knowledge centres with multiple redundancies, customisation by configuring servers to your preferences and responsive load equalization which may simply answer dynamic demands. although businesses ought to additionally valuate security concerns of storing data within the cloud to confirm industry-recommended access and compliance management configurations and practices square measure enacted and met. 3.4 HOW TO CHOOSE A CLOUD SERVICE PROVIDER? Once you have decided to make the move to cloud computing, your next step is to select a cloud service provider. It is vital to assess the reliability and capability of a service provider that you plan to entrust with your organisation’s applications and data. Some things to consider: Business health and processes Financial health. The provider should have a track record of stability and be in a healthy financial position with sufficient capital to operate successfully over the long term. Organisation, governance, planning and risk management. The provider should have a formal management structure, established risk management policies and a formal process for assessing third-party service providers and vendors. Trust. You should like the company and its principles. Check the provider’s reputation and see who its partners are. Find out its level of cloud experience. Read reviews and talk to customers whose situation is similar to yours. Business knowledge and technical know-how. The provider should understand your business and what you are looking to do and be able to match it up with their technical expertise. Compliance audit. The provider should be able to validate compliance with all of your requirements through a third-party audit. 3.5 ADMINISTRATION SUPPORT Service Level Agreements (SLAs). Providers should be able to promise you a basic level of service that you are comfortable with. 50 CU IDOL SELF LEARNING MATERIAL (SLM)
Performance reporting. The provider should be able to give you performance reports. Resource monitoring and configuration management. There should be sufficient controls for the provider to track and monitor services provided to customers and any changes made to their systems. Billing and accounting. This should be automated so that you can monitor what resources you are using and the cost, so you don’t run up unexpected bills. There should also be support for billing-related issues. 3.6 TECHNICAL CAPABILITIES AND PROCESSES Ease of deployment, management and upgrade. Make sure the provider has mechanisms that make it easy for you to deploy, manage and upgrade your software and applications. Standard interfaces. The provider should use standard APIs and data transforms so that your organisation can easily build connections to the cloud. Event management. The provider should have a formal system for event management which is integrated with its monitoring/management system. Change management. The provider should have documented and formal processes for requesting, logging, approving, testing and accepting changes. Hybrid capability. Even if you don’t plan to use a hybrid cloud initially, you should make sure the provider can support this model. It has advantages that you may wish to exploit at a later time. 3.7 SECURITY PRACTICES Security infrastructure. There should be a comprehensive security infrastructure for all levels and types of cloud services. Security policies. There should be comprehensive security policies and procedures in place for controlling access to provider and customer systems. 51 CU IDOL SELF LEARNING MATERIAL (SLM)
Identity management. Changes to any application service or hardware component should be authorised on a personal or group role basis and authentication should be required for anyone to change an application or data. Data backup and retention. Policies and procedures to ensure integrity of customer data should be in place and operational. Physical security. Controls ensuring physical security should be in place, including for access to co-located hardware. Also, data centres should have environmental safeguards to protect equipment and data from disruptive events. There should be redundant networking and power and a documented disaster recovery and business continuity plan 3.8 ROLE OF SERVICE PROVIDER IN CLOUD COMPUTING There is a big growth of cloud adoption across little in addition as giant enterprises. This has resulted in a very giant spectrum of cloud offerings as well as cloud delivery models and a spread of cloud computing services that square measure being provided by cloud hosting firms. • Improved accessibility and security Cloud adoption not solely helps improve business processes and enhances the potency of IT infrastructures however conjointly brings down prices of running, upgrading, and maintaining on-the-spot IT facilities. Your business-critical information is armed with further security within the cloud setting. In reality, {the information the info the information} isn't really being placed up within the cloud however is distributed to variety of remote data centre facilities that square measure owned and operated by third-party service suppliers. These institutions incorporate climate- controlled rooms to accommodate enterprise-grade servers for seamless protection and simple accessibility for maintaining business continuity in spite of any harmful event which will impact the most workplace of your enterprise. The cloud information centres square measure designed to accommodate a large number of servers for storing information beneath demanding security controls. The arrangement is geared toward facultative uninterrupted property among Brobdingnagian networks 52 CU IDOL SELF LEARNING MATERIAL (SLM)
comprising of various machines. Cloud computing is leveraged by finish users in addition as cloud hosting firms for the enrichment of their services. • Understanding the cloud’s role in businesses In order to grasp the precise reasons for raised cloud adoption in enterprise setups, we should always have in-depth information regarding of cloud’s attributes that boost business processes. Cloud services square measure designed to line your IT employees free from mundane and long tasks of maintaining, repairing, and upgrading hardware instrumentality like servers. on- the-spot IT infrastructure in enterprises are throw when moving workloads to cloud information centre. within the majority of cases, there'll be no have to be compelled to assign separate house for housing servers and different IT instrumentality. The direct advantage of cloud computing is related to reduced cost as firms needn't invest funds in buying expensive hardware instrumentality. Mitigation of hardware prices is additionally backed by freedom from maintenance and repair prices of net servers. there's an explicit reduction in direct prices of acquisition of cost-intensive package in addition as hardware. • Performance with a promise of security In comparison with a physical server, a Cloud Hosting delivers higher performance. this can be as a result of established net hosting service suppliers square measure in a very higher position to afford enterprise-grade cloud servers as against little or medium-sized enterprises. Cloud hosting suppliers attach nice importance to the safety of customers’ digital assets by disbursal a big quantity of economic and work force resources. These suppliers harden the defences by the implementation of demanding measures like firewalls, anti-malware and anti- virus deployments. additionally, to the current, the host information centres square measure armed with fortress-like security for safeguarding physical in addition as networking assets. • Greater affordability 53 CU IDOL SELF LEARNING MATERIAL (SLM)
