Upload
others
View
2
Download
0
Embed Size (px)
Citation preview
Linux Day – 2010 Tour
© Novell, Inc. All rights reserved.2
Today's Agenda
• Why SUSE Linux Enterprise?
• SUSE Linux Enterprise 11 Service Pack 1
• Build & Deploy
• Secure
• Manage
• Availability & Disaster Recovery
Why SUSE Linux Enterprise?
© Novell, Inc. All rights reserved.4
Why SUSE Linux Enterprise?
• Linux Distributions Share 90 to 95% of the Same Components
– Most technical differentiators are very short-lived...
– ...though SUSE Linux has always been a technical leader
• So How Do You Choose the Best Linux Distribution?
– Corporate Strategy
– Best of Breed Solution Stacks
– Interoperability
– Support
– Partner Ecosystem & Application Certification
– Market Trends
© Novell, Inc. All rights reserved.5
Intelligent Workload Management
Intelligent Workload Management
enables IT organizations to manage
and optimize computing resources
in a policy-driven, secure and
compliant manner across physical,
virtual and cloud environments to
deliver business services for
end customers.IntelligentWORKLOADManagement
© Novell, Inc. All rights reserved.6
A Desktop to Data Center Platform
End User Desktop
File & Print
DatabaseSAN
EmailProxy, Caching
Mainframe Cluster
Thin Client
SUSE Linux Enterprise Desktop
SUSE Linux Enterprise Retail Point of Service
SUSE Linux Enterprise Server
Open Enterprise Server
SUSE Linux Enterprise Server
SUSE Linux Enterprise Real Time
Retail/POSKiosk/ATM
Devices
Appliances
Web ERP, SCM, CRM, HR
Firewall, VPN WAP, VOIP
© Novell, Inc. All rights reserved.7
Best of Breed Solution Stacks - Mixed-Source Approach
• Novell has a large portfolio of Open Source and proprietary products
– Able to provide complete Data Center solutions using best of breed technologies
> SLE, ZLM, Virtualization, Workload Management, BSM
– Better positioned to work with ISVs that sell proprietary software
> Example: Microsoft
• RedHat is a purely Open Source company– Limited solution offerings
© Novell, Inc. All rights reserved.8
Interoperability
• Windows Integration– Active Directory Integration – Out of the Box
– Support for Windows 7 domain logon with Samba 3.4
• eDirectory, NIS, and LDAP Integration
• Improved interoperability with next-generation network filesystem
– NFS v4.1 extends support for file system ACLs and interoperability to UNIX systems such as Solaris
• Linux Standards Base 4.0 certification
– Interoperability with other Linux distributions
© Novell, Inc. All rights reserved.9
Virtualization
• Out-of-the-Box Virtualization Host– Xen 4.0 & KVM
• Out-of-the-box Perfect Guest, Optimized for:> SLES Xen / KVM
> Citrix XenServer
> VMWare
> MicroSoft Hyper-V
• Simplified Virtualization Pricing– Pay once for physical node
– Run a unlimited number of VMs
© Novell, Inc. All rights reserved.10
Support Overview
Novell® is the only Linux software company worldwide that offers comprehensive enterprise level support for your entire Linux environment – from the desktop to the data center.
