Professional Documents
Culture Documents
pl
Sa
er
ia
at
M
ot
fo
r
in
t
R
ep
r
www.ITpreneurs.com
Copyright
in
t
R
ep
r
ot
fo
r
Please note that the information contained in this material is subject to change without
notice. Furthermore, this material contains proprietary information that is protected by
copyright. No part of this material may be photocopied, reproduced, or translated to
another language without the prior consent of ITpreneurs Nederland B.V.
Sa
pl
at
er
ia
The language used in this course is US English. Our sources of reference for grammar,
syntax, and mechanics are from The Chicago Manual of Style, The American Heritage
Dictionary, and The Microsoft Manual of Style for Technical Publications.
in
t
Contents
Module 1: Course Introduction
R
ep
r
Overview 1
Course Learning Objectives
Course Agenda
Case Study
2
2
3
Activities 4
ot
fo
r
Course Book
Module Summary
Module Topics
5
5
5
6
23
29
er
ia
23
32
Virtual Storage
36
Cloud Marketplaces
38
40
Module Summary
41
at
pl
Module Topics
Sa
43
43
43
43
50
58
Module Summary
59
61
61
Module Topics
61
62
70
71
72
75
79
82
Module Summary
83
85
Module Topics
85
85
88
R
ep
r
91
92
94
95
ot
fo
r
Module Summary
Disaster Recovery
97
97
97
100
Module Summary
109
109
Module Topics
Fundamental Security Threats
at
er
ia
111
111
111
111
115
127
127
129
Module Summary
130
pl
Security Standards
131
131
Module Topics
131
132
Systems Management
138
140
Broker Platform
142
149
Module Summary
149
Sa
ii
97
Activity Time: Business Continuity Strategies and Disaster Recovery for Cloud
in
t
151
151
Module Topics
151
Lifecycle Management
152
156
160
Infrastructure Benchmarking
164
in
t
167
168
R
ep
r
170
171
173
ot
fo
r
Mock Exam
173
er
ia
173
173
174
175
176
177
179
185
189
201
at
Appendix A: Syllabus
203
Sa
pl
iii
nt
Th m
is p
pa le
ge M
haa
stbe
eriea
nl l
eft
Nbla
ot nk
fo inte
r R nt
ion
ep al
ri ly
Sa
www.ITpreneurs.com
Acknowledgements
R
ep
r
Lead Author
in
t
We would like to sincerely thank the experts who have contributed to the development of the
ITpreneurs products:
Dr. Navti Founded and recently launched cloudclinique.com, a cloud best practice
platform for consultants. CloudClinique enables busy consultants to acquire cloud
certification best practices from a database of over 6700 concepts.
ot
fo
r
Dr. Navti is the Africa Cloud Ambassador for the Cloud Credential Council, and a
founding member and Director of the Africa 2.0 Foundation UK. He During his 13
years at IBM, led the European private cloud technical sales business and the
company's Africa expansion strategy and marketing. He coordinated IBM's $1bn
Africa strategy for Nigeria, Kenya, Ghana, and Angola.
er
ia
Since founding Tech Equity in July 2013, the company has delivered services to
clients in the US, UK, Germany, Kenya, Ethiopia, Mali, and the United Arab
Emirates.
Sa
pl
at
Reviewer
Kumail Morawala
www.ITpreneurs.com
Mr. Morawala holds different trainer and professional level certifications in the field
of Cloud Computing, Big Data, Virtualization Etc. Currently he is involved in
helping a Government agency to transform the E-Services and develop a cloud
based data exchange platform to enrich the decision making with the enormous
data at hand.
R
ep
r
in
t
Reviewer
ot
fo
r
Esteban Kolsky
Sa
pl
at
er
ia
vi
Module 1
Course Introduction
Name
R
ep
r
in
t
Course Introduction
Expectations
from this course
Role
and background
ot
fo
r
Company
ITIL and IT service management experience
er
ia
Copyrigh
at
Overview
Sa
pl
The aim of this course is to lay out the core components of the cloud administrator function and the
necessary skills. This course will enable the participants to apply the underpinning administration
concepts in an enterprise cloud computing environment, while taking into account the impact of the
shift of some aspects of a cloud administration role to external cloud providers. The course also
explores the broadening of cloud administration remit including IT environments that are elastic and
involve self-service administration through third parties with varying degrees of access control.
in
t
ITO outsourcing
R
ep
r
CoLoc, onshore
Offshore versus cloud
Explain the cloud administration technology: virtual networks, storage and computing, and
application management in the cloud.
Course Agenda
enda
Explain cloud provisioning, capacity management, service desk management, and cloud
provisioning/automation management.
oduction
ot
fo
r
er
ia
subject
start
end
total
time
(in hours)
Course Introduction
09:00
09:30
00:30
02
09:30
11:30
02:00
03
11:30
12:30
01:00
Lunch
12:30
13:30
01:00
at
01
13:30
14:30
01:00
04
14:30
16:30
02:00
Recap Day 1
16:30
17:00
00:30
03
Total
08:00
07:00
Sa
pl
dAy 1
Module
Contd
Copyright 2015 |
Course Introduction
Course Agenda
end
total
time
(in hours)
Review Day 1
09:00
09:30
00:30
05
09:30
11:30
02:00
06
11:30
12:30
01:00
Lunch
12:30
13:30
00:30
06
13:30
14:30
07
Course Introduction
Recap Day 2
Course Agenda
Total
01:00
R
ep
r
dAy 2
subject
in
t
start
Module
14:30
16:30
02:00
16:30
17:00
00:30
08:00
07:00
start
end
total
time
(in hours)
09:00
09:30
00:30
09:30
11:00
01:30
11:00
12:30
01:30
12:30
13:30
01:00
13:30
14:30
01:00
14:30
15:30
01:00
15:30
17:00
01:30
Module
subject
Review Day 2
dAy 3
09
Lunch
Total
at
Copyright 2015
08:00
07:00
Case Study
er
ia
Course Review 3
08
Course Introduction
ot
fo
r
Contd
Case
Study
A case study
with related exercises and activities will be used throughout the course. The case study is
attached
with
the
Course
Book. The
on the scenarios
from the
A case
study
with
related
exercises
andexercises
activitieswill
willbe
bebased
used throughout
the course.