By provisioning high of the road hardware and package resources to customers at reasonable costs, cloud hosting service suppliers facilitate business enterprises scale back their capital in addition as in operation prices while not impacting performance. Cloud services go all out by investment immense sums of cash to supply first resources to customers at economical costs. Their economical employees are well equipped to seem when the routine tasks in addition as technical glitches no matter the time of the day for all weekdays. • Demand-oriented resource provisioning Users of cloud services square measure allowed to access the optimum quantity of resources in response to resource needs. This not solely assures secured resource accessibility however conjointly helps businesses deliver the goods resource optimisation for reduction of in operation prices. Cloud-based infrastructure conjointly allows users to access a spread of resources like applications or platforms via any web enabled device, from any location. These services square measure perpetually offered on around the clock basis for improved potency of enterprises. staff will use variety of devices as well as smart-phones, tablets, and laptops to urge their hands on a large number of files and folders while not the necessity to create a visit to the workplace. Cloud-based solutions square measure inherently versatile and accessible and businesses will simply keep their staff socially connected with one another for bigger potency. • Freedom from maintenance On-site IT infrastructures square measure resource intensive and want to be often upgraded and maintained. In distinction, cloud service suppliers shoulder the whole responsibility of taking care of the performance of servers, bandwidth, network, and package applications. This conjointly includes periodic upgrades and security fix of in operation systems and different business-critical applications. This kind of infrastructure management needs giant groups of package professionals to be offered for twenty-four hours each day for twelve months in a very year. Majority of firms that adopt cloud square measure driven by the necessity to possess systematically offered, 54 CU IDOL SELF LEARNING MATERIAL (SLM)
flexible, secure, and well managed IT infrastructure within the absence of any on-premise facility. 3.9 SCALABILITY: SCALE UP AND SCALE DOWN SERVICES IT Managers run into scalability challenges on a regular basis. It is difficult to predict growth rates of applications, storage capacity usage, and bandwidth. When a workload reaches capacity limits the question is how is performance maintained while preserving efficiency to scale? The ability to use the cloud to scale quickly and handle unexpected rapid growth or seasonal shifts in demand has become a major benefit of public cloud services, but it can also become a liability if not managed properly. Buying access to additional infrastructure within minutes has become quite appealing. However, there are decisions that have to be made about what kind of scalability is needed to meet demand and how to accurately track expenditures. Scalability is the capability of a system, network, or process to handle a growing amount of work, or its potential to be enlarged to accommodate that growth. For example, a system is considered scalable if it is capable of increasing its total output under an increased load when resources (typically hardware) are added. A system, whose performance improves after adding hardware, proportionally to the capacity added, is said to be a scalable system 55 CU IDOL SELF LEARNING MATERIAL (SLM)
Figure 3.2 Scalability This will be applicable or any system such as: 1. Commercial websites or Web application who have a larger user group and growing frequently, 2. An immediate need to serve a high number of users for some high-profile event or campaign. 3. A streaming event that would need immediate processing capabilities to serve streaming to larger set of users across certain region or globally. 4. An immediate work processing or data processing that requires higher compute requirements that usual for a certain job. Scalability can be measured in various dimensions, such as: Administrative scalability: The ability for an increasing number of organizations or users to easily share a single distributed system. 56 CU IDOL SELF LEARNING MATERIAL (SLM)
Functional scalability: The ability to enhance the system by adding new functionality at minimal effort. Geographic scalability: The ability to maintain performance, usefulness, or usability regardless of expansion from concentration in a local area to a more distributed geographic pattern. Load scalability: The ability for a distributed system to easily expand and contract its resource pool to accommodate heavier or lighter loads or number of inputs. Alternatively, the ease with which a system or component can be modified, added, or removed, to accommodate changing load. Generation scalability: The ability of a system to scale up by using new generations of components. Thereby, heterogeneous scalability is the ability to use the components from different vendors. Scale-Out/In / Horizontal Scaling: To scale horizontally (or scale out/in) means to add more nodes to (or remove nodes from) a system, such as adding a new computer to a distributed software application. Figure 3.3 Scale-Out/In / Horizontal Scaling 57 Pros: Load is distributed to multiple servers CU IDOL SELF LEARNING MATERIAL (SLM)
Even if one server goes down, there are servers to handle the requests or load. You can add up more servers or reduce depending on the usage patterns or load. Perfect for highly available web application or batch processing operations. Cons: You would need additional hardware /servers to support. This would increase an infrastructure and maintenance costs. You would need to purchase additional licenses for OS or required licensed software’s. Scale-Up/Down/Vertical Scaling: To scale vertically (or scale up/down) means to add resources to (or remove resources from) a single node in a system, typically involving the addition of CPUs or memory to a single computer. Figure 3.4 Scale-Up/Down/Vertical Scaling: 58 Pros Possibility to increase CPU/RAM/Storage virtually or physically. CU IDOL SELF LEARNING MATERIAL (SLM)
Single system can serve all your data/work processing needs with additional hardware upgrade being done. Minimal cost for upgrade Cons When you are physically or virtually maxed out with limit, you do not have any other options. A crash could cause outages to your business processing jobs. We discussed in detail about the both approach in Scalability, depending on the need you will have to choose right approach. Nowadays high availability of cloud computing platforms like Amazon AWS/Microsoft Azure etc., you have lots of flexible ways to Scale-Out or Scale-Up on a Cloud environment, which provides you with virtually unlimited resources, provided you are being capable to pay off accordingly. 3.10 SUMMARY A service-level agreement is an agreement between two or more parties, where one is the customer and the others are service providers. This can be a legally binding formal or an informal \"contract\" (for example, internal department relationships). The agreement may involve separate organizations, or different teams within one organization. Contracts between the service provider and other third parties are often (incorrectly) called SLAs – because the level of service has been set by the (principal) customer, there can be no \"agreement\" between third parties; these agreements are simply \"contracts.\" Operational-level agreements or OLAs, however, may be used by internal groups to support SLAs. If some aspect of a service has not been agreed with the customer, it is not an \"SLA\". SLAs commonly include many components, from a definition of services to the termination of agreement. To ensure that SLAs are consistently met, these agreements are often designed with specific lines of demarcation and the parties involved are required to meet regularly to create an open forum for communication. Rewards and penalties applying to the provider are often specified. Most SLAs also leave room for periodic (annual) revisitation to make changes. 59 CU IDOL SELF LEARNING MATERIAL (SLM)