• Priority access to expert resources, 24x7x365
• Fast and predictable response times
• Full-service support offering
• Dedicated resources for personalized support
• Relationship management
• Field-based technical resources
• Support packages for every size customer
• World-wide breadth (11 Global Support Centers)
• Award-winning support and service
© Novell, Inc. All rights reserved.11
Standard Platform Life-cycle
Year 1 Year 2 Year 3 Year 4 Year 5 Year 6 Year 7 Year 8 Year 9 Year 10
GA General
SP1 General Long Term
SP2 General Long Term
SP3 General Long Term Self
SP4 General Self
Total General Self
General General Support Long Term Self Self SupportLong Term Service
Pack Support
• 10-year life-cycle (7 years general support, 3 years self support)
• Service packs every 16-18 months, major releases every 3-4 years• Six month upgrade window• Long-term service pack support option available
© Novell, Inc. All rights reserved.12
Certified Linux ISV ApplicationsSUSE® Linux Enterprise 9+ vs. RHEL 4+*
2,5392,339
2,6452,361
2,8103,005 3,160
3,325 3,478 3,635 3,803 3,963
4,141 4,279 4,423
DEC08 JAN09 FEB09 MAR09 APR09 MAY09 JUN09 JUL09 AUG09 SEP09 OCT09 NOV09 DEC09
500
1000
1500
2000
2500
3000
3500
4000
4500
0
S L E 9
R H E L 4
S L E 10 and 11
R H E L 5
February 2010* Red Hat's inventory is unlisted and unknown, whereas Novell®
numbers are public and countable. Recent claims from Red Hat suggest that their catalog has 3,500+ applications, well below our count
© Novell, Inc. All rights reserved.13
Market Share (Novell vs. RedHat)
Market Share
2006 Market Share (%)
2007 Market Share (%)
2008 Market Share (%)
RedHat 73.8 69.5 64.7
Novell 17.6 24.5 29.8
Source: IDC August 2009 – Worldwide Linux Operating Environment 2009-2013 Forecast
© Novell, Inc. All rights reserved.14
Linux Revenue Growth (Novell vs. RedHat)
Revenue Growth
2006 Rev Growth (%)
2007 Rev Growth (%)
2008 Rev Growth (%)
RedHat 40.5 22.3 14.8
Novell 62.7 80.7 50.3
Source: IDC August 2009 – Worldwide Linux Operating Environment 2009-2013 Forecast
© Novell, Inc. All rights reserved.15
SUSE® Linux Enterprise
Only Linux Endorsed By
SUSE Linux Enterprise Service Pack 1
© Novell, Inc. All rights reserved.17
SLES 11 - Reliability
Reliability – Availability – Serviceability (RAS)• Strong cooperation with IBM on providing a Linux OS
optimized for mission critical workloads on System z • Large blade centers benefit from swap over NFS
capabilities to centralize swap space and improve availability of the datacenter
• Cost savings by using built-in device-mapper MultiPath I/O (MPIO) replacing expensive commercial solutions. MPIO connects systems to a Storage Area Network (SAN) via multiple routes – increases availability, reliability and performance
© Novell, Inc. All rights reserved.18
SLES 11 SP1 - Reliability
• Support hardware RAS features bringing AMD64/Intel64 systems on par with traditional RISC systems
• Improved MPIO hardware-support expands multi-path options, reliability and performance
• Increased redundancy through support of RAID 6, RAID 10
• Scheduler optimizations and support for new floating point features improve performance and save costs
– More efficient scheduler, optimized defaults
– Extended hardware floating point capabilities improve algorithm efficiency
© Novell, Inc. All rights reserved.19
SLES 11 - Scalability
The only enterprise Linux operating system that helps customers
• Manage several workloads within one Linux instance in a lightweight manner by providing Kernel Resource Management with Control Groups
• Scale with their hardware by supporting 512 CPUs on AMD64/ Intel64, 1024 CPUs on POWER, 4096 CPUs on Itanium
• Deploy huge amounts of data by supporting SGI's XFS forfilesystem and file sizes up to 8 EiB
• Improve efficiency by leveraging HW support for power saving features due to the “tickles idle” Kernel, i.e. individual cores can be sent to sleep completely
© Novell, Inc. All rights reserved.20
SLES 11 SP1 - Scalability
• Exploit most recent hardware by scaling up to 4096 CPUs on AMD64/Intel64
• Compute huge amounts of data in memory, e.g. in data- warehouse and ERP systems, by supporting 16TiB RAM(and beyond) on certified hardware
• Improve inter-system connectivity and performance, reduce latency by enabling 10G ethernet hardware and Infiniband via the Open Fabrics Enterprise Distribution (OFED).
