You are on page 1of 49

e

pl

Sa

er
ia

at

M
ot
fo
r

in
t

R
ep
r

www.ITpreneurs.com

Copyright

in
t

Professional Cloud Administrator, release 2.0.0

Cloud Credential Council is a registered trademark.

R
ep
r

Copyright and Trademark Information for Partners/Stakeholders.

ot
fo
r

Copyright 2015 by ITpreneurs Nederland B.V. All rights reserved.

Please note that the information contained in this material is subject to change without
notice. Furthermore, this material contains proprietary information that is protected by
copyright. No part of this material may be photocopied, reproduced, or translated to
another language without the prior consent of ITpreneurs Nederland B.V.

Sa

pl

at

er
ia

The language used in this course is US English. Our sources of reference for grammar,
syntax, and mechanics are from The Chicago Manual of Style, The American Heritage
Dictionary, and The Microsoft Manual of Style for Technical Publications.

Copyright 2013 ITpreneurs. All rights reserved

in
t

Contents
Module 1: Course Introduction

Lets Get to Know Each Other

R
ep
r

Overview 1
Course Learning Objectives
Course Agenda
Case Study

2
2
3

Activities 4

ot
fo
r

Course Book
Module Summary

Module 2: Cloud Resource Administration and Provisioning


Module Learning Objectives

Module Topics

Fundamentals of Cloud Administration

5
5
5
6

Cloud Workload Analysis and Capacity Planning

23

Administering Cloud Technologies

29

er
ia

23

32

Virtual Storage

36

Cloud Marketplaces

38

Activity Time: Cloud Marketplaces

40

Module Summary

41

at

Cloud Resource Provisioning

Module Learning Objectives

pl

Module Topics

Activity Time: Fundamentals of Cloud Administration

Module 3: Cloud Scalability and Elasticity Administration

Sa

43
43
43

Cloud Scalability Administration

43

Cloud Elasticity Administration

50

Activity Time: Cloud Scalability and Elasticity Administration

58

Module Summary

59

Module 4: Cloud Interoperability and Portability

61

Module Learning Objectives

61

Module Topics

61

The Need for Interoperability and Portability

62

Activity Time: The Need for Interoperability and Portability

70

Strategic Planning for Interoperability and Portability

71

Common Activities in Planning Interoperability and Portability: IaaS

72

Common Activities in Planning Interoperability and Portability: PaaS

75

Common Activities in Planning Interoperability and Portability: SaaS

79

Activity Time: Strategic Planning for Interoperability and Portability

82

Module Summary

83

85

Module Topics

85

Policy Management and Control

85

Service Level Management

88

R
ep
r

Module Learning Objectives

Metering and Billing Management

91

Licensing and Compliance Management

92

Activity Time: Licensing and Compliance Management

94
95

ot
fo
r

Module Summary

Module 6: Business Continuity Strategies and Disaster


Recovery for Cloud
Module Learning Objectives
Module Topics
Business Continuity

Disaster Recovery

97
97
97

100

Module Summary

109

109

Module Topics
Fundamental Security Threats

at

Cloud Security Administration

er
ia

Module 7: Cloud Security Fundamentals

Activity Time: Cloud Security Administration

111
111
111
111
115
127
127

Activity Time: Security Standards

129

Module Summary

130

pl

Security Standards

131

Module Learning Objectives

131

Module Topics

131

Federated Identity Management

132

Systems Management

138

Service Level Management

140

Broker Platform

142

Activity Time: Broker Platform

149

Module Summary

149

Sa

Module 8: Federated Controls and Strategies for


Multiple Cloud and Non-cloud Administration

ii

97

Activity Time: Business Continuity Strategies and Disaster Recovery for Cloud

Module Learning Objectives

in
t

Module 5: Strategic Policy Design for Cloud Usage and


Compliance 85

Module 9: Performance Measures, Monitoring, and


Optimization in Production

151
151

Module Topics

151

Lifecycle Management

152

Management and Administration Policies

156

Monitoring and Reporting

160

Infrastructure Benchmarking

164

in
t

Module Learning Objectives

Availability and Performance

167

Usage and Accounting

168

Activity Time: Usage and Accounting


Module Summary

R
ep
r

170
171

Module 10: Exam Preparation Guide


Module Learning Objectives

173

ot
fo
r

Topics Covered in this Module


1. Qualification Learning Objectives
2. Learning Level of the Syllabus
3. Certification
4. Exam Instructions

5. Tips for Exam Taking

Mock Exam

173

er
ia

Mock Exam Answers

173
173
174
175
176
177

179
185
189

Appendix B: Release Notes

201

at

Appendix A: Syllabus

203

Sa

pl

Appendix C: Participant Feedback Form

iii

nt

Th m
is p
pa le
ge M
haa
stbe
eriea
nl l
eft
Nbla
ot nk
fo inte
r R nt
ion
ep al
ri ly

Sa

www.ITpreneurs.com

Acknowledgements

CCC Professional Cloud Administrator, release 2.0.0

R
ep
r

Lead Author

in
t

We would like to sincerely thank the experts who have contributed to the development of the
ITpreneurs products:

Dr. Navti Founded and recently launched cloudclinique.com, a cloud best practice
platform for consultants. CloudClinique enables busy consultants to acquire cloud
certification best practices from a database of over 6700 concepts.

Tech Equity Ltd is a boutique company specializing in enabling clients to maximize


their investment in cloud. We do this by enabling decision makers to align the
value of the cloud to their strategic business objectives. We are leading a
consortium working to deliver enterprise cloud services in Africa.

Dr. Shiyghan Navti

ot
fo
r

Dr. Navti is the Africa Cloud Ambassador for the Cloud Credential Council, and a
founding member and Director of the Africa 2.0 Foundation UK. He During his 13
years at IBM, led the European private cloud technical sales business and the
company's Africa expansion strategy and marketing. He coordinated IBM's $1bn
Africa strategy for Nigeria, Kenya, Ghana, and Angola.

er
ia

Since founding Tech Equity in July 2013, the company has delivered services to
clients in the US, UK, Germany, Kenya, Ethiopia, Mali, and the United Arab
Emirates.

Mr. Kumail Morawala, a Senior Architect at Combustec, is an Experienced


Information Technology Professional and an Enterprise Architect with years of
experience in helping businesses transform their IT infrastructure in order to gain
competitive advantage. His experience in working in Europe, Middle East and Asia
has given him the competitive edge to understand the demanding needs of the
localized markets and apply that to the Global stage. He is well versed and
experienced in designing solutions for Cloud Computing, Virtualization and Big
Data.

Sa

pl

at

Reviewer

Kumail Morawala

He truly believes the next generation of companies will only be differentiating


based on their customer experience and hence technologies like Cloud Computing
and Big Data helps enterprise achieve this edge. He is currently working with a lot
of organizations to transform them and achieve success.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

www.ITpreneurs.com

Mr. Morawala holds different trainer and professional level certifications in the field
of Cloud Computing, Big Data, Virtualization Etc. Currently he is involved in
helping a Government agency to transform the E-Services and develop a cloud
based data exchange platform to enrich the decision making with the enormous
data at hand.

R
ep
r

in
t

He played an important role as a Reviewer for ITpreneurs in the development of


this course.

Reviewer

ot
fo
r

Esteban Kolsky is a Customer Strategist with more than 25 years in technology,


customer service, communities, social media, online and offline marketing, CRM,
and enterprise strategy. An early pioneer in community-based customer service,
feedback management, and using social channels for customer service, Esteban
helps his clients develop and implement strategies that enable them create winwin relationships with their customers.

Leveraging experience as an industry analyst, strategy consultant, entrepreneur,


practitioner and technologist, he brings the combined experience of the knowledge
of his work and that of his clients to his research and development efforts. The
resulting work is pragmatic in nature, but deeply strategic in resultsoften
resulting in key tactical projects that propel companies to new heights.