Thecase
casestudy.
studyThese
exercises
will
include:
is attached with the Course Book. The exercises will be based on the scenarios from the case study.
These
exercises will include:
MCQs
pl
Copyright 2015
MCQs
MMCQs
Sa
Brainstorming
MMCQs
Discussion forum
Brainstorming
Group Discussion
Discussion forum
Puzzles
Group
Role
PlayDiscussion
Puzzles
Role Play
Copyright 2
ourse Introduction
ctivities
In addition to the case study based activities, there will be several other activities meant for enhancing retention.
Activities
The activities
are inserted at logical interval to give a relaxing break in the training.
Quick
Write-Up
urse Introduction
ourse Book
Role Play
R
ep
r
Describe
the
Picture
in
t
In addition to the case study based activities, there will be several other activities meant for enhancing
retention. The activities are inserted at logical interval to give a relaxing break in the training.
Course Book
Copyright 2015 | 9
Module Summary
at
er
ia
ot
fo
r
Paper
Draw a
Throw
Picture
There is a separate Course Book with you for reference after the session. It is a comprehensive source of
information and contains whatever is taught in each module. The case study is also attached with the Course
Book. The Course Book contains several useful exercises related to the course.
Overview
Copyright 2015 | 10
pl
Course Agenda
Sa
Case Study
Activities
There will be several activities for effective learning.
Course Book
The participants will be provided with the Course Book. It is a comprehensive source of
information and contains whatever is taught in each module.
Module 2
ot
fo
r
R
ep
r
in
t
Explain cloud administration influences, roles, characteristics, deployment, and delivery models.
Explain the goals benefits and challenges of workload analysis and capacity planning in the
cloud.
Explain the basic cloud network, compute, and storage administration technologies.
Explain the basics of provisioning environments and platform services in the cloud.
Explain concepts, benefits, and challenges of virtual deployments in the cloud.
er
ia
at
Module Topics
pl
Sa
Virtual Storage
Cloud Marketplaces
Cloud Professional
Resource Administration
and Provisioning
Cloud Administrator
Cloud Definition
Cloud Definition
R
ep
r
in
t
Cloud Resource
Administration and Provisioning
Source: NIST
ot
fo
r
Fundamentals
of Cloud Administration
Source:
NIST are many definitions of cloud computing, but the NIST definition is recognized as the reference.
There
Source: http://www.techtarget.com/search/uery?q=Cloud&type=definition
Copyright 2015 | 5
Cloud Consumer
Cloud Resource
Administrator
Cloud Broker
Cloud Auditor
Cloud Carrier
Sa
pl
at
er
ia
Cloud Provider
Copyright 2015 |
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Influences
and
RolesCloud
Consumer
Cloud
Influences
and RolesCloud
Consumer
consumer isCloud
an organization
or subscriber
with approved
access
touse
use
a cloud-based
IT
consumer is an organization
or subscriber
with approved
access to
a cloud-based
IT
resource.
ERP
Human Resources
Financials
Document
Management
SaaS
Consumer
Collaboration
Cloud Consumer
ot
fo
r
Services
Management
Database
Application
Deployment
Backup &
Recovery
PaaS
Consumer
Integration
Platform
Hosting
Storage
IaaS
Consumer
Compute
Development
& Testing
Productivity
Sales
Business
Intelligence
R
ep
r
Content
Management
CRM
in
t
Social Networks
Billing
er
ia
at
Cloud
Influences
and RolesCloud
Provider
Cloud
Influences
and RolesCloud
Provider
Sa
pl
An organization
that is that
responsible
for giving
services
physical
that
An organization
is responsible
foraccess
giving toaccess
to and
services
andresources
physical resources
that are
are available
through
a
cloud
computing
infrastructure
is
called
a
cloud
provider.
available through a cloud computing infrastructure is called a cloud provider.
Copyright 2015 | 8
Source: http://www.techtarget.com/search/query?q=cloud%20provider&type=definition
Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.
Storage Services
R
ep
r
Administrator
in
t
The role of cloud resource administrator is to implement a resource pooling architecture so that the p
and and
virtual
resources can be
dynamically
assigned and reassigned. This is done on the basis of cloud
Cloud Influences
RolesCloud
Resource
Administrator
consumer usage demands.
The role of cloud resource administrator
is to implement a resource pooling
architecture so that the physical and
virtual resources can be dynamically
Compute Services
assigned and reassigned. This is done
Messaging Services
on the basis of cloud consumer usage
Application Services
demands.
Platform Services
ot
fo
r
Cloud
Broker
SaaS
PaaS
IaaS
at
er
ia
SMBs
Enterprise
Ecosystem
A cloud
broker
the cloud
organization
or individual
responsible
for delivering
mediation,
aggregation,
A cloud
broker
is theiscloud
organization
or individual
responsible
for delivering
mediation,
aggregation,
or
or
arbitrage
services
on
behalf
of
cloud
consumers.
arbitrage services on behalf of cloud consumers.
Sa
pl
Source: http://www.techtarget.com/search/query?q=cloud%20broker&type=definition
Copyright 2015 | 10
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Cloud Cloud
Influences
and RolesCloud
Auditor
Influences
and RolesCloud
Auditor
A cloudAauditor
typicallytypically
leads the
evaluation
of security
controls
and the
assessment
of privacy
impacts and
cloud auditor
leads
the evaluation
of security
controls
and
the assessment
of privacy
performance.
impacts and performance.