• Choose the right architecture for your workload:– Intel Nehalem-EX CPUs and specifically the new AES instruction set
(AES-NI), to improve crypto operations
– All recent and upcoming AMD CPUs and Chipsets
– SGI Altix UV scales Intel64 to 4096 CPUs & 16TiB RAM
– IBM System z machines including extended floating point capabilities
– IBM POWER7– Intel Itanium
© Novell, Inc. All rights reserved.21
SLES 11 - Systems Management
• YaST – unique, highly integrated local management tool– Ease of use, effective learning curve– Reduces training efforts– Automation via AutoYaST datacenter mass deployments
• Fastest Open Source update stack (ZYPP)– Reduce management time, effort and costs– Improve reliability and availability by reducing downtimes
• Cost free Subscription Management Tool and Proxy– Ensure security perimeters– Manage and control compliance of subscriptions
• CIM instrumentation– Remote administration standard:datacenter integration
© Novell, Inc. All rights reserved.22
SLES 11 SP1 - Systems Management
• New web-based systems management tool– WebYaST delivers administrative functionality via remote
hosts, simplifying configuration
– Remote administration of software appliances now possible
• Update stack and CIM improvements simplify management
– ZYPP now handles multiple installed kernels: improve reliability
– CIM infrastructure available by default – ease of installation
• Enhanced subscription and patch management tools– New NCC interface allows pushing and reviewing of
applied updates, improving usability
• New maintenance model: more flexibility for customers while retaining full control and stability
© Novell, Inc. All rights reserved.23
SLES 11 - Virtualization
• Virtualization host – technology leadership – First Enterprise Linux OS to include and support
Xen hypervisor technology; first to ship KVM– Manageability: leverage mixed-source for maximum
customer satisfaction and success– Interoperability: full support for Windows guest
operating systems (Windows 2003, Windows 2008,...)• Perfect guest
– supported on MSFT Hyper-V, VMware ESX, Citrix XenServer, and SLES+Xen hypervisors
– flexibility and choice in the datacenter• Unique cost efficiency – unlimited number of virtual
machines per physical server with one subscription
© Novell, Inc. All rights reserved.24
SLES 11 SP1 - Virtualization
• Virtualization host – more deployment options
– Updated Xen 4.0 improves I/O performance and flexibility; Technologies: SR-IOV, OVF 1.0
– Improved Xen Scalability for higher consolidation ratio in the datacenter and cost savings
– Support for KVM hypervisor helps customers exploit virtualization capabilities of their recent Intel and AMD CPUs.
• Virtualization guest – integration and performance
– easier deployment due to perfect Interoperability with all hypervisors
– Improved virtual guest performance
– Highlight: Open Source guest drivers for VMware ESX and Microsoft Hyper-V (“Linux Integration Components”)
© Novell, Inc. All rights reserved.25
SLES 11 - Security & Certifications
• System architecture with security in mind: customers are guided to install in a secure way:
– Minimize number of running daemons (services)
– Firewall installed in default pattern
• System is hardened by default, hardening can be validated and tuned using YaST Security Center.
• Built-in audit capabilities: security analysis/compliance• Security team/response team/code reviews
– Active participation of the Novell® SUSE Team: improve overall code quality and security
• Application confinement with AppArmor– Prevent local and remote attacks
– Improves security also towards external networks
© Novell, Inc. All rights reserved.26
SLES 11 - Security & Certifications
• Help customers improve network security by:– Using the enhanced authentication capabilities of NFSv4 (Kerberos)
– Installing Virtual Private Networks (VPNs) across architectures and operating systems without additional software (using openVPN or IPSec)
• Check integrity of systems on file level with Advanced Intrusion Detection Environment (AIDE)
• Protect systems and data using encryption on several levels:– “Full Disk” encryption (device mapper layer)
– Volume encryption (device mapper layer)
– Filesystem encryption (eCryptFS)
• Filesystem POSIX capabilities allow administrators to allow access to files and running executables in a standardized way
© Novell, Inc. All rights reserved.27
SLES 11 SP1 - Security & Certifications
• Trusted computing enablement
– Trusted Platform Modules (TPM) provide a cryptographically signed statement about thestate of the system when it has booted;
– Allow for a remote attestation that can be used for access control and for “identity management” of systems
• Certifications
– CGL 4.0 / Carrier Grade Linux 4.0 registration:System is validated for telecommunication environments
– IPv6 (refresh)
© Novell, Inc. All rights reserved.28
SUSE® Linux Enterprise Server 11 Service Pack 1Reliability Enhancements on INTEL64
• Detect physical memory and the specific DIMM where errors happen – improve hardware service and increase uptimes
• MCELOG (the userspace tool to process MCEs) moves from a cronjob to a real service, improving response time – improve reliability
• Predictive failure analysis
• Storage related
– Support for ISW/IMSM RAID arrays during installation, and full integration into the Systems Management Stack (YaST) – leverage latest HW technology and reduce costs
Open Source Collaboration
Together, Intel and Novell work closely together to provide optimized TTM code that enables key new Intel® Xeon® processor features on Novell SUSE* Linux* Enterprise Server 11 – Virtualization (VT-x, VT-d) and AES-NI – Introducing support for KVM and Multiplatform support in XEN – RAS: Corrected error reporting (CMCI), advanced mcelog, and MCA
recovery
Provide best-in-class end-to-end capabilities for IT via strong partnerships with HP, IBM, Dell, Microsoft and SAP – Key Benchmarking results with SGI SPECint and SPECfp – Application porting and proofs of concept
Our co-development on multiple fronts – Drives down the cost of ownership and Speeds up return on investment – Standards-based open solutions for improved innovation and value,
Today’s IT Challenges
Application Performance Maintain or improve performance SLAs as computational
demands increase
Scalability Serve a growing user base, diverse workloads and exploding data volumes without adding significant cost
High Availability Computing solutions available 7x24 to a global user
base
2
Growing Demands Requiring Wise Investments
Intel Xeon® 5600 Processor Series 32nm Technology with 2nd Generation High-k Process
BUILDS on last year’s Xeon® 5500 platform leadership:
50% more cores and cache, same power envelope! Up to 40% higher performance/watt New security features such as Intel TXT and AES-NI
Helps BREAKS DOWN remaining barriers for IT investment with better ROI:
Intel® 5520 Chipset
PCI Express* 2.0
ICH 9/10 Intel® X25-E SSDs
Intel® 82599 10GbE Controller
Intel® Data Center Manager
Intel® Node Manager Technology
NEW!