Esteban Kolsky

Sa

pl

at

er
ia

Esteban specializes in customer strategies to help growing and changing


organizations adopt and succeed with emerging technologies and topics.

vi

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Module 1
Course Introduction

Introduce yourself in the following format:


Name
Lets
Get to Know Each Other
Company

Introduce yourself in the following format:


Role and background

Name

R
ep
r

in
t

Course Introduction

Lets Get to Know Each Other

Expectations
from this course
Role
and background

ot
fo
r

Familiarity with cloud concepts and their practice

Company
ITIL and IT service management experience

Familiarity with cloud concepts and their practice

er
ia

Expectations from this course

ITIL and IT service management experience

Copyrigh

at

Overview

Sa

pl

The aim of this course is to lay out the core components of the cloud administrator function and the
necessary skills. This course will enable the participants to apply the underpinning administration
concepts in an enterprise cloud computing environment, while taking into account the impact of the
shift of some aspects of a cloud administration role to external cloud providers. The course also
explores the broadening of cloud administration remit including IT environments that are elastic and
involve self-service administration through third parties with varying degrees of access control.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Professional Cloud Administrator

Course Learning Objectives


At the end of this course, you will be able to:
Explain the types of cloud environments:
Cloud environment controls
Hosting

in
t

ITO outsourcing

R
ep
r

CoLoc, onshore
Offshore versus cloud

Plan for cloud capacitypolicy management and third-party management.

Explain the cloud administration technology: virtual networks, storage and computing, and
application management in the cloud.

Course Agenda

enda

Explain cloud provisioning, capacity management, service desk management, and cloud
provisioning/automation management.

oduction

ot
fo
r

Explain security administration, compliance, and certification.

er
ia

subject

start

end

total
time
(in hours)

Course Introduction

09:00

09:30

00:30

02

Cloud Resource Administration and Provisioning

09:30

11:30

02:00

03

Cloud Scalability and Elasticity Administration

11:30

12:30

01:00

Lunch

12:30

13:30

01:00

at

01

Cloud Scalability and Elasticity Administration

13:30

14:30

01:00

04

Cloud Interoperability and Portability

14:30

16:30

02:00

Recap Day 1

16:30

17:00

00:30

03

Total

08:00

total (less lunch)

07:00

Sa

pl

dAy 1

Module

Contd

Copyright 2015 |

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Course Introduction

Course Agenda

Course Book | Professional Cloud Administrator | Course Introduction

end

total
time
(in hours)

Review Day 1

09:00

09:30

00:30

05

Strategic Policy Design for Cloud Usage and Compliance

09:30

11:30

02:00

06

Business Continuity Strategies and Disaster Recovery for


Cloud

11:30

12:30

01:00

Lunch

12:30

13:30

00:30

06

Business Continuity Strategies and Disaster Recovery for


Cloud

13:30

14:30

07

Cloud Security Fundamentals

Course Introduction

Recap Day 2

Course Agenda

Total

01:00

R
ep
r

dAy 2

subject

in
t

start

Module

14:30

16:30

02:00

16:30

17:00

00:30

08:00

total (less lunch)

07:00

start

end

total
time
(in hours)

09:00

09:30

00:30

09:30

11:00

01:30

11:00

12:30

01:30

12:30

13:30

01:00

13:30

14:30

01:00

Exam Prep, Self-Study and Q & A

14:30

15:30

01:00

Exam (if taken on the same day)

15:30

17:00

01:30

Module

subject
Review Day 2

Federated Controls and Strategies for Multiple Cloud and


Noncloud Administration
Performance Measures, Monitoring, and Optimization in
Production

dAy 3

09

Lunch

Total

at

total (less lunch)

Copyright 2015

08:00
07:00

Case Study

er
ia

Course Review 3

08

Course Introduction

ot
fo
r

Contd

Case
Study
A case study
with related exercises and activities will be used throughout the course. The case study is

attached
with
the
Course
Book. The
on the scenarios
from the
A case
study
with
related
exercises
andexercises
activitieswill
willbe
bebased
used throughout
the course.
Thecase
casestudy.
studyThese
exercises
will
include:
is attached with the Course Book. The exercises will be based on the scenarios from the case study.
These
exercises will include:
MCQs

pl

Copyright 2015

MCQs
MMCQs

Sa

Brainstorming
MMCQs
Discussion forum

Brainstorming

Group Discussion

Discussion forum

Puzzles

Group
Role
PlayDiscussion
Puzzles
Role Play

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2

ourse Introduction

ctivities

Professional Cloud Administrator

In addition to the case study based activities, there will be several other activities meant for enhancing retention.
Activities
The activities
are inserted at logical interval to give a relaxing break in the training.

Quick
Write-Up

urse Introduction

ourse Book

Role Play

R
ep
r

Describe
the
Picture

in
t

In addition to the case study based activities, there will be several other activities meant for enhancing
retention. The activities are inserted at logical interval to give a relaxing break in the training.

Course Book

Copyright 2015 | 9

Module Summary

at

In this module, you learnt:

er
ia

There is a separate Course Book with you for reference


after the session. It is a comprehensive source of
information and contains whatever is taught in each
module. The case study is also attached with the Course
Book. The Course Book contains several useful exercises
related to the course.

ot
fo
r

Paper
Draw a
Throw
Picture
There is a separate Course Book with you for reference after the session. It is a comprehensive source of
information and contains whatever is taught in each module. The case study is also attached with the Course
Book. The Course Book contains several useful exercises related to the course.

Overview

Copyright 2015 | 10

What will be taught in the course?

Course Learning Objectives

pl

The objectives of the course.

Course Agenda

Sa

The three-day course agenda.

Case Study

A case study will be woven throughout the course.

Activities
There will be several activities for effective learning.
Course Book
The participants will be provided with the Course Book. It is a comprehensive source of
information and contains whatever is taught in each module.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Module 2

ot
fo
r

Module Learning Objectives

R
ep
r

in
t

Cloud Resource Administration and


Provisioning
At the end of this module, you will be able to:

Explain cloud administration influences, roles, characteristics, deployment, and delivery models.
Explain the goals benefits and challenges of workload analysis and capacity planning in the
cloud.

Explain the basic cloud network, compute, and storage administration technologies.

Explain the basics of provisioning environments and platform services in the cloud.
Explain concepts, benefits, and challenges of virtual deployments in the cloud.

er
ia

Explain virtual storage provisioning design and management control concepts.


Explain cloud marketplace administration concepts.

at

Module Topics

The following topics are covered in the module:


Fundamentals of Cloud Administration

Cloud Workload Analysis and Capacity Planning

pl

Administering Cloud Technologies

Cloud Resource Provisioning

Sa

Virtual Storage
Cloud Marketplaces

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Cloud Professional
Resource Administration
and Provisioning
Cloud Administrator

Fundamentals of Cloud Administration

Cloud Definition

Fundamentals of Cloud Administration

Cloud Definition

R
ep
r

Cloud computing is a model for enabling ubiquitous, convenient, on-demand network


access to a shared pool of configurable computing resources (For example: Networks,
servers, storage, applications, and services) that can be rapidly provisioned and released
with minimal management effort or service provider interaction.

in
t

Cloud computing definition according to the official NIST:

Cloud Resource
Administration and Provisioning
Source: NIST

ot
fo
r

Fundamentals
of Cloud Administration
Source:
NIST are many definitions of cloud computing, but the NIST definition is recognized as the reference.
There
Source: http://www.techtarget.com/search/uery?q=Cloud&type=definition

The Cloud Roles

The Cloud Roles

Copyright 2015 | 5

Cloud Consumer

Cloud Resource
Administrator
Cloud Broker

Cloud Auditor
Cloud Carrier

Sa

pl

at

er
ia

The Cloud Roles

Cloud Provider

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 |

ce Administration and Provisioning

als of Cloud Administration

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Influences
and
RolesCloud
Consumer
Cloud
Influences
and RolesCloud
Consumer

consumer isCloud
an organization
or subscriber
with approved
access
touse
use
a cloud-based
IT
consumer is an organization
or subscriber
with approved
access to
a cloud-based
IT
resource.

ERP

Human Resources

Financials

Document
Management

SaaS
Consumer

Collaboration

Cloud Consumer

ot
fo
r

Services
Management

Database

Application
Deployment

Backup &
Recovery

PaaS
Consumer

Integration

Platform
Hosting

Storage

IaaS
Consumer

Compute

Development
& Testing

Productivity

Sales

Business
Intelligence

R
ep
r

Content
Management

CRM

in
t

Social Networks

Billing

er
ia

Example Services Available to a Cloud Consumer


Cloud Resource Administration and Provisioning

Cloud consumer are able to consume various types of cloud services.