Data Flow
Management
Server
Data
DB
DB
DB
Data Server
in
t
DB
Cloud
Auditor
R
ep
r
Cloud
ot
fo
r
Granted
Applications
Users
Copyright 201
Source: http://www.techtarget.com/search/query?q=cloud%20auditor&type=definition
Fundamentals
of Cloud Administration
Cloud
CloudInfluences
Influencesand
andRolesCloud
RolesCloudCarrier
Carrier
Carriers Network
Cable
DSL
Fiber
VPN
Sa
pl
at
er
ia
A cloud carrier is the network operator or telecommunications provider responsible for providing wire-level
A cloud carrier
is thethe
network
or telecommunications
provider responsible for providing wireconnectivity
between
cloud operator
service provider
and the cloud subscribers.
level connectivity between the cloud service provider and the cloud subscribers.
Copyright 2015 | 1
Professional
Cloud Administrator
Cloud Resource
Administration
and Provisioning
Cloud
ComputingFive
Essential
Operational
Characteristics
Cloud
ComputingFive
Essential
Operational
Characteristics
Measured Service
Automated consumer
centric search,
selection, and
provisioning
Resource Pooling
Rapid Elasticity
ot
fo
r
R
ep
r
Five Essential
Characteristics of
Cloud Computer
in
t
description and
of each
characteristic of cloud computing, shown in the figure, is based on the NIST
ResourceThe
Administration
Provisioning
descriptions of cloud computing characteristics. The cloud administrator facilitate these characteristics.
er
ia
The
cloud administrator
subscribers
to access
provision
cloudITITresources
resources
he cloud
administrator
shouldshould
enableenable
cloudcloud
subscribers
to access
andand
provision
cloud
without
the
intervention
of
a
cloud
provider.
ithout the intervention of a cloud provider.
Self-Service Portal
Service Catalog
Issue Catalog
Requests
Solutions
My Details
at
Home
pl
My Requests Summary
Report an Issue
My Approvals
Request Approvals
Take Action
Portal Usage
Sa
Announcements
Quick Actions
Show all
Copyright 2015 | 14
The ability to provision and consume cloud resources without intervention from the cloud service
provider, empowers users and creates an enhance level of efficiency.
10
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
CloudCloud
Administrator
and and
Elasticity
Administrator
Elasticity
Rising
demand
scenario
Capacity
R
ep
r
CAPEX
in
t
The cloud
should should
use elasticity
capabilities
to optimize
the utilization
of available
resources to
Theadministrator
cloud administrator
use elasticity
capabilities
to optimize
the utilization
of available
supportresources
businesstoprocesses
and
meet
SLAs.
support business processes and meet SLAs.
ot
fo
r
Falling
demand
scenario
Time
Demand
Classic Capacity
Cloud Capacity
Elasticity plays a key part in justifying investment in cloud. It is what enables an organization to
ud Administrator
and Resource Pooling
avoid significant upfront costs, while ensuring that resources are always available if needed in future.
Copyright 201
cloud consumer
usage
demands
determine
physical
and virtual resources can be dynamic
Economies
of scale
are required
to deliverhow
high levels
of elasticity.
reassigned by implementing a resource pooling architecture.
Cloud Administrator and Resource Pooling
er
ia
The cloud consumer usage demands determine how physical and virtual resources can be dynamically
assigned and reassigned by implementing a resource pooling architecture.
High Performance
System B
Disk Pool
High Utilization
Sa
Serviceability
System A
pl
at
System C
CPU Pool
11
als of Cloud
Administration
Professional
Cloud Administrator
Cloud Administrator
Multi-Tenancy
dministrators
should ensureand
multi-tenancy
capabilities sufficiently enables data and applications
ng to different
organizations
or users
to reside
alongside,
while preventing
confidential
data
Cloud administrators
should
ensure
multi-tenancy
capabilities
sufficiently access
enables to
data
and
applications
belonging
to different
organizations
or users to reside alongside, while preventing access
ed platforms,
shared
storage,
and shared
networks.
to confidential data on shared platforms, shared storage, and shared networks.
Tenant B
Data
Tier
Data
Tier
Tenant C
Data
Tier
ot
fo
r
R
ep
r
Tenant A
in
t
Cross-grained Multi-Tenancy
ls of Cloud
Administration
extensively
by cloud providers to share platforms, storage, and networks. This slide introduces the
Copyright 2015 | 17
concept of multi-tenancy, and subsequent slides expand on the various options further.
enancy
Application
Instances
Is multi-tenancy
a mandatory
cloud characteristic?
er
ia
owing figure shows a single-tenant application with multiple instances assigned to each
Multi-Tenancy Application Instances
n the second option, we have a multi-tenant application which serves multiple clients.
The following figure shows a single-tenant application with multiple instances assigned to each tenant.
In the second option, we have a multi-tenant application which serves multiple clients.
Single-instance, Single-tenant
at
Multi-instance, Single-tenant
pl
Sa
Client A
Client C
Client B
Client A
Client C
Client B
12
Copy
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Multi-TenancyStorage
Multi-TenancyStorage
The following figure shows a single-tenant database, where each client has their own unique database on th
The following figure shows a single-tenant database, where each client has their own unique database
left hand side
panel.
On side
the right
side
the panel,
multi-tenant
scenario
is shown.
In a multi-tenant
on the
left hand
panel.hand
On the
rightpanel,
hand side
the multi-tenant
scenario
is shown.
