Agenda• About SUNY and ITEC Cloud project

• Challenges and Use cases for ITEC Cloud

• EM Solution

• Business Benefits

About SUNYPower of SUNY• Nations Largest State University System

• 64 Geographically Dispersed Campuses

• Four Categories:

Fast Facts• Number of Campuses: 64

• Number of Students: 462,698

• Number of Employees: 90,254

• Four Categories:

• University Centers, University Colleges

• Technology Colleges, Community

Colleges

About ITECInformation Technology Exchange Center• Grew out of the "17 Campus Computer Procurement" of the mid-80’s

– Collective bargaining with DIGITAL Equipment Corporation for hardware – Collective bargaining with DIGITAL Equipment Corporation for hardware

and software purchases

• Single point of contact for campus, single point of contact for the vendor

– Provided Tier 1 & 2 helpdesk

• Several University-wide contracts including Oracle

• Self funded and self sufficient, budget comes from the services we

provide to SUNY

HelpdeskHelpdeskManaged

Services

Managed

Services

Hosting

Provider

Hosting

Provider

ITEC TodaySUNY’s Private Cloud• Manage 32 Student Information Systems (17 hosted)

• Host SUNY’s Library Information System for 56 campuses

• Host SUNY’s Learning Management System for 32 campuses• Host SUNY’s Learning Management System for 32 campuses

• Host E-mail and other applications

History of ITEC’s Cloud Service

Managed Hosting

• Ad hoc managed servers

• 2 week provisioning

• 12+ years of experience

• 1 free server part of ITEC base services

Server as a Service

• 1 free server part of ITEC base services

• 1 week provisioning

• 2+ years of experience

Cloud Services

• Infrastructure as a Service (IaaS)

• Self-service

• Announced at SUNY Conference in June 2013

Cloud before Cloud was cool

Requirements for Self-Service• Stable, predictable & self-sufficient

• Dynamic, self-service, private cloud environment that

matches the major cloud providers on ease of use and matches the major cloud providers on ease of use and

functionality

• Chargeback/Showback with Metering

• Integrate into existing technology stack, where possible

• Deliver in a compressed timeline due to other SUNY

commitments

Workload Requirements in the Cloud• Basic Linux OS

– DNS and Website backup, network analysis tools

• Basic Windows OS

– AD and Fileserver Backup

• Oracle RDBMS

• Oracle Weblogic

• LAMP stack

• OpenSource LMS/CMS – Moodle, Drupal, Wordpress, Joomla

• Flexibility for custom templates based on feedback

Evaluation of Options• Dell Active System Manager

• HP CloudSystem Matrix• HP CloudSystem Matrix

• OpenStack

• Oracle Enterprise Manager 12c

ITEC’s Implementation• Oracle EM12c Cloud Management Pack

• Oracle VM Hypervisor

• Oracle Virtual Assembly Builder• Oracle Virtual Assembly Builder

• ITEC’s Cloud Services Stack– Dell m1000e

– Dell m620 (E5-26809 2.70GHz, 256GB)

– Dell EqualLogic PS6110XS

What’s Available Today• SUNY Cloud Self Service Portal

• Core Service– Multiple VM Assemblies

– Self-service for:– Self-service for:• Virtual Machines

• Memory

• vCPU

• Disk

– External IPs

– Bandwidth

Virtual Assemblies• Oracle Virtual Assembly Builder

– Create a “template” – simple assembly, single VM appliance

– Create an assembly – multi-tier application topologies

• Initial Assemblies• Initial Assemblies– Basic OS (Windows Template, Linux)

– Oracle Provided Assemblies (RDBMS, Linux)

– ITEC-validated Base OS

– ClearOS Firewall

• Future Assemblies– Full Ellucian Banner Stack – Weblogic, Business Logic and RDBMS tiers

– Load Balanced Web Application Stack – LVS, Tomcat/Apache, MySQL/Oracle

User Portal• Chargeback

– Monthly Charges based on usage of vCPU, Memory and Disk

• Role Based Quota– Each user receives a quota

– Allows us to give “no worse than” pricing

– No surprises for campus CIO

• Access Control– Private VLAN

– Virtual Machine isolation

• Cloud Governance– Private cloud infrastructure

– No renegotiating terms of service

– User driven features

Core Service Features• Advanced Virtual Machine Cloning

• VM High Availability (HA)

• Network IDS/IPS via Dell SecureWorks• Network IDS/IPS via Dell SecureWorks

• Dedicated VLAN structure

• SUNYNet VPN (upon request)

• Base Membership Support (4-hour response, business hours)

“SUNY-goodness”

Enhancing Service• Optional

– File-level Backups

– Managed Network Firewall– Managed Network Firewall

– Cloud Managed Services

• Operating System Patches (ITEC validated or auto)

• System and Application Monitoring and Alerting

• Enhanced Support Level (1-hour, 24x7 for Sev-1)

Future Enhancing Services• Storage-based snapshots

• Disaster Recovery Zone

• Custom Templates & Assemblies• Custom Templates & Assemblies– Scale up/down based on need

– Banner and Load Balanced Web Topologies

• Managed Load Balancing

• Security Vulnerability Scans

Challenges• Compressed timeline

• Network security vs. ease of use

• Windows VMs

– Licensing

– Network customization

• “Multi-tenant-ness” of Cloud Management Pack

Use CasesInternet

Campus A Campus

IP 1 IP 2 IP 3 IP 4Campus x

Internet Accessible VLAN n

Web Server Farm

Business Logic Server 1

Campus A Private VLAN 1 (for PROD)

Campus AInternet Accessible VLAN 1

Campus AInternet Accessible VLAN 2

Load Balancers

Oracle RAC

Campus

ManagedFirewall

DEV Web ServerBusiness Logic

ServerCampus A Private VLAN 2 (for DEV)

Additional InternetAccessible IP's

Database Server

PHASE II

Campus x Private VLAN x

Detailed Assembly

Futures• Beta for 6 months

– Expand availability and capacity

– Market to instructors, not just SUNY IT

• Software Defined Networking• Software Defined Networking

• More “as a Service”

– Database as a Service (DaaS)

– Middleware as a Service (MaaS)

– Test as a Service (TaaS)

• Dynamic Chargeback based on cluster use

– Lower the price as more people use it

• Shared Group Quotas

Drinking Our Own Champagne• Use EM Self-Service Internally

– Systems uses to deploy VMs and Assemblies

• Educating Service Desk• Educating Service Desk

– Deploy managed VMs

• Plan to empower DBAs and Apps Teams

– Deploy test and development VMs

Benefits to SUNY• Private Cloud Infrastructure

– Security

– Local to other University-wide services

– Governed by NYS Laws and Contract Agreements– Governed by NYS Laws and Contract Agreements

• Leverages existing knowledge, infrastructure and licenses

• Empower Users– Immediate access to resources

– Deploy VMs faster than ITEC or their campus IT

• NYSERDA Grants for Consolidation– Campuses that shift workloads to ITEC receive benefits