Fundamentals of Cloud Administration

at

Cloud
Influences
and RolesCloud
Provider
Cloud
Influences
and RolesCloud
Provider

Sa

pl

An organization
that is that
responsible
for giving
services
physical
that
An organization
is responsible
foraccess
giving toaccess
to and
services
andresources
physical resources
that are
are available
through
a
cloud
computing
infrastructure
is
called
a
cloud
provider.
available through a cloud computing infrastructure is called a cloud provider.

Copyright 2015 | 8

Source: http://www.techtarget.com/search/query?q=cloud%20provider&type=definition
Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration


Professional Cloud Administrator

Cloud Influences and RolesCloud Resource Administrator

Storage Services

R
ep
r

Administrator

in
t

The role of cloud resource administrator is to implement a resource pooling architecture so that the p
and and
virtual
resources can be
dynamically
assigned and reassigned. This is done on the basis of cloud
Cloud Influences
RolesCloud
Resource
Administrator
consumer usage demands.
The role of cloud resource administrator
is to implement a resource pooling
architecture so that the physical and
virtual resources can be dynamically
Compute Services
assigned and reassigned. This is done
Messaging Services
on the basis of cloud consumer usage
Application Services
demands.

Platform Services

oud Resource Administration and Provisioning

ot
fo
r

undamentals of Cloud Administration

Cloud Influences and RolesCloud Broker


Cloud Influences and RolesCloud Broker

Cloud
Broker

SaaS
PaaS
IaaS

at

er
ia

SMBs
Enterprise
Ecosystem

A cloud
broker
the cloud
organization
or individual
responsible
for delivering
mediation,
aggregation,
A cloud
broker
is theiscloud
organization
or individual
responsible
for delivering
mediation,
aggregation,
or
or
arbitrage
services
on
behalf
of
cloud
consumers.
arbitrage services on behalf of cloud consumers.

Sa

pl

Source: http://www.techtarget.com/search/query?q=cloud%20broker&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 10

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Cloud Cloud
Influences
and RolesCloud
Auditor
Influences
and RolesCloud
Auditor

A cloudAauditor
typicallytypically
leads the
evaluation
of security
controls
and the
assessment
of privacy
impacts and
cloud auditor
leads
the evaluation
of security
controls
and
the assessment
of privacy
performance.
impacts and performance.
Data Flow

Management
Server

Data

DB

DB

DB

Data Server

in
t

DB

Cloud
Auditor

R
ep
r

Cloud Service Provider

Cloud

ot
fo
r

Granted
Applications

Users

Audit System Architecture for Cloud Computing

Cloud Resource Administration and Provisioning

Copyright 201

Source: http://www.techtarget.com/search/query?q=cloud%20auditor&type=definition
Fundamentals
of Cloud Administration

Cloud
CloudInfluences
Influencesand
andRolesCloud
RolesCloudCarrier
Carrier

Carriers Network
Cable

DSL

Fiber
VPN

Sa

pl

at

er
ia

A cloud carrier is the network operator or telecommunications provider responsible for providing wire-level
A cloud carrier
is thethe
network
or telecommunications
provider responsible for providing wireconnectivity
between
cloud operator
service provider
and the cloud subscribers.
level connectivity between the cloud service provider and the cloud subscribers.

Copyright 2015 | 1

The cloud carrier is responsible for the transport infrastructure.


What is an example of an organization that plays the cloud carrier role?

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Professional
Cloud Administrator
Cloud Resource
Administration
and Provisioning

Fundamentals of Cloud Administration

Cloud
ComputingFive
Essential
Operational
Characteristics
Cloud
ComputingFive
Essential
Operational
Characteristics
Measured Service

Automated consumer
centric search,
selection, and
provisioning

Resource Pooling

Rapid Elasticity

ot
fo
r

Broad Network Access

Metered resource usage


with monitoring, reporting,
and charging mechanisms

R
ep
r

Five Essential
Characteristics of
Cloud Computer

in
t

On-Demand Self Service

Shared resources for one or many


tenants supporting different
demand and supply capacity

Cloud service accessible


connectivity to a range of
devices and networks
Source: NIST definition of cloud computing

Source: NIST definition of cloud computing

Automated provisioning and


scaling for one or many
tenants
Copyright 2015 | 13

description and
of each
characteristic of cloud computing, shown in the figure, is based on the NIST
ResourceThe
Administration
Provisioning
descriptions of cloud computing characteristics. The cloud administrator facilitate these characteristics.

amentals of Cloud Administration

Cloud Administrator and On-Demand (Self Service)


Cloud Administrator
and On-Demand (Self Service)

er
ia

The
cloud administrator
subscribers
to access
provision
cloudITITresources
resources
he cloud
administrator
shouldshould
enableenable
cloudcloud
subscribers
to access
andand
provision
cloud
without
the
intervention
of
a
cloud
provider.
ithout the intervention of a cloud provider.

Self-Service Portal

Service Catalog

Issue Catalog

Requests

Solutions

My Details

at

Home

pl

My Requests Summary

Report an Issue

My Approvals
Request Approvals

Create a new Service Request


Popular Solutions

Take Action

Portal Usage

Sa

Announcements

Quick Actions

Show all
Copyright 2015 | 14

The ability to provision and consume cloud resources without intervention from the cloud service
provider, empowers users and creates an enhance level of efficiency.

10

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

CloudCloud
Administrator
and and
Elasticity
Administrator
Elasticity

Rising
demand
scenario

Capacity

R
ep
r

CAPEX

in
t

The cloud
should should
use elasticity
capabilities
to optimize
the utilization
of available
resources to
Theadministrator
cloud administrator
use elasticity
capabilities
to optimize
the utilization
of available
supportresources
businesstoprocesses
and
meet
SLAs.
support business processes and meet SLAs.

ot
fo
r

Falling
demand
scenario

ource Administration and Provisioning

Time

Demand

entals of Cloud Administration

Classic Capacity

Cloud Capacity

Elasticity plays a key part in justifying investment in cloud. It is what enables an organization to
ud Administrator
and Resource Pooling
avoid significant upfront costs, while ensuring that resources are always available if needed in future.

Copyright 201

cloud consumer
usage
demands
determine
physical
and virtual resources can be dynamic
Economies
of scale
are required
to deliverhow
high levels
of elasticity.
reassigned by implementing a resource pooling architecture.
Cloud Administrator and Resource Pooling

er
ia

The cloud consumer usage demands determine how physical and virtual resources can be dynamically
assigned and reassigned by implementing a resource pooling architecture.
High Performance

System B

Disk Pool

High Utilization

Sa

Serviceability

System A

pl

at

System C

CPU Pool

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

11

ce Administration and Provisioning

als of Cloud
Administration
Professional
Cloud Administrator

Administrator and Multi-Tenancy

Cloud Administrator
Multi-Tenancy
dministrators
should ensureand
multi-tenancy
capabilities sufficiently enables data and applications
ng to different
organizations
or users
to reside
alongside,
while preventing
confidential
data
Cloud administrators
should
ensure
multi-tenancy
capabilities
sufficiently access
enables to
data
and
applications
belonging
to different
organizations
or users to reside alongside, while preventing access
ed platforms,
shared
storage,
and shared
networks.
to confidential data on shared platforms, shared storage, and shared networks.

Tenant B

Data
Tier

Data
Tier

Tenant C
Data
Tier

ot
fo
r

Shared Storage, Network, Electricity, and Management

R
ep
r

Tenant A

in
t

Cross-grained Multi-Tenancy

Shared Pool of Virtual Machines

e Administration and Provisioning

Multi-tenancy is an important cloud characteristic, although it is not mandatory. Multi-tenancy is used

ls of Cloud
Administration
extensively
by cloud providers to share platforms, storage, and networks. This slide introduces the

Copyright 2015 | 17

concept of multi-tenancy, and subsequent slides expand on the various options further.

enancy
Application
Instances
Is multi-tenancy
a mandatory
cloud characteristic?

er
ia

owing figure shows a single-tenant application with multiple instances assigned to each
Multi-Tenancy Application Instances
n the second option, we have a multi-tenant application which serves multiple clients.
The following figure shows a single-tenant application with multiple instances assigned to each tenant.
In the second option, we have a multi-tenant application which serves multiple clients.
Single-instance, Single-tenant

at

Multi-instance, Single-tenant

Instance for Client


C
Instance
(not client specific)

pl

Instance for Client


A

Sa

Instance for Client


B

Client A

Client C

Client B

Client A

Client C

Client B

This slide shows multi-tenancy from an application instance perspective.