Performance Energy Efficiency Virtualization
All dates, product features and plans are subject to change without notice.
1 All comparisons vs. previous generation Intel® Xeon® 7400 platforms. Memory capacity is for 4S platform (16DIMMs/socket with 16GB DIMMs). See backup for performance configurations. 2 See backup for consolidation configurations. Comparisons vs. single core Xeon® MP processor 3.33/8MB
Performance tests and ratings are measured using specific computer systems and/or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, visit Intel Performance Benchmark Limitations.
Source: Intel internally measured results 15 January 2010. Each bar represents the score or estimated score of best measured/estimated results on the geometric mean of internal benchmarks (server-side Java*, integer throughput, floating-point throughput, ERP, and OLTP). Results have been estimated based on internal Intel analysis and are provided for informational purposes only. Any difference in system hardware or software design or configuration may affect actual performance. Performance tests and ratings are measured using specific computer systems and/or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, Go to: http://www.intel.com/performance/resources/benchmark_limitations.htm. Relative performance is calculated by assigning a baseline value of 1.0 to one benchmark result, and then dividing the actual benchmark result for the baseline platform into each of the specific benchmark results of each of the other platforms, and assigning them a relative performance number that correlates with the performance improvements reported.
12 month ROI claim estimated based on comparison between 4S Intel® Xeon® MP CPU 3.3Ghz (Single core w/ HT, 1MB L2, 8MB L3, Potomac) and 4S Intel® Xeon® X7560 (8 core, 2.26GHz) based servers. Calculation includes analysis based on performance, power, cooling, electricity rates, operating system annual license costs and estimated server costs. This assumes 42U racks, $0.10 per kWh, cooling costs are 2x the server power consumption costs, operating system license cost of $900/year per server, per server cost of $36,000 based on estimated list prices, and estimated server utilization rates. All dollar figures are approximate. SPECint_rate_base2006* performance and power results are measured for X7560 and Xeon 3.3GHz based servers. Platform power was measured during the steady state window of the benchmark run and at idle. Performance gain compared to baseline was 20x.Baseline platform (measured score of 33.8): Intel server with four MP Intel® Xeon® processor 3.33Ghz (single core w/HT, 1MB L2, 8MB L3), 16GB memory (8x2GB DDR2-400), 2 hard drives, 1 power supply, using Redhat EL 5.3 x86_64 operating system New platform (measured score of 705): Intel internal reference server with four Intel® Xeon® Processor X7560 (24M Cache, 2.26 GHz, 6.40 GT/s Intel® QPI, Intel Hyper-Threading Technology, Intel Turbo Boost Technology), 256GB memory (64x 4GB QR DDR3-1333), 1 hard drive, 2 power supplies, using SuSE* LINUX 11, cpu2006.1.1.ic11.1.linux64.binaries.nov242009.tar.bz2 binaries. Performance tests and ratings are measured using specific computer systems and/or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, visit Intel Performance Benchmark Limitations.
