both infrastructure and a platform. Our customers have successfully deployed in the AWS cloud virtually every Microsoft application available, including Microsoft Exchange,SharePoint,Lync, Dynamics,and Remote Desktop Services. If you have support related issues you should contactAWS Support.
  • 41. Every immaginable use case Collaboration Full/Partial Franchise Migration Web / Mobile / Media Mail ERP VDI BI
  • 42. We are here to help
  • 44. AWS Training and Certification Certification aws.amazon.com/certification Demonstrate your skills, knowledge, and expertise with the AWS platform Self-Paced Labs aws.amazon.com/training/ self-paced-labs Try products, gain new skills, and get hands-on practice working with AWS technologies aws.amazon.com/training Training Skill up and gain confidence to design, develop, deploy and manage your applications on AWS