In a multiscenario, each
useseach
the client
sameuses
database,
butdatabase,
with thebut
relevant
capabilities
implemented
to ensure secu
tenantclient
scenario,
the same
with the
relevant capabilities
implemented
data isolation.
to ensure secure data isolation.
Client
Client
Multi-Tenancy
ot
fo
r
Single-Tenancy
Client
Client
R
ep
r
Client
Client
in
t
Client
Client
Client
Client
Client
Client
Copyright 2
Multi-TenancyNetwork
Multi-TenancyNetwork
er
ia
The following
figure
shows
a multi-tenant
topology,
where
traffic
is routed
on th
The following
figure
shows
a multi-tenantaware
aware network
network topology,
where
traffic
is routed
basedbased
on
request.
the client request.
Tenant A
VM2
30.0.0.5
10.0.0.3
at
Tenant A
VM1
30.0.0.4
10.0.0.2
Tenant C
VM1
30.0.0.6
10.0.0.2
Tenant C Private
Net1
10.0.0.0/24
e
pl
m
Tenant C
VM3
Tenant C
VM4
10.0.1.2
10.0.1.3
Tenant C Private
Net2
10.0.1.0/24
10.0.0.1
10.0.0.1
Sa
Tenant C
VM2
30.0.0.7
10.0.0.3
Tenant A
Router
10.0.1.1
Tenant C Router
30.0.0.3
30.0.0.2
External Net
30.0.0.0/22
30.0.0.1
Physical Router
13
Cloud
Administrator
BroadNetwork
Network
Access
Cloud
Administrator and
and Broad
Access
The cloud administrator should ensure the cloud is widely accessible by supporting a range of devices, trans
The cloud administrator should ensure the cloud is widely accessible by supporting a range of devices,
protocols, interfaces, and security technologies.
ot
fo
r
R
ep
r
in
t
Copyright 20
Ubiquitous
access
enables cloud services to be more accessible, making them easier to consume.
damentals
of Cloud
Administration
Administrator
Broad
Network
AccessTransportProtocols
Protocols
CloudCloud
Administrator
and and
Broad
Network
AccessTransport
er
ia
Multiple
transport
protocols
needneed
to betosupported
to enable
cloud
varietyofofdevices.
devices.
Multiple
transport
protocols
be supported
to enable
cloudaccess
accesson
on aa wide
wide variety
Local Services
4G
Web
Services
Bluetooth
Local Services
Fiber
Sa
pl
at
Internet
Sensors
This slide highlights the complexity associated with supporting multiple protocols to deliver the promise
of ubiquitous access.
14
Copyright 2015 | 22
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Making cloud services more accessible, anywhere, any time introduces security risks that have to be
Making cloud services more accessible, anywhere, any time introduces security risks that have to be carefully
carefully considered.
considered.
Digital
Camera
Tapping
Threat
Attack
Intrusion
PDA
Server
ot
fo
r
Desktop PC
in
t
Digital TV
R
ep
r
Cellar
Phone
Mobile PC
Copyright 2015 | 23
This slide creates awareness on the security threats posed by making cloud services widely accessible.
Cloud administrators
should enable
theMeasured
monitoring
of IT resources and generation of related usage reports
Cloud Administrator
and
Usage
integrated with payment or charge back capabilities.
Pay-per-use
Monitor
Log Database
Cloud
Service
pl
at
er
ia
Cloud administrators should enable the monitoring of IT resources and generation of related usage
reports integrated with payment or charge back capabilities.
Sa
Cloud Service
Consumer
Metered usage is a cloud capability that enables cost efficiencies. This requires the right level of
monitoring and reporting.
15
Copyright
Professional
Cloud Administrator
damentals
of Cloud
Administration
Public Cloud
Hybrid Cloud
ot
fo
r
R
ep
r
Community Cloud
in
t
Private Cloud
Copyright 2015 | 25
areAdministration
also a number
ways to deliver or roll out cloud services. In some deployment models, the
Cloud There
Resource
andofProvisioning
financial commitment lies with the organizations that use these clouds.
Fundamentals of Cloud Administration
Cloud Deployment
Deployment ModelsPrivate
ModelsPrivate Cloud
Cloud
Private Cloud
Sa
pl
at
er
ia
AAprivate
privatecloud
cloudisisoperated
operatedby
byaasingle
singleorganization,
organization,implemented
implementedbehind
behindaafirewall,
firewall,and
andmanaged
managedby
bythe cloud
administrators within the IT department.
the cloud administrators within the IT department.
Source: http://www.techtarget.com/search/query?q=private%20cloud&type=definition
Copyright 2015 | 26
16
Course
Book | Professional
Cloud group
Administrator
| Cloudconsumers
Resource Administration
and Provisioning
Access
is limited
to a specific
of cloud
that typically
share respon
membership does not guarantee access or control of community cloud IT resources
R
ep
r
in
t
Community Cloud
Cloud
Deployment
ModelsPublic
Cloud
Cloud
Deployment
ModelsPublic
Cloud
ot
fo
r
Cloud Resource
Administration
and Provisioning
Source:
http://www.techtarget.com/search/query?q=community%20cloud&type=definition
IT resources,
as on-going
maintenance
cloud infrastructure
services
made
CloudCloud
IT resources,
as wellasaswell
on-going
maintenance
on cloudon
infrastructure
services are
made are
available
to theavailable
general public.
to the general public.
Public Cloud
er
ia
salesforce
softlayer
azure
Users
Copyright 2015 | 28
pl
at
amazon
Sa
Source: http://www.techtarget.com/search/query?q=community%20cloud&type=definition
17
ud Deployment
ModelsHybrid
Cloud
Cloud Deployment
ModelsHybrid
Cloud
IT administrator
provides and manages some resources internally, while others are delivered by an external
The IT administrator provides and manages some resources internally, while others are delivered by
d provider.
an external cloud provider.