Virtualization is what makes scalability in cloud computing possible. Virtual machines (VMs) are scalable. They’re not like physical machines, whose resources are relatively fixed. You can add any amount of resources to VMs at any time. You can scale them up by: Moving them to a server with more resources Hosting them on multiple servers at once (clustering) The other reason cloud computing is scalable? Cloud providers already have all the necessary hardware and software in place. Individual businesses, in contrast, can’t afford to have surplus hardware on standby. Virtual machines have evolved over the past few years. Operating systems have added more functionality and compatibilities allowing for every industry to have a more productive workflow. Technology has made tremendous leaps in progress as well, especially with increased internet speeds and 5G decreasing latency times exponentially. Using a virtual machine (remote desktop) has now become cost- effective and more productive for all industries, and all businesses. 3.11 KEY WORDS/ABBREVIATIONS DevOps-The union of people, process and technology to enable continuous delivery of value to customers. The practice of DevOps brings development and operations teams together to speed software delivery and make products more secure and reliable. Learn more about DevOps. Elastic computing the ability to dynamically provision and de-provision computer processing, memory and storage resources to meet changing demands without worrying about capacity planning and engineering for peak usage. Hybrid cloud A cloud that combines public and private clouds, bound together by technology that allows data and applications to be shared between them. Infrastructure as a service (IaaS) A virtualised computer environment delivered as a service over the Internet by a provider. Infrastructure can include servers, network equipment and software. Machine learning: The process of using mathematical models to predict outcomes versus relying on a set of instructions. This is made possible by identifying patterns 60 CU IDOL SELF LEARNING MATERIAL (SLM)
within data, building an analytical model and using it to make predictions and decisions. 3.12 LEARNING ACTIVITY 1. Draw a draft of Service Agreement of Cloud Computing. ___________________________________________________________________________ ___________________________________________________________________ ________ 2. How the role of Service provider is important in Cloud Computing? ___________________________________________________________________________ ___________________________________________________________________________ 3.13 UNIT END QUESTIONS (MCQ AND DESCRIPTIVE) A. Descriptive Questions 1. Explain Service Level Agreement. 2. Discuss the significance of Service Provider. 3. Explain the role of service provider in Cloud computing, 4. Describe Scalability in cloud service management. 5. Outline different types of Scalability. B. Multiple Choice Questions 1. _______ blurs the differences between a small deployment and a large one because scale becomes tied only to demand. a) Leading b) Pooling c) Virtualization d) All of the mentioned 2. Weinman argues that a large cloud’s size has the ability to repel ______ and DDoS attacks better than smaller systems do. a) sniffers 61 CU IDOL SELF LEARNING MATERIAL (SLM)
b) botnets c) trojan horse d) all of the mentioned 3. The reliability of a system with n redundant components and a reliability of r is ____________ a) 1-(1-r) n b) 1-(1+r) n c) 1+(1-r) n d) All of the mentioned 4. Which of the following architectural standards is working with cloud computing industry? a) Service-oriented architecture b) Standardized Web services c) Web-application frameworks d) All of the mentioned 5. Which of the following is related to the service provided by Cloud? a) Sourcing b) Ownership c) Reliability d) AaaS Answer 1. c 2. b 3. a 4. a 5. a 3.14 REFERENCES Buyya Rajkumar, Vecchiola Christian, ThamaraiSelvi S. (2013). Mastering Cloud Computing. New Delhi: Tata McGraw-Hill. Jayaswal K., Kallakuruchi J., Houde D.J., Shah D. (2014). Cloud Computing: Black Book. New Delhi: Dreamtech Press. 62 CU IDOL SELF LEARNING MATERIAL (SLM)
Buyya Rajkumar, Broberg James, Goscinski A.M., Wile (Editors). (2011). Cloud Computing: Principles and Paradigm. New Jersey: John Willy & Sons Inc. Microsoft Documents: https://docs.microsoft.com/en-us/azure/ https://channel9.msdn.com/Azure Mills, Elinor (2009-01-27). \"Cloud computing security forecast: Clear skies\". CNET News. Retrieved 2019-09-19. Peter Mell; Timothy Grance (September 2011). The NIST Definition of Cloud Computing (Technical report). National Institute of Standards and Technology: U.S. Department of Commerce. doi:10.6028/NIST.SP.800-145. Special publication 800-145. Duan, Yucong; Fu, Guohua; Zhou, Nianjun; Sun, Xiaobing; Narendra, Nanjangud; Hu, Bo (2015). \"Everything as a Service (XaaS) on the Cloud: Origins, Current and Future Trends\". 2015 IEEE 8th International Conference on Cloud Computing. IEEE. pp. 621– 628. doi:10.1109/CLOUD.2015.88. ISBN 978-1-4673-7287-9. S2CID 8201466. \"ElasticHosts Blog\". Elastichosts. 2014-04-01. Retrieved 2016-06-02. Amies, Alex; Sluiman, Harm; Tong, Qiang Guo; Liu, Guo Ning (July 2012). \"Infrastructure as a Service Cloud Concepts\". Developing and Hosting Applications on the Cloud. IBM Press. ISBN 978-0-13-306684-5. Griffin, Ry'mone (2018-11-20). Internet Governance. Scientific e-Resources. p. 111. ISBN 978-1-83947-395-1. Boniface, M.; et al. (2010). Platform-as-a-Service Architecture for Real-Time Quality of Service Management in Clouds. 5th International Conference on Internet and Web Applications and Services (ICIW). Barcelona, Spain: IEEE. pp. 155–160. 63 CU IDOL SELF LEARNING MATERIAL (SLM)
UNIT 4: CLOUD SERVICE MANAGEMENT 2 Structure 4.0. Learning Objectives 4.1. Introduction 4.2. Cloud Economics 4.3. Cloud Computing Services by Amazon 4.4. Cloud Computing Services by Google 4.5. Cloud Computing Services by Microsoft 4.6. Summary 4.7. Key Words/Abbreviations 4.8. Learning Activity 4.9. Unit End Questions (MCQ and Descriptive) 4.10. References 4.0 LEARNING OBJECTIVES At the end of the unit learner will able to understand and have knowledge of following aspects of Cloud Economics: Economics related to Cloud Services Provided by Amazon, Google, Microsoft 4.1 INTRODUCTION By exploring cloud economics in cloud computing, IT teams can gain a far more sophisticated understanding of their capital and operational expenses. Beyond just the hard numbers though, they should consider ways that cloud computing can empower and support the productivity of developers and engineers. Cloud economics goes beyond just cutting cloud computing costs; it’s about meeting business goals through greater speed and agility. Understanding the larger perspective in this way will help IT teams choose the best cloud solution for their needs. IT teams should also be careful to approach their decisions around cloud economics with objectivity and an awareness of basic behavioural economics. A host of potential biases and blind spots can negatively affect their decision making: 64 CU IDOL SELF LEARNING MATERIAL (SLM)
Overconfidence blind spot: Being too confident in your understanding of costs and project timelines. Recency blind spot: Considering choices soberly versus being wowed by the latest technology. Confirmation blind spot: Letting pre-existing notions or false beliefs affect your objective review of the information. Refactoring and rework blind spot: Underestimating the time and money to refactor applications to run in the cloud. Talent reskilling blind spot: Overlooking the cost to retrain or maintain multiple operations teams. Operational costs blind spot: Not paying attention to the full cloud cost structure, such as provider charges for data egress. 4.2 CLOUD ECONOMICS What is cloud economics? In the simplest term, economics of cloud computing deal with the knowledge concerning the principles, costs, and benefits of cloud computing. For any organization to derive the greatest value for the business, it must specifically determine how cloud services can affect IT budget, security and IT infrastructure. There is no hard and fast formula to determine that, it all depends on the assessing the costs pertaining to infrastructure, management, staffing need, research and development (R&D), security and support. All these factors are analysed to determine if moving to the cloud makes logical next step forward as per organization’s specific circumstances and needs. Making the business case for cloud economics Before making the leap to cloud, businesses should analyse the economic pros and cons in depth to get a detailed picture of specific costs and savings. Will it lead to long-term savings and efficiencies? The answers will vary depending on the organizational needs and circumstances and on the cloud, solution being considered. The goal is to avoid a cloud adoption strategy that drives up cost, complexity and staffing resources. 65 CU IDOL SELF LEARNING MATERIAL (SLM)
