Mais conteúdo relacionado Semelhante a Running Hybrid Microsoft Applications on VMware Cloud on AWS (WIN328) - AWS re:Invent 2018 (20) Mais de Amazon Web Services (20) Running Hybrid Microsoft Applications on VMware Cloud on AWS (WIN328) - AWS re:Invent 20182. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Running Hybrid Microsoft
Applications on VMware Cloud
on AWS
Bill Jacobi
Principal Solutions Architect
Amazon Web Services
W I N 3 2 8
Chandra Parvathaneni
Partner Solutions Architect
Amazon Web Services
Haider Witwit
Sr. Solutions Architect
Amazon Web Services
3. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Agenda
Sample Microsoft servers architecture
Hybrid Active Directory with AWS Directory Service
SQL Server reference architecture
Hybrid SharePoint reference architecture
Demo
4. Availability Zone
Private subnetPublic subnet
Availability Zone
Private subnetPublic subnet
Remote
users
Sample
Microsoft
servers
architecture
Virtual private
gateway
Corporate
office
IIS
app
IIS
web
IIS
app
IIS
web
VPN
AWS Direct
Connect
Internet
gateway
RDGW
VPC NAT
gateway
RDGW
VPC NAT
gateway
AWS
Directory
Service
AWS
Directory
Service
MS SQL
MS SQL
Always On
Availability
Group
VPC endpoint Amazon S3
Auto Scaling
5. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
HybridActiveDirectorywithAWSDirectoryService Customer domain is
deployed on-premises
with users, computers,
and group policy as the
single source of identity
1
Cloud domain is
provisioned as a separate
domain on AWS with the
AWS Managed Microsoft
AD
2
Cloud domain is
configured in a 1-way or
2-way trust with customer
domain enabling on-
premises users and AD
security groups to access
cloud instances and VMs
3
AWS instances are
seamless domain-joined
to cloud domain at launch
4
AWS enterprise apps
users are domain-joined
to cloud domain
5
VMware Cloud VMs are
domain-joined to cloud
domain with access
through VMC Compute
Gateway Firewall Rules
6
Users are authenticated
to customer domain
through on-premises
domain controllers
7
On-premises users access
AWS or VMC resources
through the 1-way or 2-way
trust relationship and AD
global security group
permissions
8
6. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
SQL Server reference architecture AWS Directory Service
provides Managed AD for
the Customer VPC and
VMware Cloud on AWS
VPC
1
.NET apps are domain-
joined and Multi-AZ
2
Amazon WorkSpaces are
domain-joined cloud
desktops
3
SQL Server is deployed
on VMware Cloud VPC
with local NVMe SSDs
4
SQL Server Always On is
deployed on a stretched
cluster in an Availability
Group
5
An NLB/CLB Load
Balancer distributes traffic
across Multi-AZ .NET apps
7
Amazon S3 is used to
backup SQL Server
8
1
2
3
4
7
5
6
1 Amazon Route53 updates
the record of the listener
from Primary to
Secondary in the event of
a failover (or vice versa)
6
8 9
CloudWatch is used to
monitor instance, load
balancer, and network
metrics
8
2 3
4
7. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Hybrid SharePoint reference architecture AWS Directory Service
provides Managed AD for
the Customer VPC and
VMware Cloud on AWS
VPC.
1
Amazon WorkSpaces
enables domain-joined
hosted Windows desktops
2
SharePoint (SP) Web
Front Ends and
application servers are
deployed multi-AZ
leveraging Managed AD
3
SQL Server is deployed
on VMware Cloud SDDC
Compute Cluster with
vSAN-managed NVMe
SSDs
4
SQL Server is
provisioned with support
for Always On on Multi-
AZ stretched clusters
5
An NLB/CLB Load Balancer
distributes SharePoint traffic
across 3-AZs
6
Locust Master and 2
Workers generate load
for testing concurrent SP
users
7
CloudWatch shows NLB
and instance metrics in 1-
minute intervals
8
1
2
3
4
6
5
7
8
Amazon S3 is the storage
tier for the backup of SQL
Server
9
9
8. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
9. Thank you!
© 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Bill Jacobi
Amazon Web Services
Chandra Parvathaneni
Amazon Web Services
Haider Witwit
Amazon Web Services
10. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.