12

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copy

oud Resource Administration and Provisioning

undamentals of Cloud Administration

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Multi-TenancyStorage
Multi-TenancyStorage

The following figure shows a single-tenant database, where each client has their own unique database on th
The following figure shows a single-tenant database, where each client has their own unique database
left hand side
panel.
On side
the right
side
the panel,
multi-tenant
scenario
is shown.
In a multi-tenant
on the
left hand
panel.hand
On the
rightpanel,
hand side
the multi-tenant
scenario
is shown.
In a multiscenario, each
useseach
the client
sameuses
database,
butdatabase,
with thebut
relevant
capabilities
implemented
to ensure secu
tenantclient
scenario,
the same
with the
relevant capabilities
implemented
data isolation.
to ensure secure data isolation.

Client

Client

Multi-Tenancy

ot
fo
r

Single-Tenancy

Client

Client

R
ep
r

Client

Client

in
t

Client

Client
Client
Client

Client

Client

Cloud Resource Administration and Provisioning


This slide
shows
multi-tenancy from a database instance perspective.
Fundamentals
of Cloud
Administration

Copyright 2

Multi-TenancyNetwork
Multi-TenancyNetwork

er
ia

The following
figure
shows
a multi-tenant
topology,
where
traffic
is routed
on th
The following
figure
shows
a multi-tenantaware
aware network
network topology,
where
traffic
is routed
basedbased
on
request.
the client request.
Tenant A
VM2
30.0.0.5
10.0.0.3

at

Tenant A
VM1
30.0.0.4
10.0.0.2

Tenant A Private Net


10.0.0.0/24

Tenant C
VM1
30.0.0.6
10.0.0.2

Tenant C Private
Net1
10.0.0.0/24

e
pl
m

Tenant C
VM3

Tenant C
VM4

10.0.1.2

10.0.1.3

Tenant C Private
Net2
10.0.1.0/24

10.0.0.1

10.0.0.1

Sa

Tenant C
VM2
30.0.0.7
10.0.0.3

Tenant A
Router

10.0.1.1

Tenant C Router
30.0.0.3

30.0.0.2
External Net
30.0.0.0/22
30.0.0.1

Physical Router

This slide shows multi-tenancy from a network perspective.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

13

Cloud Resource Administration and Provisioning


Professional Cloud Administrator

Fundamentals of Cloud Administration

Cloud
Administrator
BroadNetwork
Network
Access
Cloud
Administrator and
and Broad
Access

The cloud administrator should ensure the cloud is widely accessible by supporting a range of devices, trans
The cloud administrator should ensure the cloud is widely accessible by supporting a range of devices,
protocols, interfaces, and security technologies.

ot
fo
r

R
ep
r

in
t

transport protocols, interfaces, and security technologies.

d Resource Administration and Provisioning

Copyright 20

Ubiquitous
access
enables cloud services to be more accessible, making them easier to consume.
damentals
of Cloud
Administration

Administrator
Broad
Network
AccessTransportProtocols
Protocols
CloudCloud
Administrator
and and
Broad
Network
AccessTransport

er
ia

Multiple
transport
protocols
needneed
to betosupported
to enable
cloud
varietyofofdevices.
devices.
Multiple
transport
protocols
be supported
to enable
cloudaccess
accesson
on aa wide
wide variety
Local Services

4G

Web
Services

Bluetooth

Local Services

Fiber

Sa

pl

at

Internet

Sensors

This slide highlights the complexity associated with supporting multiple protocols to deliver the promise
of ubiquitous access.

14

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 22

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Cloud Administrator and Ubiquitous AccessSecurity Threats


Cloud Administrator and Ubiquitous AccessSecurity Threats

Making cloud services more accessible, anywhere, any time introduces security risks that have to be

Making cloud services more accessible, anywhere, any time introduces security risks that have to be carefully
carefully considered.
considered.

Digital
Camera

Tapping

Threat
Attack

Intrusion
PDA

Server

ot
fo
r

Desktop PC

in
t

Digital TV

R
ep
r

Cellar
Phone

Mobile PC

d Resource Administration and Provisioning

damentals of Cloud Administration

Copyright 2015 | 23

Cloud Administrator and Measured Usage

This slide creates awareness on the security threats posed by making cloud services widely accessible.

Cloud administrators
should enable
theMeasured
monitoring
of IT resources and generation of related usage reports
Cloud Administrator
and
Usage
integrated with payment or charge back capabilities.

Pay-per-use
Monitor

Log Database

Cloud
Service

pl

at

er
ia

Cloud administrators should enable the monitoring of IT resources and generation of related usage
reports integrated with payment or charge back capabilities.

Sa

Cloud Service
Consumer

Metered usage is a cloud capability that enables cost efficiencies. This requires the right level of
monitoring and reporting.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

15

Copyright

d Resource Administration and Provisioning

Professional
Cloud Administrator
damentals
of Cloud
Administration

Four Cloud Deployment Models

Four Cloud Deployment Models

This cloud infrastructure is provisioned for exclusive use by a


specific community of consumers from organizations that have
shared concerns.

Public Cloud

This cloud infrastructure is provisioned for open use by the


general public. It may be owned, managed, and operated by a
business, academic, government organization, or combination of
these.

Hybrid Cloud

This cloud infrastructure is a composition of two or more distinct


cloud infrastructure, such as private and public community that
remain unique entities but are bound together by standardized or
proprietary technology that enables data and application portability.

ot
fo
r

R
ep
r

Community Cloud

in
t

This cloud infrastructure is provisioned for exclusive use by a


single organization comprising multiple consumers, for
example, business units.

Private Cloud

Source: NIST definition of cloud computing

Source: NIST definition of cloud computing

Copyright 2015 | 25

areAdministration
also a number
ways to deliver or roll out cloud services. In some deployment models, the
Cloud There
Resource
andofProvisioning

financial commitment lies with the organizations that use these clouds.
Fundamentals of Cloud Administration

Cloud Deployment
Deployment ModelsPrivate
ModelsPrivate Cloud
Cloud

Private Cloud

Sa

pl

at

er
ia

AAprivate
privatecloud
cloudisisoperated
operatedby
byaasingle
singleorganization,
organization,implemented
implementedbehind
behindaafirewall,
firewall,and
andmanaged
managedby
bythe cloud
administrators within the IT department.
the cloud administrators within the IT department.

Source: http://www.techtarget.com/search/query?q=private%20cloud&type=definition
Copyright 2015 | 26

16

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Fundamentals of Cloud Administration

Cloud Deployment ModelsCommunity Cloud

Course
Book | Professional
Cloud group
Administrator
| Cloudconsumers
Resource Administration
and Provisioning
Access
is limited
to a specific
of cloud
that typically
share respon
membership does not guarantee access or control of community cloud IT resources

Cloud Deployment ModelsCommunity Cloud


Access is limited to a specific group of cloud consumers
that typically share responsibility for the cloud, although
membership does not guarantee access or control of
community cloud IT resources.

R
ep
r

in
t

Community Cloud

Fundamentals of Cloud Administration

Cloud
Deployment
ModelsPublic
Cloud
Cloud
Deployment
ModelsPublic
Cloud

ot
fo
r

Cloud Resource
Administration
and Provisioning
Source:
http://www.techtarget.com/search/query?q=community%20cloud&type=definition

IT resources,
as on-going
maintenance
cloud infrastructure
services
made
CloudCloud
IT resources,
as wellasaswell
on-going
maintenance
on cloudon
infrastructure
services are
made are
available
to theavailable
general public.
to the general public.