When exploring cloud economics for their company, IT and finance managers can follow a basic process to determine cloud computing ROI and TCO, and use those estimates to help make their case to executives. The process should include these three elements: Benchmarking: Calculate the cost of operating your current data centre, including capital costs over the equipment lifespan, labour costs and any other maintenance and operational costs, from licenses and software to spare parts. Cloud costs: Estimate the costs of the cloud infrastructure you’re considering (public cloud, private cloud, hybrid cloud, etc.). You’ll need a quote from your vendor, but look beyond this basic pricing structure to consider ongoing fees, labour and training costs, ongoing integration and testing of apps, as well as security and compliance. Migration costs: Determine the cost to migrate IT operations to the cloud or to switch cloud providers. These costs should include labour and expenses to integrate and test apps. How to calculate the cost of moving to the cloud? Now here is where the economics of cloud computing comes in action. Let’s take a holistic approach to calculating the cost of cloud computing. Total cost of ownership To put the cost of a cloud solution into perspective, you need to calculate the total cost of ownership (TCO) for the on-premises first. You can calculate that by figuring out the cost of the equipment you need, cost of the capital and the project lifespan of the equipment. You can also include the installation and maintenance cost as well. Cost of your current data centre That’s the first step- to calculate the amount of time, money and infrastructure required in running your current data centre. Once you determine the scope and scale of your current IT infrastructure, it will provide you the baseline to help you calculate the potential cost of the cloud resources you’ll consume and compare it to current cost levels. To precisely calculate the cost of your current data centre, make sure to include all aspects. For example, IT infrastructure consisting of hardware and software that can include physical 66 CU IDOL SELF LEARNING MATERIAL (SLM)
servers, software licenses, maintenance contracts, warranties, supplies, material, spare parts, and anything else that you directly pay for. You need the cost of all these to correctly estimate how much your current IT infrastructure cost. Then there are operational costs as well that include labour, facilities used to house IT hardware, internet connectivity. These operational costs are the part of the cost of your data centre as well. Cost of estimated cloud infrastructure Once the cost of your current data centre is determined, you now need to calculate the estimated cost of cloud infrastructure. While cloud pricing can vary depending on the number of factors and can be quite complicated, it depends on your cloud provider to provide the simplified pricing structure that is easier to understand. Alternatively, you can contact your cloud provider of choice for a quote. Cost of cloud migration execution The next step is accounting for the costs involved in executing the migration of the IT operations to the cloud. It is determined by the scope of your current IT infrastructure and how much of it you plan on moving to the cloud will be. Moreover, there is a cost involved of integrating and testing of apps or even consultation fees. Additional post migration cost Often, many cloud providers require a monthly infrastructure fee to maintain and improve your new cloud environment. Costs such as continued integration and testing of apps, training, labour, security, and compliance, administration, and others need to be forecasted in order to determine an accurate post-migration budget. 4.3 CLOUD COMPUTING SERVICES BY AMAZON Amazon In 2006, Amazon net Services (AWS) began to provide IT services to the market within the style of net services, that is today referred to as cloud computing. With this cloud, we'd like not arrange for servers and different IT infrastructure that takes up a lot of your time beforehand. Instead, these services will instantly spin up lots of or thousands of servers in minutes and deliver results quicker. we have a tendency to pay just for what we have a 67 CU IDOL SELF LEARNING MATERIAL (SLM)
tendency to use with no up-front expenses and no semi-permanent commitments, that makes AWS price economical. Today, AWS provides an extremely reliable, scalable, affordable infrastructure platform within the cloud that powers multitude of companies in a hundred ninety countries round the world Amazon net Service design This is the fundamental structure of AWS EC2, wherever EC2 stands for Elastic work out Cloud. EC2 permit users to use virtual machines of various configurations as per their demand. It permits numerous configuration choices, mapping of individual server, numerous rating choices, etc. we are going to discuss these very well in AWS product section. Following is that the delineate illustration of the design. Figure 4.1 Amazon net Service design 68 CU IDOL SELF LEARNING MATERIAL (SLM)
Note − within the on top of diagram S3 stands for easy Storage Service. It permits the users to store and retrieve numerous kinds of knowledge mistreatment API calls. It doesn’t contain any computing component. we are going to discuss this subject thoroughly in AWS merchandise section. Load reconciliation Load reconciliation merely means that to hardware or software package load over net servers, that improver's the potency of the server likewise because the application. Following is that the represented illustration of AWS design with load reconciliation. Hardware load balancer may be a quite common network appliance employed in ancient net application architectures. AWS provides the Elastic Load reconciliation service, it distributes the traffic to EC2 instances across multiple out their sources, and dynamic addition and removal of Amazon EC2 hosts from the load-balancing rotation. Elastic Load reconciliation will dynamically grow and shrink the load-balancing capability to regulate to traffic demands and additionally support sticky sessions to handle additional advanced routing desires. Amazon Cloud-front: it's liable for content delivery, i.e. accustomed deliver web site. it should contain dynamic, static, and streaming content employing an international network of edge locations. Requests for content at the user's finish are mechanically routed to the closest edge location, that improves the performance. Amazon Cloud-front is optimized to figure with different Amazon net Services, like Amazon S3 and Amazon EC2. It additionally works fine with any non-AWS origin server and stores the initial files in a very similar manner. In Amazon net Services, there aren't any contracts or monthly commitments. we tend to pay just for the maximum amount or as very little content as we tend to deliver through the service. Elastic Load Balancer 69 CU IDOL SELF LEARNING MATERIAL (SLM)