8
Summary
Intel offers a portfolio of platforms for high-end computing workloads
The Xeon® 7500 and Itanium® 9300 platforms include significant advancements in performance, scalability, and RAS
Both platforms have broad support for high-end server designs from multiple OEMs as well as the software community
Novell and Intel are working together to provide seamless, TTM feature support for mission critical capabilities
Intel® server processors codename Nehalem-EX
Please contact your Intel and Novell Sales Representatives to learn more about our joint solution
For additional online information, visit: www.novell.com/intel
www.intel.com/opensource - Ecosystem then Novell
Back-up
• Demand and Patrol scrubbing • Fail Over from Single DRAM
Device Failure (SDDC) • MCA-recovery
• Intel® SMI Packet Retry • Intel QPI Packet Retry
• Intel QPI Protocol Protection via CRC (8bit
or 16bit rolling) • Data Poisoning/ and Viral
Mode • On-Die Error Protection
• Address Parity via Memory Lockstep
Operation
• Mirrored Memory Board Hot Add/Remove
• PCI-E Hot Plug • Failed DIMM Isolation
• Physical Memory Board Hot Add/remove
• Physical CPU Hot Add & Remove**
• Physical IOH Hot Add** • Direct Connect Flash • Dynamic/OS Assisted
Memory Migration* • Dynamic/OS Memory On
-lining (capacity change)* • Dynamic/OS CPU On-lining
(capacity change)* • Dynamic/OS IOH On-lining
(capacity change)*
Intel® Xeon® processor 7500/6500: OVER 20 NEW RAS Features
See backup for RAS feature descriptions
• Support for Intel® Virtualization Technology • Ultimate Performance • Network and block device hot plugging • Virtual Machine Management and Orchestration Tools • Scalability, Live Migration • High Availability • Introducing support for KVM • Multiplatform support in XEN
– SUSE Linux Enterprise Server 9, 10 and 11 – Novell Open Enterprise Server 2 – NetWare 6.5 – Windows Server 2000, 2003, 2008 – Windows XP, Vista – Red Hat Enterprise Linux 4 and 5
• Host Limits with SLE11-SP1: – 255 CPU threads – 1 TB RAM
• Guest Limits with SLE11-SP1: – 32 CPU threads – 256 GB RAM
SUSE Linux Enterprise
• UNIX to Linux Migration
• Mission-Critical Computing
• Virtual Appliances
• Linux/Windows Interoperability
• Virtualization
• Desktop Linux
SUSE Linux Enterprise* Key Virtualization Features
*Other names and brands may be claimed as the property of others.
• Support built into Linux for (No Novell enablement needed) – Intelligent Performance: 8-core support, 44-bit memory
addressability – Energy Efficiency: Multicore Power Management, DBS
• SLE 10 SP3 – Flexible Virtualization: VT-x support; FlexPriority, VT-d
• SLE 11 Additions to the above:
– Intelligent Performance: SSE 4.2, I/OAT3, NUMA, UEFI 2.0, DMRAID 0, 1, 5, Turbo
– Flexible Virtualization: VT-x: EPT, VPID, Flex Migration; VT-d – igb driver update required – Scalability Expandable: x2APIC, 255 cores, 1 TB RAM
• SLE 11 SP1 – MDRAID 0, 1, 5 – AES (gcc in the SDK) – Always running APIC timer – VT: real mode EPT (Xen and KVM), Pause Loop Exiting
(Xen) – RAS: Corrected error reporting (CMCI), advanced mcelog,
MCA recovery
SUSE Linux Enterprise
• UNIX to Linux Migration
• Mission-Critical Computing
• Virtual Appliances
• Linux/Windows Interoperability
• Virtualization
• Desktop Linux
SUSE Linux Enterprise* Intel® Xeon® Processor 7500 Series Platform Optimized OS
Build & Deploy
© Novell, Inc. All rights reserved.31
• Server (physical)
• Virtual Host
• Perfect Guest
• Appliance– minimal packaging
– created using imaging tools
Server Deployment Paths
© Novell, Inc. All rights reserved.32
Keeping the Momentum
54,280
250,364
4,405
Registered users are using SUSE Studio Online
Appliances have been built
ISVs are using SUSE Studio Online
SUSE Studio“a product of
the year”.
eWeek
SUSE Studio“The 10
Coolest Open-Source
Products Of 2009” ChannelWeb
SUSE Studio2010 Codie
Award Finalist.
© Novell, Inc. All rights reserved.33
The SUSE® Appliance Toolkit
BuildManage
Maintain
+ Simplify Maintenance
+ Simplify Deployments
+ Streamline the OS
The SUSE Appliance Toolkit is a collection of tools designed to improve the efficiency of building, managing and maintaining software appliances.