Cloud Computing Types
Public/
External
ot
fo
r
The Cloud
R
ep
r
Private/
Internal
in
t
Hybrid
Off-Premises/Third Party
Source: http://www.techtarget.com/search/query?q=hybrid%20cloud&type=definition
Copyright 2015 | 29
er
ia
Virtual private clouds enable organizations to utilize public cloud infrastructure in a private manner.
at
Web
Services
VPN
Connection
Subnet
VPC
VPN
Gateway
pl
Subnet
Customer
Gateway
Internet
Endpoint
Sa
Endpoint
Customer
Network
Source: http://www.techtarget.com/search/query?q=virtual%20private%20cloud&type=definition
18
Copyright 2015 | 30
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Cloud Deployment
Models
On-Premise Hosting
Hosting
Cloud Deployment
Models
andand
On-Premise
in
t
The IT administrator
is responsible
for for
managing
serversowned
owned
an organization
and hosted o
The IT administrator
is responsible
managingvirtual
virtual servers
by by
an organization
and hosted
an internal
data
center.
on-site in an internal data center.
ot
fo
r
Dedicated
Server
R
ep
r
Intranet
The virtual servers are managed by a cloud provider who grants the IT administrator remote access.
Cloud-Based
On-Premise
Sa
pl
at
er
ia
The virtual servers are managed by a cloud provider who grants the IT administrator remote access.
Copyright 2015 | 32
19
Single Cloud
Inter-Cloud
Large Enterprises
Large
Enterprises
Cloud B
in
t
Cloud A
Private Cloud
Applications
Public Cloud
R
ep
r
Legacy Systems
Servers
Administration
Storage Systems
SaaS/PaaS
Providers
Independent Shops
ot
fo
r
Network
Independent Shops
Inter-cloud is more of an architectural construct, but worth special consideration due to the need for
Cloud Resource
Administration and
Provisioning
high
speed interconnect
between
the cloud for services such as replication.
Fundamentals of Cloud Administration
er
ia
Cloud
ComputingThree
Service
Models
Cloud
ComputingThree Service
Models
Software
at
Applications
Platform
Software Components
pl
Infrastructure
Sa
20
Infrastructure as a Service
are applications which
provide computing
infrastructure resources as
a service
Copyright 2015 | 34
Copyright 2015 | 33
Cloud
Service
ModelsInfrastructure
a Service
Cloud
Service
ModelsInfrastructure
as as
a Service
TheThe
cloud
administrator
provides
and manages
basicbasic
computing
utilities
such such
as compute,
storage,
networks,
cloud
administrator
provides
and manages
computing
utilities
as compute,
storage,
and other fundamental computing resources.
networks, and other fundamental computing resources.
laaS
in
t
Service Provider
ot
fo
r
R
ep
r
MoE
Copyright 2015 | 35
Source: http://www.techtarget.com/search/query?q=iaas&type=definition
er
ia
The cloud administrator provisions a set of ready to use IT resources such as databases, middleware,
The cloud administrator
provisions a set of ready to use IT resources such as databases, middleware,
development tools, and governance.
development tools, and governance.
Load
Balancer
at
IN SSL
Gateway
Linux 64
Linux 64
MySQL DB
MySQL DB
NetMagic IDC
Automated Metering
HA by Default
Storage
IDC
Sa
pl
Internet
Copyrigh
Source: http://www.techtarget.com/search/query?q=paas&type=definition
21
ot
fo
r
R
ep
r
in
t
TheIT
ITadministrator
administratorenables
enablesaasoftware
softwareapplication
applicationto
tobe
be available
available as
as aa cloud
cloud service
service to
to various
various cloud
cloud service
The
service consumers.
consumers.
Copyright 2015 | 37
Source: http://www.techtarget.com/search/query?q=saas&type=definition
er
ia
Client
The administrator uses a multi-tenant database architecture to deliver a cloud service to multiple cloud
consumers
over the Internet.
The administrator
uses a multi-tenant database architecture to deliver a cloud service to multiple
cloud consumers over the Internet.
Client
at
Client
Client
Client
Multi-Tenancy
Client
Client
Client
Client
Client
pl
Single-Tenancy
Client
Client
Sa
Source: http://www.techtarget.com/search/query?q=daas&type=definition
22
Copyright 2015 | 38
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Discussion
Forum
Discussion
Forum 20
Minutes
20 Minutes
What are the major roles and responsibilities of a cloud administrator within the context of various cloud service and
models?roles and responsibilities of a cloud administrator within the context of
What deployment
are the major
various
Copyright 2015 | 40
ot
fo
r
R
ep
r
in
t
Cloud
Workload
Analysis
Cloud Resource
Administration
and Provisioning
er
ia
at
Application
Architecture
Technical
Aspects
Sa
pl
Workload Considerations
Business
Impact
Non-Functional
Requirements
Support and
Costs
Copyright 2015 | 42
23
On-Off
Aperiodic Bursting
Periodic Bursting
R
ep
r
in
t
High Growth
ot
fo
r
Idealized
Workloads
Collaboration
Copyright 2015
On-Line Storage
er
ia
SME ERP
DB Migration Situational
Apps
at
pl
LE ERP
Transactional
Content
Application Data
Archive
Test
Sa
In addition to workload types, when migration to the cloud is under consideration, it is important to
consider impact of migration. Some workloads might not benefit much from a cloud deployment model
when compared to others. It is important to focus on workloads that stand to benefit the most.
24
Copyright 2015 | 44
Assess operation cost variations between the present situation and running in the cloud.
Assess operation cost variations between the present situation and running in the cloud.