It is accustomed unfold the traffic to net servers, that improves performance. AWS provides the Elastic Load reconciliation service, during which traffic is distributed to EC2 instances over multiple out their zones, and dynamic addition and removal of Amazon EC2 hosts from the load-balancing rotation. Elastic Load reconciliation will dynamically grow and shrink the load-balancing capability as per the traffic conditions. Security Management Amazon’s Elastic figure Cloud (EC2) provides a feature referred to as security teams, that Associate in Nursingalogous |is comparable} to an arriving network firewall, during which we've to specify the protocols, ports, and supply scientific discipline ranges that are allowed to succeed in your EC2 instances. Each EC2 instance are often assigned one or additional security teams, every of that routes the acceptable traffic to every instance. Security teams are often organized mistreatment specific subnets or scientific discipline addresses that limits access to EC2 instances. Elastic Caches Amazon Elastic Cache may be a net service that manages the cache within the cloud. In memory management, cache features a vital role and helps to scale back the load on the services, improves the performance and quantifiability on the information tier by caching oft used data. Amazon RDS Amazon RDS (Relational information Service) provides an analogous access as that of MySQL, Oracle, or Microsoft SQL Server information engine. identical queries, applications, and tools are often used with Amazon RDS. It mechanically patches the information software package and manages backups as per the user’s instruction. It additionally supports point-in-time recovery. There aren't any up-front investments needed, {and we tend to and that we} pay just for the resources we use. Hosting RDMS on EC2 Instances 70 CU IDOL SELF LEARNING MATERIAL (SLM)
Amazon RDS permits users to put in RDBMS (Relational direction System) of your selection like MySQL, Oracle, SQL Server, DB2, etc. on associate EC2 instance and might manage as needed. Amazon EC2 uses Amazon compass point (Elastic Block Storage) kind of like network - attached storage. All knowledge and logs running on EC2 instances ought to be placed on Amazon compass point volumes, which can be out there although the information host fails. Amazon compass point volumes mechanically give redundancy inside the provision zone, that will increase the provision of easy disks. additional if the degree isn't decent for our databases desires, volume is often else to extend the performance for our information. Using Amazon RDS, the service supplier manages the storage and that we solely specialise in managing the info. Storage & Backups AWS cloud provides numerous choices for storing, accessing, and backing up net application knowledge and assets. The Amazon S3 (Simple Storage Service) provides an easy web- services interface that may be accustomed store and retrieve any quantity of knowledge, at any time, from anyplace on the net. Amazon S3 stores knowledge as objects inside resources referred to as buckets. The user will store as several objects as per demand inside the bucket, and might scan, write and delete objects from the bucket. Amazon compass point is effective for knowledge that must be accessed as block storage and needs persistence on the far side the lifetime of the running instance, like information partitions and application logs. Amazon compass point volumes are often maximized up to one TB, and these volumes are often stripy for larger volumes and inflated performance. Provisioned IOPS volumes are designed to satisfy the wants of information workloads that are sensitive to storage performance and consistency. Amazon compass point presently supports up to one,000 IOPS per volume. we will stripe multiple volumes along to deliver thousands of IOPS per instance to associate application. 71 CU IDOL SELF LEARNING MATERIAL (SLM)
Auto Scaling The distinction between AWS cloud design and also the ancient hosting model is that AWS will dynamically scale the net application fleet on demand to handle changes in traffic. In the ancient hosting model, traffic statement models are usually accustomed provision hosts previous projected traffic. In AWS, instances are often provisioned on the fly in step with a group of triggers for scaling the fleet out and back in. Amazon machine Scaling will produce capability teams of servers that may grow or shrink on demand. Key concerns for net Hosting in AWS Following are some of the key considerations for web hosting − No physical network devices needed In AWS, network devices like firewalls, routers, and load-balancers for AWS applications no longer reside on physical devices and are replaced with software solutions. Multiple options are available to ensure quality software solutions. For load balancing choose Zeus, HAProxy, Nginx, Pound, etc. For establishing a VPN connection choose OpenVPN, OpenSwan, Vyatta, etc. No security concerns AWS provides a more secured model, in which every host is locked down. In Amazon EC2, security groups are designed for each type of host in the architecture, and a large variety of simple and tiered security models can be created to enable minimum access among hosts within your architecture as per requirement. Availability of data centres EC2 instances are easily available at most of the availability zones in AWS region and provides model for deploying your application across data centres for both high availability and reliability. 72 CU IDOL SELF LEARNING MATERIAL (SLM)
4.4 CLOUD COMPUTING SERVICES BY GOOGLE Google Cloud Platform (GCP), offered by Google, could be a suite of cloud computing services that runs on identical infrastructure that Google uses internally for its end-user product, like Google Search, Gmail, file storage, and YouTube aboard a collection of management tools, it provides a series of standard cloud services as well as computing, knowledge storage, knowledge analytics and machine learning Registration needs a Mastercard or checking account details. Google Cloud Platform provides infrastructure as a service, platform as a service, and serverless computing environments. In April 2008, Google declared App Engine, a platform for developing and hosting net applications in Google-managed knowledge centres, that was the primary cloud computing service from the corporate. The service became usually on the market in Gregorian calendar month 2011. Since the announcement of the App Engine, Google intercalary multiple cloud services to the platform. Google Cloud Platform could be a centres part of Google Cloud, which incorporates the Google Cloud Platform public cloud infrastructure, moreover as G Suite, enterprise versions of golem and Chrome OS, and application programming interfaces (APIs) for machine learning and enterprise mapping services. Cloud Functions, Google Cloud's functions as a service (FaaS) providing, provides a serverless execution setting for building and connecting cloud services. With Cloud Functions you write easy, single-purpose functions that area unit connected to events emitted from your cloud infrastructure and services. You perform is triggered once an occasion being watched is laid-off. Your code executes in a very totally managed setting. there's no have to be compelled to provision any infrastructure or worry concerning managing any servers. Cloud Functions will be written mistreatment JavaScript, Python 3, Go, or Java. you'll take you perform and run it in any normal Node.js (Node.js 10), Python three (Python three.7), Go (Go 1.11 or 1.13) or Java (Java 11) setting, that makes each movability and native testing a breeze. Cloud Functions area unit an honest selection to be used cases that embrace the following: 73 CU IDOL SELF LEARNING MATERIAL (SLM)
Data processing and ETL operations, for eventualities like video transcoding and IoT streaming knowledge. Webhooks to retort to HTTP triggers. Lightweight Apis that compose loosely coupled logic into applications. Mobile backend functions. Application platform App Engine is Google Cloud's platform as a service (PaaS). With App Engine, Google handles most of the management of the resources for you. For instance, if your application needs a lot of computing resources as a result of traffic to your web site will increase, Google mechanically scales the system to supply those resources. If the system code wants a security update, that is handled for you, too. When you build your app on App Engine, you can: Build your app in Go, Java, .NET, Node.js, PHP, Python, or Ruby and use pre-configured runtimes, or use custom runtimes to jot down code in any language. Let Google manage app hosting, scaling, monitoring, and infrastructure for you. Connect with Google Cloud storage product, like Cloud SQL, hearth store in Datastore mode, and Cloud Storage. you'll additionally connect with managed Redis databases, and host third- party databases like MongoDB and prophetess on reckon Engine, another cloud supplier, on- premises, or with a third-party seller. Use net Security Scanner to spot security vulnerabilities as a complement to your existing secure style and development processes. Google Cloud's unmanaged reckon service is reckon Engine. you'll consider reckon Engine as providing Associate in Nursing infrastructure as a service (IaaS), as a result of the system provides a strong computing infrastructure, however need to you need to} select and set up the platform parts that you just want to use. With reckon Engine, it is your responsibility to set up, administer, and monitor the systems. Google can make sure that resources area unit on the market, reliable, and prepared for you to use, however it's up to you to provision and 74 CU IDOL SELF LEARNING MATERIAL (SLM)