Public Cloud

er
ia

google

salesforce

softlayer

azure

Users
Copyright 2015 | 28

pl

at

amazon

Sa

Source: http://www.techtarget.com/search/query?q=community%20cloud&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

17

ource Administration and Provisioning


Professional Cloud Administrator

entals of Cloud Administration

ud Deployment
ModelsHybrid
Cloud
Cloud Deployment
ModelsHybrid
Cloud

IT administrator
provides and manages some resources internally, while others are delivered by an external
The IT administrator provides and manages some resources internally, while others are delivered by
d provider.
an external cloud provider.
Cloud Computing Types

Public/
External

ot
fo
r

The Cloud

R
ep
r

Private/
Internal

in
t

Hybrid

Off-Premises/Third Party

loud Resource AdministrationOn-Premises/Internal


and Provisioning

Fundamentals of Cloud Administration

Source: http://www.techtarget.com/search/query?q=hybrid%20cloud&type=definition

Copyright 2015 | 29

Cloud Deployment ModelsVirtual Private Cloud


Cloud Deployment ModelsVirtual Private Cloud
Virtual private clouds enable organizations to utilize public cloud infrastructure in a private manner.

er
ia

Virtual private clouds enable organizations to utilize public cloud infrastructure in a private manner.

at

Web
Services

VPN
Connection

Subnet

VPC

VPN
Gateway

pl

Subnet

Customer
Gateway

Internet
Endpoint

Internet traffic outside the


VPN connection

Sa

Endpoint

Customer
Network

Source: http://www.techtarget.com/search/query?q=virtual%20private%20cloud&type=definition

18

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 30

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Cloud Deployment
Models
On-Premise Hosting
Hosting
Cloud Deployment
Models
andand
On-Premise

in
t

The IT administrator
is responsible
for for
managing
serversowned
owned
an organization
and hosted o
The IT administrator
is responsible
managingvirtual
virtual servers
by by
an organization
and hosted
an internal
data
center.
on-site in an internal data center.

ot
fo
r

Dedicated
Server

R
ep
r

Intranet

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Cloud Deployment Models and Off-Premise Hosting (Cloud Hosting)

The virtual servers are managed by a cloud provider who grants the IT administrator remote access.

Cloud Deployment Models and Off-Premise Hosting (Cloud Hosting)

Cloud-Based

On-Premise

Sa

pl

at

er
ia

The virtual servers are managed by a cloud provider who grants the IT administrator remote access.

Copyright 2015 | 32

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

19

Resource Administration and Provisioning


Professional Cloud Administrator

amentals of Cloud Administration

Cloud Deployment ModelsInter-Cloud

Cloud Deployment ModelsInter-Cloud


Architecture for connecting two cloud together.
Architecture for connecting two cloud together.

Single Cloud

Inter-Cloud

Large Enterprises

Large
Enterprises

Cloud B

in
t

Cloud A

Private Cloud

Applications

Public Cloud

R
ep
r

Legacy Systems

Servers

Administration

Storage Systems

SaaS/PaaS
Providers

Independent Shops

ot
fo
r

Network

Independent Shops

Inter-cloud is more of an architectural construct, but worth special consideration due to the need for
Cloud Resource
Administration and
Provisioning
high
speed interconnect
between
the cloud for services such as replication.
Fundamentals of Cloud Administration

er
ia

Cloud
ComputingThree
Service
Models
Cloud
ComputingThree Service
Models

Software

at

Applications

Platform

Software Components

pl

Infrastructure

Sa

Servers, Computing Resources

20

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Software as a Service are


applications which provide
business value for users

Platform as a Service are


applications which provide
specialized software
components and programming
tools

Infrastructure as a Service
are applications which
provide computing
infrastructure resources as
a service
Copyright 2015 | 34

Copyright 2015 | 33

Cloud Resource Administration and Provisioning


Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Cloud
Service
ModelsInfrastructure
a Service
Cloud
Service
ModelsInfrastructure
as as
a Service

TheThe
cloud
administrator
provides
and manages
basicbasic
computing
utilities
such such
as compute,
storage,
networks,
cloud
administrator
provides
and manages
computing
utilities
as compute,
storage,
and other fundamental computing resources.
networks, and other fundamental computing resources.

laaS

in
t

Service Provider

ot
fo
r

R
ep
r

MoE

ud Resource Administration and Provisioning

Copyright 2015 | 35

Source: http://www.techtarget.com/search/query?q=iaas&type=definition

ndamentals of Cloud Administration

Cloud Service ModelsPlatform as a Service

Cloud Service ModelsPlatform as a Service

er
ia

The cloud administrator provisions a set of ready to use IT resources such as databases, middleware,
The cloud administrator
provisions a set of ready to use IT resources such as databases, middleware,
development tools, and governance.
development tools, and governance.

Load
Balancer

at

IN SSL
Gateway

Linux 64
Linux 64

JOBSS App Server

MySQL DB

JOBSS App Server

MySQL DB

NetMagic IDC

Automated Metering

HA by Default

Storage

IDC

Sa

pl

Internet

Copyrigh

Source: http://www.techtarget.com/search/query?q=paas&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

21

Professional Cloud Administrator

Cloud Resource Administration and Provisioning

Fundamentals of Cloud Administration

Cloud Service ModelsSoftware as a Service


Cloud Service ModelsSoftware as a Service

ot
fo
r

R
ep
r

in
t

TheIT
ITadministrator
administratorenables
enablesaasoftware
softwareapplication
applicationto
tobe
be available
available as
as aa cloud
cloud service
service to
to various
various cloud
cloud service
The
service consumers.
consumers.

oud Resource Administration and Provisioning

undamentals of Cloud Administration

Cloud Service ModelsData as a Service


Cloud Service ModelsData as a Service

Copyright 2015 | 37

Source: http://www.techtarget.com/search/query?q=saas&type=definition

er
ia

Client

The administrator uses a multi-tenant database architecture to deliver a cloud service to multiple cloud
consumers
over the Internet.
The administrator
uses a multi-tenant database architecture to deliver a cloud service to multiple
cloud consumers over the Internet.

Client

at

Client

Client

Client

Multi-Tenancy

Client

Client
Client
Client

Client

pl

Single-Tenancy

Client

Client

Sa

Source: http://www.techtarget.com/search/query?q=daas&type=definition

22

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 38

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Activity Time: Fundamentals of Cloud Administration


Cloud Resource Administration and Provisioning

Fundamentals of Cloud AdministrationActivity


Fundamentals
of Cloud AdministrationActivity

Discussion
Forum
Discussion
Forum 20
Minutes
20 Minutes

What are the major roles and responsibilities of a cloud administrator within the context of various cloud service and
models?roles and responsibilities of a cloud administrator within the context of
What deployment
are the major

various

Copyright 2015 | 40

ot
fo
r

R
ep
r

in
t

cloud service and deployment models?

Cloud
Workload
Analysis
Cloud Resource
Administration
and Provisioning

and Capacity Planning

Cloud Workload Analysis and Capacity Planning

Goals and Benefits of Workload Analysis


Goals and Benefits of Workload Analysis

er
ia

Understand the complexities to consider before, during, and after migration.


Understand the complexities to consider before, during, and after migration.

at

Application
Architecture

Technical
Aspects

Sa

pl

Workload Considerations

Business
Impact

Non-Functional
Requirements
Support and
Costs

Business critical vs. impacting


Test/dev, pre-prod, prod

Cloud-ready vs. non-cloud ready app


Costs and effort to make apps cloud-ready

Common integrations and dependencies (Example: DB)


Integration and interoperability
Scale requirements
Customization and support
Dependencies on other workloads

SLAs (Performance, capacity, availability)


Transactional metrics
Security and compliance (Change management)
Support resources and costs per workload
Operational costs

This slide outlines the benefits of workload analysis.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 42

23

Workload Analysis and Capacity Planning

oals and Benefits of Workload Analysis (Contd.)


Professional Cloud Administrator

entify the best cloud deployment model for each workload.


Identify the best cloud deployment model for each workload.

On-Off

Aperiodic Bursting

Periodic Bursting

oud Resource Administration and Provisioning


Source: www.cloudbook.net

R
ep
r

in
t

High Growth

Cloud Workload Types

ot
fo
r

oud Workload Analysis and Capacity Planning


ce: www.cloudbook.net
This slide shows possible workload patterns. For optimal performance, these patterns require different
infrastructure
configuration.
Goals
and Benefits
of Workload Analysis (Contd.)
Assess
migration
impact
for each
workload.
Assess
migration
impact
for each
workload.

Higher Gain from External Clouds

Idealized
Workloads

Collaboration

Copyright 2015

On-Line Storage

er
ia

SME ERP

Web Scale Analytics


[Enterprise Data]

DB Migration Situational
Apps

at

Higher Pain to Cloud Delivery

Lower Gain from External Clouds

pl

LE ERP

Transactional
Content

Application Data
Archive
Test

Lower Pain to Cloud Delivery


Application
Development

Loosely Coupled Architecture


Content-Centric Architecture
DB-Centric Architecture
Storage and Data Integration Arch.