Total
Annual
Cost
On-premise
Hybrid
cloud
Fixed
Workload
Cloud Resource Administration and Provisioning
R
ep
r
in
t
Variable
Workload
ot
fo
r
As previously stated, workload analysis typically results in a different cost model for cloud delivery.
Assess service quality differences between on-premise and the cloud.
Assess service quality differences between on-premise and the cloud.
Copyright 2015 |
Added
Value
er
ia
Cost
Savings
Cost/Performance
Improve
Business/IT
Performance
at
QoS
Time
Cloud
CloudWorkload
WorkloadAnalysis
Analysisand
andCapacity
CapacityPlanning
Planning
Assess
therequirements
requirementsfor
forscaling
scalingthe
theapplication
application to
to meet
meet usage
usage demands.
demands.
Assess
the
Grid-like
Diagonal Scaling
Vertical Scaling
pl
m
Sa
Copyright 2015 | 46
Distributed web-like
Horizontal Scaling
Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.
25
Copyright 2015 |
in
t
city Planning
Can cloud metering and billing be performed?
Are flexible backup and restore capabilities needed for this workload?
ot
fo
r
Deployment Model
R
ep
r
d for
er
ia
plex
at
dit
Sa
pl
be
26
Copyright 2015 | 48
Applications
Runtimes
Runtimes
Databases
Databases
Servers
Servers
Storage
Virtualization
Server HW
Collaboration
Integration
Analytics
Storage
Storage
Networking
Networking
Co
at
Platform:
Server HW
er
ia
Business Process
Virtualization
Industry Applications
Servers
Networking
Applications:
Databases
Manage by vendor
Server HW
Manage by vendor
Virtualization
R
ep
r
Runtimes
ot
fo
r
You manage
Applications
in
t
Applications
You manage
Software
(As a Service)
Manage by vendor
Platform
(As a Service)
Infrastructure:
pl
Compute
Storage
Disaster Recovery
Sa
27
ProfessionalAnalysis
Cloud Administrator
Cloud Workload
and Capacity Planning
No under-supply
Waste of
capacities
Reduction of
over-supply
in
t
Under-supply
Allocated
of capacities IT-capacities
IT Capacity
IT Capacity
Possible
reduction of
IT-capacities
in case of
reduced load
Reduction of
initial
investments
Actual Load
Actual Load
R
ep
r
Barrier for
innovations
Fixed cost of
IT-capacities
TIME
TIME
ot
fo
r
Challenging
toand
have
hardware delivered and configured rapidly to meet increased demand Copyright 2015 |
Cloud Resource
Administration
Provisioning
50
M
Requests
Schedulers
VM
EBS
VM
EBS
VM
EBS
pl
Clients
Performance
Feedback
Deploy/Adjust
Configuration
at
Workload
Description
Provisioner
er
ia
Configuration
Description
Cloud Workload
Analysis
Planning
Might
not beand
ableCapacity
to minimize
under utilization when faced with periodic peaks in demand
Sa
28
Copyright 2015 | 51
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Prepare:
Build necessary figures and data repositories.
Automation:
Implement automated provisioning capabilities to provision quickly when the need arises.
in
t
Source: http://www.techtarget.com/search/query?q=Cloud%20%20Capacity%20Planning&type=definition
R
ep
r
Remote desktop protocol: This enables an administrator to connect to and control the
operating system without having to be physically at the host computer.
ot
fo
r
Remote shell: An administrator can use a remote shell command-line program to execute
commands across the network in an unsecured manner.
Secure shell: This provides a secure way to perform remote management by creating an
encrypted tunnel for all traffic.
Web console: This enables an administrator to access a host server via a web browser.
er
ia
http://www.techtarget.com/search/query?q=remote%20administration&type=definition
Remote Source:
Administration
(Contd.)
at
Cloud resource
administrator
the remote
administrationsystem
system to
thethe
cloud
service.
Cloud resource
administrator
uses uses
the remote
administration
to administer
administer
cloud
service.
Cloud Service
Consumer
Cloud Resource
Administrator
Cloud Service
Consumer
Sa
pl
Web Application
Interface
(Management
Console)
Cloud
Service
On-premise/Cloud
Resource Administrator
Remote
Administration
System
Management Tool
Source: http://www.techtarget.com/search/query?q=remote%20administration&type=definition
Copy
29
Network Administration
Network Group:
A group of interconnected computers and peripherals capable of sharing resources such as
software, hardware, and files.
Virtual Local Area Networks (VLANs):
Administrators use VLANs to logically divide IP networks and allocate IP addresses more
efficiently.
in
t
Source: http://www.techtarget.com/search/query?q=vlan&type=definition
Computing Hardware
Computing Hardware
IaaS
R
ep
r
PaaS
SaaS
ot
fo
r
SaaS Workloads
PaaS Workloads
Orchestration Layer
Additional layers required
for IaaS Fabric
Management
Management Layer
Automation Layer
er
ia
Virtualization Layer
Network
Compute
at
Storage
Hardware Layer
Facility
This figure illustrates the typical makeup of cloud computing hardware. At the bottom you have the
physical resources, and the various layers of capabilities required to run workloads which serve client
requests.
Sa
pl
Source: http://www.techtarget.com/search/query?q=cloud%20hardware&type=definition
30
Copyright 2015 | 56
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Network Hardware
Network Hardware
Network
Switch
in
t
These are the key hardware components from a networking point of view are routers and switches.
These
areenables
the key an
hardware
components
from
a networking
point
view areSwitch
routers
and switches.
Router
administrator
to route
traffic
from outside
theof
network.
connects
devicesRouter
on
enables an administrator to route traffic from outside the network. Switch connects devices on the internal
the internal network.
network.