© Novell, Inc. All rights reserved.34
The SUSE® Appliance Toolkit
Components
SUSE Studio Onsite
WebYaST
SUSE Lifecycle Management Server
BuildManageMaintain
© Novell, Inc. All rights reserved.35
SUSE® Studio Onsite
SUSE Studio“a product of
the year”.
eWeek
SUSE Studio“The 10 Coolest
Open-Source Products Of
2009” ChannelWeb
Stand-alone version of SUSE Studio behind your firewall
Build appliances based on:
SUSE Linux Enterprise JeOS
SUSE Linux Enterprise or
openSUSE
Supported formats:
USB Stick/ hard disk image
Live CD (.iso)
VMware/Virtual Box (.vmdk)
Xen Virtual Machine
Soon: Hyper-V, OVF, EC2
SUSE Studio2010 Codie
Award Finalist
© Novell, Inc. All rights reserved.36
Show Time...
SUSE Studio Onsite Demo
Secure
© Novell, Inc. All rights reserved.38
Fact:SUSE® Linux Enterprise offers the most comprehensive security capabilities for Linux
Result:Ensure data integrity while reducing emergency patching across Linux systems
Comprehensive Security Capabilities
No operating system is invulnerable - not even Linux...But SUSE Linux Enterprise Server offers:
• Built-in application security
• Integrated VPN, firewall and anti-virus protection
• Certificate management
• Proactive security features
• Easiest security configuration and management
© Novell, Inc. All rights reserved.39
AppArmor
AppArmor is an open source application security tool that helps protect Linux systems from unknown security flaws
Designed for ease of use
Deploy securitypolicy in hours
not days
Allow programsto do only what
they are supposedto do and
nothing else
AppArmor 2.0 integrated with SLES/SLED for “out of the box” protection
AppArmor support included with SUSE® Linux Enterprise support contracts
Consulting available to assist customer with deployment and custom policy development if needed
© Novell Inc. All rights reserved40
Novell® Privileged User Manager
• Support compliance with internal policies and external regulations
• Control user access to root privileges
• Audit all user activity with 100% keystroke logging
• Analyze potential threats based on policy-based smart risk ratings
• Simplify audit reporting with the most relevant, context-based information
• Enhance user experience with automation and remote logging
© Novell Inc. All rights reserved41
Novell® Identity and Security Solutions
User Provisioning and Management
Roles Management
Simplified Secure Access
ComplianceManagement
Compliance Assurance
Enterprise Compliance Automation for SAP
Privileged User Management
SecurityManagement
Security Monitoring and Remediation
Log Management
Cloud Security
Identity and AccessManagement
© Novell Inc. All rights reserved42
Novell® Privileged User Manager 3-Step Approach to Audit-Ready UNIX/Linux Systems
• 100% privileged user keystroke recording
• Smart grading of activity risk level
Step 2
• Super user privilege management
• Scalable with automated centralized policy
Step 1
• Proactive compliance management with real-time control and alerting
• Auditing the auditor
Step 3
© Novell, Inc. All rights reserved.43
Show Time...
Privileged User Management Demo
Manage
© Novell, Inc. All rights reserved.45
SLES Management Options
• YaST / AutoYaST / WebYaST
• SUSE Lifecycle Management Server
• Subscription Management Tool
• Novell Support Link
• ZENworks® Linux Management– Push Applications and Data, Policy-Driven Configuration,
Inventory, Reporting, Remote Control, Web-based Admin
• Use existing tools– Create images with SUSE® Studio that integrate with your
existing management environment by baking the management client into the build
© Novell, Inc. All rights reserved.46
YaST & AutoYaST
• YaST installation and configuration management framework– Unified and consistent single interface to all systems management tasks via
modules
– Configure every aspect of the server
– Enhanced YaST Partitioner
– CIM Standard adopted
• AutoYaST auto-installation
– A tool for installing SUSE® LinuxEnterprise on systems with as much (or little) automation as you want
– Works in networked and non-networked environments
– Very flexible, very scalable, easy to use
Prepare Install Configure
Pre-configure
Create profile
Get profile
Parse profile
Convert Data
Partition
Create filesystem
Install Packages
Bootloader
Install packages
X11
System variables
SuSEconfig
Hardware
Network
Misc. configs
Quickly install, configure, and manage systems a rapidly set up popular services, both locally and remotely
© Novell, Inc. All rights reserved.47
WebYaST
Overview
WebYaST is a framework and a collection of modules providing a stylish, easy-to-use, and low-cost approach to packaging an Appliance with the minimal configuration interface necessary for its set up.