manage them. The advantage here is that you just have complete management of the systems and unlimited flexibility When you hinge upon reckon Engine, you'll do the following: Use virtual machines (VMs), referred to as instances, to create your application, very like you'd if you had your own hardware infrastructure. you'll make a choice from a spread of instance sorts to customise your configuration to satisfy your wants and your budget. Choose that international regions and zones to deploy your resources in, providing you with management over wherever your knowledge is kept and used. Choose that in operation systems, development stacks, languages, frameworks, services, and different code technologies you favour. Create instances from public or personal pictures. Use Google Cloud storage technologies or any third-party technologies you favour. Use Google Cloud Marketplace to quickly deploy pre-configured code packages. for instance, you'll deploy a LAMP or MEAN stack with simply a number of clicks. Create instance teams to a lot of simply manage multiple instances along. Use auto scaling with Associate in Nursing instance cluster to mechanically add and take away capability. Attach and detach disks pro re nata. Use SSH to attach on to your instances. 4.5 CLOUD COMPUTING SERVICES BY MICROSOFT Microsoft Azure, commonly referred to as Azure, is a cloud computing service created by Microsoft for building, testing, deploying, and managing applications and services through Microsoft-managed data centres. It provides software as a service (SaaS), platform as a service (PaaS) and infrastructure as a service (IaaS) and supports many different programming languages, tools, and frameworks, including both Microsoft-specific and third- party software and systems. 75 CU IDOL SELF LEARNING MATERIAL (SLM)
Azure is Microsoft's big enterprise cloud, offered as a PaaS and IaaS service. It is a popular service used by developers who write apps with the support of the company's coding tools. Azure offers the capability to save money, work faster and integrate data and on-premises apps in a powerful, scalable and flexible way. This feature-filled service offers a hybrid cloud solution, unlike many other cloud providers that force customers to choose between the public cloud and their own data centres. Hybrid cloud solutions are known to offer more efficiency and economy in storage, backup and recovery of data. Support for Azure has been expanded from Windows to Linux as well, opening up the services to more users. Clients only pay for the services they need. With Azure, clients can better provision Windows and Linux VM apps, develop modern mobile and business solution apps for Windows, iOS and Android, gain insights from data and manage user accounts, synching with on-premises data directories. Deployment of Azure services takes less than 5 minutes, just as it is claimed by Microsoft. 57 percent of Fortune 500 companies on the bleeding edge already use Azure, and the numbers are expected to rise as the capability offered by Azure improves and expands further. Azure was announced in October 2008, started with codename \"Project Red Dog”, and released on February 1, 2010, as Windows Azure before being renamed to Microsoft Azure on March 25, 2014 Design Microsoft Azure uses a specialized operating system, called Microsoft Azure, to run its \"fabric layer”: A cluster hosted at Microsoft's data centres that manage computing and storage resources of the computers and provisions the resources (or a subset of them) to applications running on top of Microsoft Azure. Microsoft Azure has been described as a \"cloud layer\" on top of a number of Windows Server systems, which use Windows Server 2008 and a customized version of Hyper-V, known as the Microsoft Azure Hypervisor to provide virtualization of services. Scaling and reliability are controlled by the Microsoft Azure Fabric Controller, which ensures the services and environment do not fail if one or more of the servers fails within the Microsoft data centre, and which also provides the management of the user's Web application such as memory allocation and load balancing. 76 CU IDOL SELF LEARNING MATERIAL (SLM)
Azure provides an API built on REST, HTTP, and XML that allows a developer to interact with the services provided by Microsoft Azure. Microsoft also provides a client-side managed class library that encapsulates the functions of interacting with the services. It also integrates with Microsoft Visual Studio, Git, and Eclipse. In addition to interacting with services via API, users can manage Azure services using the Web-based Azure Portal, which reached General Availability in December 2015. The portal allows users to browse active resources, modify settings, launch new resources, and view basic monitoring data from active virtual machines and services. Deployment models Microsoft Azure offers two deployment models for cloud resources: the \"classic\" deployment model and the Azure Resource Manager. In the classic model, each Azure resource (virtual machine, SQL database, etc.) was managed individually. The Azure Resource Manager, introduced in 2014, enables users to create groups of related services so that closely coupled resources can be deployed, managed, and monitored together. [ 4.6 SUMMARY Within a few years, cloud computing has become a technology that affects everyone's lives on a daily basis. We store our personal files on the cloud and use cloud-based apps to maintain friendships. IT departments have also taken a big step in going from being doubtful of cloud security to spending billions of dollars on cloud services. The cloud gives small, medium and large sized companies the ability to simply rent the apps and servers they need, instead of having to buy them. Simply put, cloud computing is the delivery of computing services—including servers, storage, databases, networking, software, analytics, and intelligence—over the Internet (“the cloud”) to offer faster innovation, flexible resources, and economies of scale. You typically pay only for cloud services you use, helping lower your operating costs, run your infrastructure more efficiently and scale as your business needs change. Web Based Cloud Computing: Companies use the functionality provided by web services and do not have to develop a full application for their needs. Organizations 77 CU IDOL SELF LEARNING MATERIAL (SLM)
make use of the unlimited storage potential of the cloud infrastructure. They can expand and shrink their storage space as needed without having to worry about dedicated servers on site. It allows people to access the functionality of a particular software without worrying about storage or other issues. Companies can run their applications on the cloud service’s platform without having to worry about maintaining hard drives and servers. Companies that need to store a lot of data can store all of their data remotely and can even create a virtual data center. Managed Services: These are applications used by the cloud service providers, such as anti-spam service. Service Commerce: It is the creation of a hub of applications that can be used by an organization’s members. It provides organizations the applications they need along with the services they desire. 4.7 KEY WORDS/ABBREVIATIONS Machine learning algorithms: Help data scientists identify patterns within sets of data. Selected based upon the desired outcome—predicting values, identifying anomalies, finding structure or determining categories—machine learning algorithms are commonly divided into those used for supervised learning and those used for unsupervised learning Microsoft Azure: The Microsoft cloud platform, a growing collection of integrated services, including infrastructure as a service (IaaS) and platform as a service (PaaS) offering Middleware: Software that lies between an operating system and the applications running on it. It enables communication and data management for distributed applications, like cloud-based applications, so, for example, the data in one database can be accessed through another database. NoSQL: NoSQL is a set of nonrelational database technologies—developed with unique capabilities to handle high volumes of unstructured and changing data. NoSQL technology offers dynamic schema, horizontal scaling and the ability to store and retrieve data as columns, graphs, key-values or documents. 78 CU IDOL SELF LEARNING MATERIAL (SLM)