Company Firewall
Router
ot
fo
r
Desktop Users
R
ep
r
Internet Cloud
Remote Workers
ng Cloud Technologies
Source: http://www.techtarget.com/search/query?q=cloud%20network%20hardware&type=definition
Storage Hardware
Copyright 2015 | 57
ge Hardware
er
ia
e typesCommon
cloud storage systems include converged storage, cloud object storage, an
Storage typesCommon cloud storage systems include converged storage, cloud object storage,
AN.
and NAS/SAN.
VM
VM
VM
VM
vDisk vDisk
VM
vDisk
CSR
VM
vDisk vDisk
Flash
Flash
Flash
Flash
SSD
SSD
SSD
SSD
pl
at
vDisk
Network
Sa
S3
Converged Storage
NAS/SAN
Source: http://www.techtarget.com/search/query?q=cloud%20storage%20hardware&type=definition
31
ministration
and
Provisioning
Professional
Cloud
Administrator
Provisioning
Cloud Resource Provisioning
Provisioning
Application Owner
Approve Request
Approve Request
Preventive
Segregation of
Duties Check
Approval Hierarchy
Route
To Additional
Approver
Approval Hierarchy
Segregation of
Duties Rules
Route to
Primary
Approver
Target Platform
ot
fo
r
Submit Request
Manage or Security
Administrator
Any Person or
System
R
ep
r
Deliver
rapid platform
provisioning capabilities
for ready-made
environments.
pid platform
provisioning
capabilities
for ready-made
environments.
in
t
r a resource
management system mechanism that enables cloud consumers to create, c
Can deliver aresource management system mechanism that enables cloud consumers to
mized ready-made
environments.
create, control,
and customized ready-made environments.
Automatically
Grant Access
Entitlement
Configuration Rules
er
ia
Entitlement Repository
at
Easy provisioningVirtual or physical resources can be created, resized, and assigned to hosts in
a fraction of the time it takes to provision manually. The environment is simpler to manage. The
provisioning system takes care of all access control requirements.
pl
Here are some of the key activities that happen during provisioning. The actual implementation varies
from one cloud provider to the next, but the overall purpose is to ease and simplify the effort needed
to make resources available to clients.
Sa
32
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Select
Cloud User
Requests a virtual machine
Service Catalog
Virtual machine offerings
Approver
Approver
in
t
Publish
R
ep
r
Cloud Administrator
Creates catalog items
Cloud Operator
Provisions requests and manages
virtualization systems
Public
Cloud
figures
Template
ot
fo
r
Private
Cloud
Platform services:
Copyright 2015 | 62
Manual provisioning is inefficient and introduces unacceptable risks due to human error and
inefficient response times in complex cloud deployments with multiple users.
er
ia
Automated provisioning engine, scripts, and templates are used on-demand provisioning.
Cloud Resource Provisioning
at
Provisioning
Control
ofof
Virtual
Capacity
Provisioning
Control
Virtual
Capacity
Sa
pl
Setup Cloud
Policies
Build App &
Package as
Appliance
Setup Cloud
Infrastructure
Deploy
Patch
Monitor
Scale
up/down
Decommission
Copyright 2015 | 6
Based on policies defined, the provisioning system can initiate various lifecycle management actions.
33
ource Provisioning
Virtual network environment and network access rules (firewalls, logical network perimeters).
Provisioning
Relationship
Begins
R
ep
r
in
t
Authentication
ot
fo
r
Authorization
Self-Service
Identity
Management
Life Cycle
Changes/
Modifications
to Role
Password
Management
er
ia
Relationship
Ends
De-provisioning
Compliance
at
Security policies are important for the delivery of cloud management capabilities.
Management capabilities delivered:
pl
Credentials for cloud-based security groups that access virtualized IT resources through an
IAM.
Sa
Security-related configurations.
Customized virtual server figure storage (importing, exporting, backup).
34
Copyright
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
d Resource Provisioning
Policies
and Automation
DeploymentDeployment
Policies and
Automation
Plan
Optimize
Setup
in
t
Meter &
Charge
Platform as a Service
MWaaS
DBaaS
Testing
as a
Service
Manage
Build
ot
fo
r
Infrastructure
as a Service
R
ep
r
Applications and
Business Services
Monitor
Test
Deploy
Copyright 2
er
ia
at
Establish and display service provisioning agreements, such as account conditions and usage
terms.
Select and monitor PaaS-related SLA metrics.
Establishes and displaying service provisioning agreements (account conditions, usage terms).
pl
Control scalability features such as usage quotas, active instance thresholds, and the
configuration and deployment of the automated scaling listener and load balancer mechanisms.
Sa
Source: http://www.techtarget.com/search/query?q=Multi-Tenancy&type=definition
35
d Resource Provisioning
Storage
and Compute
Multi-Tenancy
Storage
and Compute
Multi-Tenancy
Customer 1
Customer 2
Customer 1
Customer 2
Customer 1
Customer 2
Application
Database
Multi-tenant
Infrastructure
Complete multi-tenant
Cust 1
Multi-tenant
Infrastructure
Cust 2
Efficiency
low
Flexibility
Multi-tenant
Database
high
Customer 2
in
t
Multi-tenant
Database
Customer 1
low
ot
fo
r
Multi-tenant
Infrastructure
Multi-tenant Application
R
ep
r
Multi-tenant Application
high
This is the outline of storage and multi-tenancy provisioning considerations. The figure shows various
Copyright 2015 |
multi-tenant configurations.
Capabilities:
al Storage
Management Control
Management Control
at
ResourceVirtual
Administration Storage
and Provisioning
er
ia
Source: http://www.techtarget.com/search/query?q=Multi-Tenancy&type=definition
Sa
pl
Virtual disk
Virtual disk
Storage virtualization groups multiple network storage devices into a single storage unit that
Storage virtualization groups multiple network storage devices into a single storage unit that can be managed from
can be managed from a central console and presented to a virtual machine or host computer
a central console and presented to a virtual machine or host computer as a single storage unit.
as a single storage unit.