Y
© Novell, Inc. All rights reserved.48
Y
WebYaST
Modules
Initial configuration wizard
Time, Timezone, NTP
Status, soft-shutdown, reboot
Monitoring (configurable)
Update
Network
License/EULA and Registration
Users
Service start/stop/status
Log visualization
© Novell, Inc. All rights reserved.49
SUSE® Lifecycle Management Server
• Unified update mechanism, which federates updates for all components of a software appliance
• Authentication, entitlement and access control to distribute updates
• Repository management, which stages repository support for quality assurance
• Management of essential customer data and interface to CRM systems
• Rollback to any previous version for system restoration or reproduction
© Novell, Inc. All rights reserved.50
Subscription Management Tool
SMT is a proxy and auditing tool that mirrors the Novell® Customer Center and tightly integrates with it. It allows you to accurately register and manage an entire SUSE® Linux Enterprise deployment, guaranteeing the subscription compliance and secure IT process flow organizations require.
Customer's Network
SMT
NovellCustomer
Center
© Novell, Inc. All rights reserved.51
Subscription Management Tool
NovellCustomer
Center
Mirror
Non-staged
Staged
Testing
Production
Full
Testing snapshot
Production snapshot
Clients
© Novell, Inc. All rights reserved.52
Novell Support Link
• Provides SUSE® Linux Enterprise platform-integrated way to submit support requests to Novell Technical ServicesSM
• Interface is a Yast module, which provides access to a simple wizard enabling quick reporting of an incident
• supportconfig used underneath
• Customer can review any and all data before submitting, and discard any bit considered sensitive
• Enables diagnostics performed by the Novell Support Advisor
• Organizations can leverage infrastructure for internal or OEM use
Accelerate support communications, get faster issue resolution
© Novell Inc. All rights reserved53
ZENworks Linux ManagementManage the complete lifecycle of devices
Asset Acquisition Identity
Image (re-image)
Configuration and Lockdown
Remote Support
Manage Profiles
Install & Remove Apps
Inventory & ReportingAsset Retirement
© Novell Inc. All rights reserved54
ZENworks Linux ManagementRedefining Linux Management
ZENworks 7 Linux Management :Full Stack Linux lifecycle management
Policy Driven Linux OS imaging and deployment
Application deployment and management
Secure Remote Control
Inventory and reporting
Unique Policy Driven configuration & lockdown.
All web-based management built on the next-generation ZENworks Architecture
Cross-distribution support – Novell, SUSE, Red Hat
Innovative web-based console keeps each administrator’s most common tasks a single click away.
© Novell, Inc. All rights reserved.55
Show Time...
ZENworks Linux Management Demo
Availability & Disaster Recovery
© Novell, Inc. All rights reserved.57
SLES - High Availability Extension
• An affordable, integrated suite of robust open source clustering technologies that you can use to implement highly available physical and virtual Linux services.
• Used with SUSE Linux Enterprise Server, it helps you maintain business continuity, protect your data, and reduce unplanned downtime for your mission critical Linux workloads.
• Benefits– Cost effectively meet your service-level agreements
– Ensure continuous access to your mission-critical systems and data
– Maintain data integrity
– Increase resource utilization
© Novell, Inc. All rights reserved.58
SLES 11 - Key HA Capabilities
• Service Availability 24/7– Policy driven clustering
> OpenAIS messaging and membership layer> Pacemaker cluster resource manager
• Sharing and Scaling Data-access by Multiple Nodes– OCFS2 Clusterfile system– Clustered logical volume manager
• Disaster Tolerance– Continuous data replication via IP
– Distributed replicated block device
• Scale Network Services– IP load-balancing
• User-friendly Tools– Graphical user interface– Unified command line interface
© Novell, Inc. All rights reserved.59
SLES 11 SP1 - Key HA Capabilities
• Storage Based Quorum– Enabling the use of a storage device as a quorum instance to match
traditional Unix setups and to prevent split brain scenarios
• Integrated Samba Clustering – Integration of Samba with OCFS2 for higher throughput and scale out of
SMB access
• Metro-Area Clusters – Supporting clustering between different data center locations
• Multilevel Administration Rights – More fine-grained control of cluster operation and administration
• Enhance Data Replication – Improved DRBD capabilities
• DR Framework – A tool set (ReaR) for node recovery
© Novell, Inc. All rights reserved.60
Show Time...