Sa

In addition to workload types, when migration to the cloud is under consideration, it is important to
consider impact of migration. Some workloads might not benefit much from a cloud deployment model
when compared to others. It is important to focus on workloads that stand to benefit the most.

24

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 44

Cloud Resource Administration and Provisioning

Cloud Workload Analysis and Capacity Planning


Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Goals and Benefits of Workload Analysis (Contd.)

Assess operation cost variations between the present situation and running in the cloud.
Assess operation cost variations between the present situation and running in the cloud.
Total
Annual
Cost

On-premise
Hybrid
cloud

Fixed
Workload
Cloud Resource Administration and Provisioning

Cloud Workload Analysis and Capacity Planning

Type of IT Service Contract

Goals and Benefits of Workload Analysis (Contd.)

R
ep
r

in
t

Variable
Workload

ot
fo
r

As previously stated, workload analysis typically results in a different cost model for cloud delivery.
Assess service quality differences between on-premise and the cloud.
Assess service quality differences between on-premise and the cloud.

Copyright 2015 |

Added
Value

er
ia

Cost
Savings

Cost/Performance

Improve
Business/IT
Performance

at

Cloud Resource Administration and Provisioning

Cloud Workload Analysis and Capacity Planning

QoS

Time

Cloud
CloudWorkload
WorkloadAnalysis
Analysisand
andCapacity
CapacityPlanning
Planning

Assess
therequirements
requirementsfor
forscaling
scalingthe
theapplication
application to
to meet
meet usage
usage demands.
demands.
Assess
the
Grid-like
Diagonal Scaling

Vertical Scaling

pl
m
Sa

Copyright 2015 | 46

Distributed web-like

Horizontal Scaling
Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

25

Copyright 2015 |

Professional Cloud Administrator

Align Workload to Cloud Deployment Model


Assess requirements:
What level of security is required for the workload?
Can the workload run in a virtualized environment?
Does the workload require complex service management?

in
t

Can the workload operate in a standardized configuration?

isioning Does the workload have any audit or compliance requirements?

city Planning
Can cloud metering and billing be performed?

Are flexible backup and restore capabilities needed for this workload?

ot
fo
r

Deployment Model

R
ep
r

Is enterprise class availability needed?

d for

er
ia

plex

at

dit

Sa

pl

be

26

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 48

Cloud Resource Administration and Provisioning


Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Cloud Workload Analysis and Capacity Planning


Cloud Workload Patterns
Cloud Workload
Patterns
Infrastructure
(As a Service)

Applications

Runtimes

Runtimes

Security & Integration

Security & Integration

Security & Integration

Databases

Databases

Servers

Servers

Storage

Virtualization

Server HW

Collaboration
Integration
Analytics

Storage

Storage

Networking

Networking

Co

at

Platform:

Server HW

er
ia

Business Process

Virtualization

Industry Applications

Servers

Networking

Applications:

Databases

Manage by vendor

Server HW

Manage by vendor

Virtualization

R
ep
r

Runtimes

ot
fo
r

You manage

Applications

in
t

Applications

You manage

Software
(As a Service)

Manage by vendor

Platform
(As a Service)

Development and Test


Business

Infrastructure:

pl

Compute

Storage

Disaster Recovery

Sa

Desktop and Devices

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

27

Cloud Resource Administration and Provisioning

ProfessionalAnalysis
Cloud Administrator
Cloud Workload
and Capacity Planning

Risks and Challenges of Capacity Planning


Risks and Challenges of Capacity Planning
Cloud Computing Capacity Model
Load
Forecast
Load
Forecast

No under-supply

Waste of
capacities

Reduction of
over-supply

in
t

Under-supply
Allocated
of capacities IT-capacities

IT Capacity

IT Capacity

Classic Capacity Model

Possible
reduction of
IT-capacities
in case of
reduced load

Reduction of
initial
investments

Actual Load

Actual Load

R
ep
r

Barrier for
innovations

Fixed cost of
IT-capacities

TIME

TIME

ot
fo
r

The challenges and risks are given below:


Difficult to plan and design for unexpected peak workloads

Challenging
toand
have
hardware delivered and configured rapidly to meet increased demand Copyright 2015 |
Cloud Resource
Administration
Provisioning

50

M
Requests

Schedulers

VM

EBS

VM

EBS

VM

EBS

pl

Clients

Performance
Feedback

Deploy/Adjust
Configuration

at

Workload
Description

Provisioner

er
ia

Configuration
Description

Workload Capacity Planning in the Cloud


Workload Capacity Planning in the Cloud

Cloud Workload
Analysis
Planning
Might
not beand
ableCapacity
to minimize
under utilization when faced with periodic peaks in demand

Sa

This slide outlines the workload deployment process.


The workload deployment is given below.
Selection:

Select and deploy appropriate workloads in the cloud:


Intermittent or short-term workloads.
Workloads with very dynamic capacity capabilities (elasticity).
Moderate security and availability requirements.

28

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 51

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Prepare:
Build necessary figures and data repositories.
Automation:
Implement automated provisioning capabilities to provision quickly when the need arises.

in
t

Source: http://www.techtarget.com/search/query?q=Cloud%20%20Capacity%20Planning&type=definition

R
ep
r

Administering Cloud Technologies


Remote Administration

Remote desktop protocol: This enables an administrator to connect to and control the
operating system without having to be physically at the host computer.

ot
fo
r

Remote shell: An administrator can use a remote shell command-line program to execute
commands across the network in an unsecured manner.
Secure shell: This provides a secure way to perform remote management by creating an
encrypted tunnel for all traffic.
Web console: This enables an administrator to access a host server via a web browser.

Console: An administrator can manage a host computerdirectly from another computer


connected to the host computer with a console cable through the console port.
Cloud Resource Administration and Provisioning
Step machine: An administrator can configure a console or client on a jump or step machine,
Administering Cloudusing
Technologies
it to remotely connect to the host from their workstation.

er
ia

http://www.techtarget.com/search/query?q=remote%20administration&type=definition
Remote Source:
Administration
(Contd.)

at

Cloud resource
administrator
the remote
administrationsystem
system to
thethe
cloud
service.
Cloud resource
administrator
uses uses
the remote
administration
to administer
administer
cloud
service.

Cloud Service
Consumer

Cloud Resource
Administrator

Cloud Service
Consumer

Sa

pl

Web Application
Interface
(Management
Console)

Cloud
Service
On-premise/Cloud
Resource Administrator

Remote
Administration
System

Management Tool

Source: http://www.techtarget.com/search/query?q=remote%20administration&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copy

29

Professional Cloud Administrator

Network Administration
Network Group:
A group of interconnected computers and peripherals capable of sharing resources such as
software, hardware, and files.
Virtual Local Area Networks (VLANs):
Administrators use VLANs to logically divide IP networks and allocate IP addresses more
efficiently.

in
t

Resource Administration and Provisioning

Source: http://www.techtarget.com/search/query?q=vlan&type=definition

Computing Hardware

Computing Hardware

IaaS

Shared Self-Service and


Admin User Interface

R
ep
r

inistering Cloud Technologies

PaaS

SaaS

Tenant Self-Service and Admin Interfaces

ot
fo
r

SaaS Workloads

SaaS and PaaS Workload


Leverage IaaS Services

PaaS Workloads

Orchestration Layer
Additional layers required
for IaaS Fabric
Management

Management Layer

Automation Layer

Virtualization Provides the


Foundation

er
ia

Virtualization Layer

Network

Compute

at

Storage

Hardware Layer

Facility

This figure illustrates the typical makeup of cloud computing hardware. At the bottom you have the
physical resources, and the various layers of capabilities required to run workloads which serve client
requests.

Sa

pl

Source: http://www.techtarget.com/search/query?q=cloud%20hardware&type=definition

30

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 56

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Cloud Resource Administration and Provisioning

Administering Cloud Technologies

Network Hardware
Network Hardware

Network
Switch

in
t

These are the key hardware components from a networking point of view are routers and switches.
These
areenables
the key an
hardware
components
from
a networking
point
view areSwitch
routers
and switches.
Router
administrator
to route
traffic
from outside
theof
network.
connects
devicesRouter
on
enables an administrator to route traffic from outside the network. Switch connects devices on the internal
the internal network.
network.

Company Firewall

Router

ot
fo
r

Desktop Users

R
ep
r

Internet Cloud

rce Administration and Provisioning

Remote Workers

ng Cloud Technologies

Source: http://www.techtarget.com/search/query?q=cloud%20network%20hardware&type=definition

Storage Hardware

gure illustrates the various storage types.