Server 1
Server 2
SAN
V1
V2
V3
Server 3
V4
Virtualization Disks
V5
Logical Mapping
Virtualization Layer
Physical
Infrastructure
Storage Pools
Lz
36
Lh L i
Lx
La
Lb
Lc
Ly
Le
Lf
Lg
Lz
Lh L i
Copyright 2015 | 68
66
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Easy provisioningVirtual disks can be created, resized, and assigned to hosts in a fraction of
the time it takes to provision a physical disk.
Nondisruptive data migrationEase of migration of data from the underlying physical disk
when needed, without having to take the system offline.
ource Administration
and storage
Provisioning
Simpler
managementA central management point and standard set of services to
torage
heterogeneous storage devices simplifies admin tasks such as mirroring and replication.
in
t
Source: http://www.techtarget.com/search/query?q=virtual%20disk&type=definition
visioning Design
Provisioning Design
R
ep
r
ual disks:
Virtual disks:
ot
fo
r
thin-provisioned disk starts out small and grows as data is written to it, whereas a thick disk size is defined
A thin-provisioned disk starts out small and grows as data is written to it, whereas a thick disk
he disk is created. Thin
provisioning provides economies of scale in a public cloud environment, where data
size is defined when the disk is created. Thin provisioning provides economies of scale in a
equirements are hard
to
predict.
public cloud
environment, where data store requirements are hard to predict.
VM
VM
VM
Hypervisor
THIN
20 GB
40 GB
at
er
ia
Virtual
Disks
THICK
20 GB
Datastore
20 GB
THIN
80 GB
40 GB
100 GB
60 GB
20 GB
pl
Source: http://www.techtarget.com/search/query?q=virtual%20disk&type=definition
Service Management
Storage provisioning:
Sa
Decisionsregarding the type and the size of the disk are needed while creating a virtual disk.
Thin provisioning allows virtual disks to allocate and commit storage space on demand, using
only the space they require.
37
Storage provisioning:
Decisions regarding the type and the size of the disk are needed while creating a virtual disk.
Professional Cloud Administrator
Thin provisioning allows virtual disks to allocate and commit storage space on demand, using only the space
they require.
Traditional
Allocation
Allocated
& Unused
Available Storage
in
t
Volume B
Allocated
& Unused
Volume A
R
ep
r
DATA
Volume B
DATA
DATA
Volume A
Copyright 2015
ot
fo
r
DATA
arketplaces
Cloud Marketplaces
Org-Adminutes
Resellers
Business Team
Delegated
Administration Portal
E-Learning Portal(s)
Reseller Portal
Fulfillment Services
Services Catalog
Community Portal(s)
er
ia
Sales Portal-Storefront
Tech Team
Extended Community
Self-Service
Support Portal
Virtual Firewall
VSwitch
Voice Services
Managed
Archives
SME
Resources
Facilities
Access (VPN)
Infrastructure
Management
VM-Library
Virtual Router
CloudStorage
vServer
OfficeApps
Managed
Email
Managed
Backup
Software
Licensing
Content
Management
Learning
Management
at
vLoadBalancer
Virtual IP
Technology Services
pl
Sa
Provisioning,
Change Management
De-commissioning
Security
Services
Desktops
DNS
IP Mgmt
Office Apps
Log Mgmt
Business Workflows
(Proposal, Order,
Provisioning, Change
Request, Termination)
Backend Integration
(Activation/Ordering)
Billing Related
Authentication Services
End-Users
ketplace
Administration
Marketplace
Administration
Copyright 2015 | 72
Marketplace is an online store for discovering, purchasing, and deploying cloud web applications, and
for advertising professional services.
Source: http://www.techtarget.com/search/query?q=cloud%20marketplace&type=definition
38
ud Marketplaces
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
PaaS
Platform as a
Service
SaaS
Software as a
Service
Cloud Services
in
t
IaaS
Infrastructure
as a Service
Channels
SMBs
ot
fo
r
Enterprises
Helpdesk,
Billing,
Ticketing,
Metering, and
and Support Chargeback
R
ep
r
Catalogue
Self-Service Service and Authentication,
Management Fulfillment
User
Authorization, and
Provisioning Access Control
Capabilities:
rce Administration
and Provisioning
Manage
users and applications from a single unified interface.
Deliver a usage and administration portal for use by the cloud consumer to access and configure
the cloud service.
etplaces
Copyright
er
ia
Master Marketplace
at
Master Marketplace
(Master Catalog)
Sa
pl
Platform/ Super
Admin
Sub-Tier Marketplaces
Marketplace
Owner/Admin
Sub-Tier Marketplace
(Sub-Tier Catalog)
App
Stores
App Store
Administrator
App
Store 1
App
Store 2
App
Store n
Customers
User
Administrator
User
Portal 1
User
Portal 2
User
Portal n
End Users
39
Administration:
Delegated Administration is needed for highly complex marketplaces.
For ease of use and access, federated logins tied to a federated identity should be used for
third-party applications.
in
t
A variety of integration points should be configured for the users of the applications.
R
ep
r
ot
fo
r
Sa
pl
at
er
ia
portability concerns.
40
Copyright 2015 | 76
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning
Module Summary
In this module, you learnt:
Fundamentals of Cloud Administration
Cloud Definition
Introduction of Cloud Administrator
in
t
Remote Administration
er
ia
Network Administration
ot
fo
r
R
ep
r
Computing Hardware
Network Hardware
at
Storage Hardware
pl
Sa
Virtual Storage
Management Control
Provisioning Design
Service Management
Cloud Marketplaces
Marketplace Administration
41