High Availability Demo
© Novell, Inc. All rights reserved.61
PlateSpin Migrate & Protect
Technology that automates the streaming workloads across infrastructures.• Decouple workload from host infrastructure
• Live peer-to-peer workload movement
• Deploy or recover workload from archives and backups
• Protect and recover workloads
Workload decoupled from hardwareImage
Virtual
Physical
Blade
© Novell, Inc. All rights reserved.62
Consolidated RecoveryLeveraging Virtual Infrastructure for Protection of Physical servers
Solution
• Replication of workload into an off-line virtual machine
• One click failover
• One click test restore
• Flexible failback
Benefits
• Drastically reduce TCO and RTO while achieving whole workload protection
• Improving RPO through incremental synchronization
• Simplify testing with bootable backups
Physical production servers
Virtual Recovery Hosts
Physical production servers
© Novell, Inc. All rights reserved.63
PlateSpin Forge
World’s first disaster recovery hardware appliance with embedded virtualization
Protects up to 25 workloads out of the box
PlateSpin Forge Includes:• Storage• Replication Software• Remote Management Interface• Hypervisor
Plug In and Protect DR Solution for :• Medium enterprises• Branch or field use for large enterprises• Hosted recovery
© Novell, Inc. All rights reserved.64
Consolidate Recovery
25 to 1 Recovery
Environment
Whole WorkloadReplication
No Redundant Infrastructure
Costs
Internal Web Server
Email Server
PlateSpin Forge(Remote Site)
File based replication
Block Based replication
© Novell, Inc. All rights reserved.65
Simplify Testing
Rapidly Test Recovery
Workloads
Testing Logged For Reporting and
Compliance
Isolated Testing of Recovery
Workloads
Internal Web Server
Email Server
PlateSpin Forge(Remote Site)
© Novell, Inc. All rights reserved.66
Rapid Failover and Flexible Failback
Recovery Workload Runs on PlateSpin
Forge
Failback to Dissimilar Hardware
Failback with Sync To Repaired
Hardware
Internal Web Server
Repaired Email Server
PlateSpin Forge(Remote Site)
New Web Server
© Novell, Inc. All rights reserved.67
Gain Visibility
Demonstrate Policy Compliance
Actionable Alerts
Failure Notification
Internal Web Server
Email Server
PlateSpin Forge(Remote Site)
Smart Phone
Summary
© Novell, Inc. All rights reserved.69
SUSE Linux Enterprise
The most interoperable platform for mission-critical computing, both physical and virtual—from the desktop to the data center
© Novell, Inc. All rights reserved.70
SUSE® Linux Enterprise ServerBest Choice for Your Business (1)
• Highly reliable, scalable and secure enterprise-class operating system
• Built to power mission-critical workloads in physical and virtual environments
• Affordable, interoperable and manageable open source foundation
• Cost effectively helps – Deliver high-performance, mission-critical business services
– Enable secure network infrastructure
– Provide essential Web infrastructure
– Simplify management of heterogeneous IT infrastructure
© Novell, Inc. All rights reserved.71
SUSE® Linux Enterprise ServerBest Choice for Your Business (2)
• Only enterprise Linux recommended by Microsoft and SAP, designed for Interoperability
– Supports open standard CIM interfaces and can be managed by any management solution utilizing CIM
• Perfect guest for virtual computing– Optimized to run as a high performance guest on leading hypervisors
– Supports an unlimited number of virtual machines per physical system with a single subscription
• Modular, general purpose operating system– Runs on five processor architectures
– Optional extensions that provide advanced capabilities
• Backed by award-winning technical services from Novell®
© Novell, Inc. All rights reserved.72
Reach out to your Novell sales contact to learn more
SUSE Appliance ToolkitLearn about the fastest way to Build, Manage and Maintain new workloads! www.novell.com/toolkit
Try SUSE® Studio OnlineBuild an appliance with a few mouse clicks. Customize it to your heart's content, and share it with the world! http://susestudio.com/
DemosCheck out recorded product demos http://www.novell.com/media/
Next Steps
Unpublished Work of Novell, Inc. All Rights Reserved.This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.
General DisclaimerThis document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.