Platform as a service (PaaS): A computing platform (operating system and other services) delivered as a service over the Internet by a provider. An example is an application development environment that you can subscribe to and use immediately. 4.8 LEARNING ACTIVITY 1. Draw a comparative study of Google and Microsoft Azure Services ___________________________________________________________________________ ___________________________________________________________________ ________ 2. Draw a strategy to estimate the economics ___________________________________________________________________________ ___________________________________________________________________ ________ 4.9 UNIT END QUESTIONS (MCQ AND DESCRIPTIVE) A. Descriptive Questions 1. Explain Cloud Economics. 2. Discuss the major points to be kept in mind while going for Cloud Computing 3. Describe the major challenges in accepting Cloud Computing. 4. Explain different services provided by Amazon, Google App Engine, Microsoft. B. Multiple Choice Questions 1. The ________ cloud infrastructure is operated for the exclusive use of an organization. a) Public b) Private c) Community d) All of the mentioned 2. __________ cloud is one where the cloud has been organized to serve a common function or purpose. a) Public b) Private 79 CU IDOL SELF LEARNING MATERIAL (SLM)
c) Community d) All of the mentioned 3. A hybrid cloud combines multiple clouds where those clouds retain their unique identities but are bound together as a unit. a) Public b) Private c) Community d) Hybrid 4. Which of the following benefit is related to create resources that are pooled together in a system that supports multi-tenant usage? a) On-demand self-service b) Broad network access c) Resource pooling d) All of the mentioned 5. The _____ is something that you can obtain under contract from your vendor. a) PoS b) QoS c) SoS d) All of the mentioned Answer 1. b 2. c 3. d 4. a 5. b 4.10 REFERENCES Buyya Rajkumar, Vecchiola Christian, ThamaraiSelvi S. (2013). Mastering Cloud Computing. New Delhi: Tata McGraw-Hill. https://aws.amazon.com/what-is-cloud-computing/ https://aws.amazon.com/solutions/case-studies/siemens/?hp=tile&story=siemens 80 CU IDOL SELF LEARNING MATERIAL (SLM)
\"Google's Stack Driver-Based Cloud Monitoring Now in Beta\". Data Centre Knowledge. 2015-01-14. Retrieved 2018-09-08. \"Google's Cloud Pub/Sub Real-Time Messaging Service Is Now in Public Beta\". TechCrunch. Retrieved 2018-09-08. Jayaswal K., Kallakuruchi J., Houde D.J., Shah D. (2014). Cloud Computing: Black Book. New Delhi: Dreamtech Press. Buyya Rajkumar, Broberg James, Goscinski A.M., Wile (Editors). (2011). Cloud Computing: Principles and Paradigm. New Jersey: John Willy & Sons Inc. Microsoft Documents: https://docs.microsoft.com/en-us/azure/ https://channel9.msdn.com/Azure \"Azure Machine Learning Studio\". Machine Learning. Retrieved August 27, 2020. Directory of Azure Cloud Services, Microsoft.com \"How to monitor Microsoft Azure VMs\". Datadog. Retrieved March 19, 2019. Vaughan-Nichols, Steven J. \"Microsoft developer reveals Linux is now more used on Azure than Windows Server\". ZDNet. Retrieved July 2, 2019. \"Meet Windows Azure event June 2012\". Weblogs.asp.net. June 7, 2012. Retrieved June 27, 2013. 81 CU IDOL SELF LEARNING MATERIAL (SLM)
UNIT 5: MICROSOFT AZURE 1 Structure 5.0. Learning Objectives 5.1. Introduction 5.2. Azure –Architecture 5.3. How Azure works 5.4. Difference between Azure Resource Manager (ARM) & Classic Portal. 5.5. Summary 5.6. Key Words/Abbreviations 5.7. Learning Activity 5.8. Unit End Questions (MCQ and Descriptive) 5.9. References 5.0 LEARNING OBJECTIVES At the end of the unit learner will able to learn and have knowledge of following aspects of Azure Architecture: Architectural Aspects of Azure Difference between Azure Resource Manager (ARM) & Classic Portal 5.1 INTRODUCTION Microsoft Azure may be a public cloud platform that includes powerful on-demand infrastructure and solutions for building and deploying applications workloads yet as a good sort of IT and application services. you'll use Azure as a public cloud supplier and as a hybrid extension to existing on-premises infrastructure. Organizations that use Microsoft solutions on-premises are ready to simply extend their infrastructure and operational processes to Azure. With the growing quality of Azure, today’s systems directors have to be compelled to acquire and strengthen their skills on this invasive public cloud platform. during this chapter we tend to explore the Azure public cloud platform with a spotlight on the Infrastructure-as-a-Service (IaaS) options. we tend to cowl general branch of knowledge options of the Azure cloud together with geographic regions, convenience zones, and repair Level Agreements (SLAs) 82 CU IDOL SELF LEARNING MATERIAL (SLM)
hooked up to the core Azure IaaS infrastructure. Regions, convenience Zones, convenience Sets, and period SLAs The Azure cloud atmosphere is segmental logically and physically to supply the following: Geographic availability Low-latency access to geographic locations for a lot of speedy application and repair access. Geographic resiliency Multiple points of presence for distributing applications, workloads, and services to permit for prime convenience Core services are accessible across the complete infrastructure, together with name System (DNS), security, identity and directory services, et al. that are typically represented as element services. The geographic layout of Azure is split up into locations sorted into regions, and inside every region they're physically separated convenience Zones. Regions Azure touts the largest public cloud, and it is growing at the fastest rate by percentage of any public cloud to date with 54 regions as of this writing. Regions are defined as an area within a specific geography that does not span across national borders and that contains one or more datacentres. Regional access is an important consideration for many technical and business reasons. Both deployment considerations and user experience are affected by the availability of multiple regions. You must also weigh advantages against design considerations and complexity when using multiregional architectures. Using multiple regions in order to support scale-out application and virtual machine deployments provides a way to ensure resiliency and availability. Another use case is ensuring low-latency access to customers within a specific region (e.g., customers in Asia- Pacific geographies would suffer from latency if they were to access a North American region). There are also specialty regions that are purpose-built to deal with regulatory and governmental boundaries. These include the following: 83 CU IDOL SELF LEARNING MATERIAL (SLM)