Copyright 2015 | 57

ge Hardware

This figure illustrates the various storage types.

er
ia

e typesCommon
cloud storage systems include converged storage, cloud object storage, an
Storage typesCommon cloud storage systems include converged storage, cloud object storage,
AN.
and NAS/SAN.
VM

VM

VM

VM

vDisk vDisk

VM

vDisk

CSR

VM

vDisk vDisk

Flash
Flash
Flash
Flash
SSD
SSD
SSD
SSD

pl

at

vDisk

Network

Sa

S3

Converged Storage

Cloud Object Storage

NAS/SAN

Source: http://www.techtarget.com/search/query?q=cloud%20storage%20hardware&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

31

ministration
and
Provisioning
Professional
Cloud
Administrator

Provisioning
Cloud Resource Provisioning

g Environments and Platform Services in Cloud


Provisioning Environments and Platform Services in Cloud
Provisioning:

Provisioning

Application Owner

Approve Request

Approve Request

Preventive
Segregation of
Duties Check

Approval Hierarchy

Route
To Additional
Approver

Approval Hierarchy

Segregation of
Duties Rules

Route to
Primary
Approver

Target Platform

ot
fo
r

Submit Request

Manage or Security
Administrator

Any Person or
System

R
ep
r

Deliver
rapid platform
provisioning capabilities
for ready-made
environments.
pid platform
provisioning
capabilities
for ready-made
environments.

in
t

r a resource
management system mechanism that enables cloud consumers to create, c
Can deliver aresource management system mechanism that enables cloud consumers to
mized ready-made
environments.
create, control,
and customized ready-made environments.

Automatically
Grant Access

Entitlement
Configuration Rules

er
ia

Entitlement Repository

at

Easy provisioningVirtual or physical resources can be created, resized, and assigned to hosts in
a fraction of the time it takes to provision manually. The environment is simpler to manage. The
provisioning system takes care of all access control requirements.

Source: www.techtarget.com/search/query?q=cloud provisioning&type=definition

pl

Here are some of the key activities that happen during provisioning. The actual implementation varies
from one cloud provider to the next, but the overall purpose is to ease and simplify the effort needed
to make resources available to clients.

During provisioning, the following elements is selected:


Software platform and development frameworks for ready-made environments.

Sa

Common frontend or backend instances.


High-availability options (failover, IT resource clustering).
Monitors SLA metrics.
Basic software configurations (operating system, pre-installed software for new virtual servers).
IaaS resource instances from a number of available hardware-related configurations and
options (processing capabilities, RAM, storage) hosted.

Source: www.techtarget.com/search/query?q=cloud provisioning&type=definition

32

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Cloud Resource Administration and Provisioning

Cloud Resource Provisioning

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Provisioning Environments and Platform Services in Cloud (Contd.)


Order

Select

Cloud User
Requests a virtual machine
Service Catalog
Virtual machine offerings

Approver
Approver

in
t

Publish

R
ep
r

Cloud Administrator
Creates catalog items

Cloud Operator
Provisions requests and manages
virtualization systems
Public
Cloud

figures
Template

ot
fo
r

Private
Cloud

Platform services:

Copyright 2015 | 62

Manual provisioning is inefficient and introduces unacceptable risks due to human error and
inefficient response times in complex cloud deployments with multiple users.

PaaS offer a selection of application development and deployment platforms accommodating


different programming models, languages, and frameworks.

Cloud Resource Administration and Provisioning

er
ia

Automated provisioning engine, scripts, and templates are used on-demand provisioning.
Cloud Resource Provisioning

at

Provisioning
Control
ofof
Virtual
Capacity
Provisioning
Control
Virtual
Capacity

Sa

pl

Cloud Lifecycle Management

Setup Cloud
Policies
Build App &
Package as
Appliance
Setup Cloud
Infrastructure

Deploy

Patch

Monitor

Scale
up/down

Decommission

Copyright 2015 | 6

Based on policies defined, the provisioning system can initiate various lifecycle management actions.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

33

Professional Cloud Administrator

Controls the following items:


Versioning of deployed applications and modules.
Scalability features (automated scaling, load balancing).

rce Administration and Provisioning

Lifecycle of virtual IT resources (shutting down, restarting, powering up of virtual devices).

ource Provisioning
Virtual network environment and network access rules (firewalls, logical network perimeters).

Provisioning

Relationship
Begins

R
ep
r

Virtual Computing Resources Management and Issues

in
t

Source: www.techtarget.com/search/query?q=cloud provisioning&type=definition


l Computing
Resources Management and Issues

Authentication

ot
fo
r

Authorization

Self-Service

Identity
Management
Life Cycle

Changes/
Modifications
to Role

Password
Management

er
ia

Relationship
Ends

De-provisioning

Compliance

at

Security policies are important for the delivery of cloud management capabilities.
Management capabilities delivered:

Preallocation of cloud-based IT resources (resource reservation).


Credentials and passwords for cloud resource administrators.

pl

General security settings, such as accessible network ports.

Credentials for cloud-based security groups that access virtualized IT resources through an
IAM.

Sa

Security-related configurations.
Customized virtual server figure storage (importing, exporting, backup).

Source: www.techtarget.com/search/query?q=cloud provisioning&type=definition

34

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright

d Resource Administration and Provisioning

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

d Resource Provisioning

Policies
and Automation
DeploymentDeployment
Policies and
Automation
Plan

Optimize

Setup

in
t

Meter &
Charge

Platform as a Service
MWaaS

DBaaS

Testing
as a
Service

Manage

Build

ot
fo
r

Infrastructure
as a Service

R
ep
r

Applications and
Business Services

Monitor

Test

Deploy

Copyright 2

Here is the outline of the required deployment and automation capabilities.


Capabilities:

er
ia

Configure availability and reliability.

Manages security and controls access to system resources.

at

Establish and display service provisioning agreements, such as account conditions and usage
terms.
Select and monitor PaaS-related SLA metrics.

Establishes and displaying service provisioning agreements (account conditions, usage terms).

Tracks and manages costs.

pl

Manage and monitor usage and IT resource costs.

Control scalability features such as usage quotas, active instance thresholds, and the
configuration and deployment of the automated scaling listener and load balancer mechanisms.

Sa

Schedule tasks using the usage and administration portal.

Source: http://www.techtarget.com/search/query?q=Multi-Tenancy&type=definition

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

35

Resource Administration and Provisioning


Professional Cloud Administrator

d Resource Provisioning

Storage
and Compute
Multi-Tenancy
Storage
and Compute
Multi-Tenancy
Customer 1

Customer 2

Customer 1

Customer 2

Customer 1

Customer 2

Application

Database

Multi-tenant
Infrastructure

Complete multi-tenant

Cust 1

Multi-tenant
Infrastructure

Cust 2

Efficiency

low

Flexibility

Multi-tenant
Database

Single tenant application

Single tenant database

high

Customer 2

in
t

Multi-tenant
Database

Customer 1

low

ot
fo
r

Multi-tenant
Infrastructure

Multi-tenant Application

R
ep
r

Multi-tenant Application

high

This is the outline of storage and multi-tenancy provisioning considerations. The figure shows various
Copyright 2015 |
multi-tenant configurations.

Capabilities:

Manage the attachment of cloud storage devices.

Manage the deployed applications and configure multi-tenancy.

al Storage

Management Control
Management Control

at

ResourceVirtual
Administration Storage
and Provisioning

er
ia

Source: http://www.techtarget.com/search/query?q=Multi-Tenancy&type=definition

Sa

pl

Virtual disk
Virtual disk
Storage virtualization groups multiple network storage devices into a single storage unit that
Storage virtualization groups multiple network storage devices into a single storage unit that can be managed from
can be managed from a central console and presented to a virtual machine or host computer
a central console and presented to a virtual machine or host computer as a single storage unit.
as a single storage unit.
Server 1

Server 2

SAN

V1

V2

V3

Server 3

V4

Virtualization Disks

V5

Logical Mapping

Virtualization Layer

Physical
Infrastructure

Storage Pools
Lz

36

Lh L i

Lx

La

Lb

Lc

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Ly

Le

Lf

Lg

Lz

Lh L i

Copyright 2015 | 68

66

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Easy provisioningVirtual disks can be created, resized, and assigned to hosts in a fraction of
the time it takes to provision a physical disk.
Nondisruptive data migrationEase of migration of data from the underlying physical disk
when needed, without having to take the system offline.

ource Administration
and storage
Provisioning
Simpler
managementA central management point and standard set of services to

torage

heterogeneous storage devices simplifies admin tasks such as mirroring and replication.

in
t

Source: http://www.techtarget.com/search/query?q=virtual%20disk&type=definition

visioning Design

Provisioning Design

R
ep
r

ual disks:

Virtual disks:

virtual disk can be thin or thick.

A virtual disk can be thin or thick.

ot
fo
r

thin-provisioned disk starts out small and grows as data is written to it, whereas a thick disk size is defined
A thin-provisioned disk starts out small and grows as data is written to it, whereas a thick disk
he disk is created. Thin
provisioning provides economies of scale in a public cloud environment, where data
size is defined when the disk is created. Thin provisioning provides economies of scale in a
equirements are hard
to
predict.
public cloud
environment, where data store requirements are hard to predict.
VM

VM

VM

Hypervisor

THIN

20 GB

40 GB

at

er
ia

Virtual
Disks

THICK

20 GB

Datastore

20 GB

THIN
80 GB

40 GB

100 GB

60 GB
20 GB

pl

Source: http://www.techtarget.com/search/query?q=virtual%20disk&type=definition

Service Management
Storage provisioning:

Sa

Decisionsregarding the type and the size of the disk are needed while creating a virtual disk.
Thin provisioning allows virtual disks to allocate and commit storage space on demand, using
only the space they require.

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

37

Storage provisioning:

Decisions regarding the type and the size of the disk are needed while creating a virtual disk.
Professional Cloud Administrator

Thin provisioning allows virtual disks to allocate and commit storage space on demand, using only the space
they require.

With thin provisioning,


anorganization
createvirtual
multiple
virtual
disks
set theoflimits
ofthose
With thinprovisioning,
an organization
can createcan
multiple
disks
and
set and
the limits
those
virtual disks
virtual
disks
to an
greater than
the total
available storage space.
to an amount
greater
than
theamount
total available
storage
space.
Thin
Provisioning

Traditional
Allocation

Allocated
& Unused

Available Storage

in
t

Volume B

Allocated
& Unused

Volume A

R
ep
r

DATA

Volume B

DATA

DATA

Volume A

Copyright 2015

ot
fo
r

DATA

When data size is known in advanced, thin provisioning is more appropriate.


Source: http://www.techtarget.com/search/query?q=storage%20provisioning

ource Administration and Provisioning

arketplaces
Cloud Marketplaces

Org-Adminutes

Resellers

Business Team

Ubiquitous Services Marketplace and Fulfilment Services

Delegated
Administration Portal

E-Learning Portal(s)

Reseller Portal

Fulfillment Services

Services Catalog

Community Portal(s)

er
ia

Sales Portal-Storefront

Tech Team

Extended Community
Self-Service
Support Portal

Business Support Portal (Service Desk)

Virtual Firewall

VSwitch

Voice Services

Managed
Archives

SME
Resources

Facilities
Access (VPN)

Infrastructure
Management

VM-Library

Virtual Router

CloudStorage

vServer

OfficeApps

Managed
Email

Managed
Backup

Software
Licensing

Content
Management

Learning
Management

at

vLoadBalancer
Virtual IP

Service Orchestration Layer

Applications Services EcoSystem

Technology Services

Business Services Providers & ISVs

pl

Monitoring, Alerting and Incident Management Services


(Assurance Services)

Sa

Provisioning,
Change Management
De-commissioning

Security
Services

Desktops

DNS

Email

IP Mgmt

Office Apps

Log Mgmt

Business Workflows
(Proposal, Order,
Provisioning, Change
Request, Termination)

Backend Integration
(Activation/Ordering)
Billing Related

Authentication Services

End-Users

ketplace
Administration
Marketplace
Administration

Platform Service providers and ISVs (PaaS)

Infrastructure Services EcoSystem


Cloud Infrastructure (IaaS)

Copyright 2015 | 72

Marketplace is an online store for discovering, purchasing, and deploying cloud web applications, and
for advertising professional services.
Source: http://www.techtarget.com/search/query?q=cloud%20marketplace&type=definition

38

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

ud Resource Administration and Provisioning

ud Marketplaces
Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Marketplace Administration (Contd.)

Marketplace Service Delivery Network

PaaS

Platform as a
Service

SaaS

Software as a
Service

Cloud Services

in
t

IaaS

Infrastructure
as a Service

Cloud Marketplace Platform


User and
Monitoring,
Service
Reporting and
Administration Auditing

Cloud Service Providers

Channels

SMBs

ot
fo
r

Enterprises

Helpdesk,
Billing,
Ticketing,
Metering, and
and Support Chargeback

R
ep
r

Catalogue
Self-Service Service and Authentication,
Management Fulfillment
User
Authorization, and
Provisioning Access Control

Capabilities:

rce Administration
and Provisioning
Manage
users and applications from a single unified interface.

Deliver a usage and administration portal for use by the cloud consumer to access and configure
the cloud service.

etplaces

Copyright

Public a directory for associated professional services.


etplace Administration
(Contd.)

er
ia

Make available refined and generic APIs for integration.


Admin Roles

Master Marketplace

at

Master Marketplace
(Master Catalog)

Sa

pl

Platform/ Super
Admin

Sub-Tier Marketplaces
Marketplace
Owner/Admin

Sub-Tier Marketplace
(Sub-Tier Catalog)
App
Stores

App Store
Administrator

App
Store 1

App
Store 2

App
Store n

Customers
User
Administrator

User
Portal 1

User
Portal 2

User
Portal n

End Users

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

39

Professional Cloud Administrator

Administration:
Delegated Administration is needed for highly complex marketplaces.
For ease of use and access, federated logins tied to a federated identity should be used for
third-party applications.

in
t

A variety of integration points should be configured for the users of the applications.

R
ep
r

Activity Time: Cloud Marketplaces


Cloud MarketplacesActivity

Discussion Forum 20 Minutes

nistration and Provisioning

ot
fo
r

Read the following scenario and answer the questions.


Activity
An organization has several servers across several departments. Back office systems, such as
byMinutes
each department. Now, the
Forum payroll, accounting and personnel management are currently hosted 20
organization
has decided
to reduce costs, reduce energy consumption and reduce IT staff in these
wing scenario
and answer
the questions.
departments. The ultimate goal of the project is to reduce the total cost of ownership by eliminating
n has several servers across several departments. Back office systems, such as payroll,
redundant
systems
the need
for administrators
in eachNow,
department.
personnel
management
areand
currently
hosted
by each department.
the organization has

this problem could


be addressed.
any portability concerns.
3. Discuss

special requirements and capabilities.

Sa

pl

at

er
ia

portability concerns.

uce costs, reduce


energy how
consumption
and could
reducebeITaddressed.
staff in these departments. The ultimate
this problem
1. Discuss
ect is to reduce the total cost of ownership by eliminating redundant systems and the need for
2. Discuss any special requirements and capabilities.
n each department.

40

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

Copyright 2015 | 76

Course Book | Professional Cloud Administrator | Cloud Resource Administration and Provisioning

Module Summary
In this module, you learnt:
Fundamentals of Cloud Administration
Cloud Definition
Introduction of Cloud Administrator

in
t

The Cloud Roles


Four Cloud Deployment Models
Cloud ComputingThree Service Models
Cloud Workload Analysis and Capacity Planning
Align Workload to Cloud Deployment Model
Cloud Workload Patterns
Risks and Challenges of Capacity Planning

Remote Administration

er
ia

Network Administration

Administering Cloud Technologies

Workload Capacity Planning in the Cloud

ot
fo
r

Goals and Benefits of Workload Analysis

R
ep
r

Cloud ComputingFive Essential Operational Characteristics

Computing Hardware
Network Hardware

at

Storage Hardware

Cloud Resource Provisioning

Provisioning Environments and Platform Services in Cloud

Provisioning Control of Virtual Capacity

pl

Virtual Computing Resources Management and Issues

Deployment Policies and Automation


Storage and Compute Multi-Tenancy

Sa

Virtual Storage
Management Control
Provisioning Design
Service Management
Cloud Marketplaces
Marketplace Administration

Copyright 2015, ITpreneurs Nederland B.V. All rights reserved.

41

You might also like