US Gov Virginia and US Gov Iowa China East and China North Germany Central and Germany Northeast Each specialty region is designed to solve for specific governmental and security regulations that require distinct cloud environments for targeted customers with these requirements (e.g., FedRAMP, DISA). Regional clouds in China and Germany provide local datacenter operations to be controlled by country-specific providers, which is a requirement for data sovereignty and other regulatory boundaries specific to those regions. Paired Regions Another feature within Azure is Paired Regions. These regions are in the same geography but are typically at least 300 miles apart and provide the ability to deploy cross-region services and applications while maintaining geographic residency. Paired Regions also have operational processes that ensure that sequential updates occur and that prioritized regional recovery occurs in the event of an outage. This provides you with better resiliency options for application and systems architects to use when designing your Azure solutions. Specific Azure services have replication options and will take advantage of the paired region, as the replication target in order to maintain geographic residency for data and application workloads. 84 CU IDOL SELF LEARNING MATERIAL (SLM)
Figure 5.1 Paired Regions Using Paired Regions enables deployment patterns that can include applications that might be replicated rather than used in a distributed deployment. This enables active–passive deployment patterns with low-latency access to the second region for rapid recovery in the case of a fault. Paired Regions services that can be replicated include compute (Azure Virtual Machines), Storage, and Database services. Additional third-party products are available to replicate resources and data outside of the native Azure offerings. 5.2 AZURE -ARCHITECTURE Azure as PaaS (Platform as a Service) 85 CU IDOL SELF LEARNING MATERIAL (SLM)
As the name suggests, a platform is provided to clients to develop and deploy software. The clients can focus on the application development rather than having to worry about hardware and infrastructure. It also takes care of most of the operating systems, servers and networking issues. Pros The overall cost is low as the resources are allocated on demand and servers are automatically updated. It is less vulnerable as servers are automatically updated and being checked for all known security issues. The whole process is not visible to developer and thus does not pose a risk of data breach. Since new versions of development tools are tested by the Azure team, it becomes easy for developers to move on to new tools. This also helps the developers to meet the customer’s demand by quickly adapting to new versions. Cons There are portability issues with using PaaS. There can be a different environment at Azure, thus the application might have to be adapted accordingly. Azure as IaaS (Infrastructure as a Service) It is a managed compute service that gives complete control of the operating systems and the application platform stack to the application developers. It lets the user to access, manage and monitor the data centres by themselves. Pros This is ideal for the application where complete control is required. The virtual machine can be completely adapted to the requirements of the organization or business. IaaS facilitates very efficient design time portability. This means application can be migrated to Windows Azure without rework. All the application dependencies such as database can also be migrated to Azure. 86 CU IDOL SELF LEARNING MATERIAL (SLM)
IaaS allows quick transition of services to clouds, which helps the vendors to offer services to their clients easily. This also helps the vendors to expand their business by selling the existing software or services in new markets. Cons Since users are given complete control they are tempted to stick to a particular version for the dependencies of applications. It might become difficult for them to migrate the application to future versions. There are many factors which increases the cost of its operation. For example, higher server maintenance for patching and upgrading software. There are lots of security risks from unpatched servers. Some companies have well- defined processes for testing and updating on-premise servers for security vulnerabilities. These processes need to be extended to the cloud-hosted IaaS VMs to mitigate hacking risks. The unpatched servers pose a great security risk. Unlike PaaS, there is no provision of automatic server patching in IaaS. An unpatched server with sensitive information can be very vulnerable affecting the entire business of an organization. It is difficult to maintain legacy apps in Iaas. It can be stuck with the older version of the operating systems and application stacks. Thus, resulting in applications that are difficult to maintain and add new functionality over the period of time. It becomes necessary to understand the pros and cons of both services in order to choose the right one according your requirements. In conclusion it can be said that, PaaS has definite economic advantages for operations over IaaS for commodity applications. In PaaS, the cost of operations breaks the business model. Whereas, IaaS gives complete control of the OS and application platform stack. Like other cloud platforms, Microsoft Azure depends on a technology called virtualization, which is the emulation of computer hardware in software. This is made possible by the fact that most computer hardware works by following a set of instructions encoded directly into the silicon. By mapping software instructions to emulate hardware instructions, virtualized hardware can use software to function like “real” hardware. 87 CU IDOL SELF LEARNING MATERIAL (SLM)
Cloud providers maintain multiple data centres, each one having hundreds (if not thousands) of physical servers that execute virtualized hardware for customers. Microsoft Azure architecture runs on a massive collection of servers and networking hardware, which, in turn, hosts a complex collection of applications that control the operation and configuration of the software and virtualized hardware on these servers. This complex orchestration is what makes Azure so powerful. It ensures that users no longer have to spend their time maintaining and upgrading computer hardware as Azure takes care of it all behind the scenes. 5.3 HOW AZURE WORKS It is essential to understand the internal workings of Azure so that we can design our applications on Azure effectively with high availability, data residency, resilience, etc. Fig 5.2 Homepage of Microsoft Azure Microsoft Azure is completely based on the concept of virtualization. So, similar to other virtualized data centre, it also contains racks. Each rack has a separate power unit and network switch, and also each rack is integrated with software called Fabric-Controller. This Fabric-controller is a distributed application, which is responsible for managing and monitoring servers within the rack. In case of any server failure, the Fabric-controller 88 CU IDOL SELF LEARNING MATERIAL (SLM)
recognizes it and recovers it. And Each of these Fabric-Controller is, in turn, connected to a piece of software called Orchestrator. This Orchestrator includes web-services, Rest API to create, update, and delete resources. Figure 5.3 Azure portal When a request is made by the user either using PowerShell or Azure portal. First, it will go to the Orchestrator, where it will fundamentally do three things: 1. Authenticate the User 2. It will Authorize the user, i.e., it will check whether the user is allowed to do the requested task. 3. It will look into the database for the availability of space based on the resources and pass the request to an appropriate Azure Fabric controller to execute the request. Combinations of racks form a cluster. We have multiple clusters within a data centre, and we can have multiple Data Centres within an Availability zone, multiple Availability zones within a Region, and multiple Regions within Geography. o Geographies: It is a discrete market, typically contains two or more regions, that preserves data residency and compliance boundaries. 89 CU IDOL SELF LEARNING MATERIAL (SLM)
o Azure regions: A region is a collection of data centres deployed within a defined perimeter and interconnected through a dedicated regional low-latency network. Azure covers more global regions than any other cloud provider, which offers the scalability needed to bring applications and users closer around the world. It is globally available in 50 regions around the world. Due to its availability over many regions, it helps in preserving data residency and offers comprehensive compliance and flexible options to the customers. 5.4 DIFFERENCE BETWEEN AZURE RESOURCE MANAGER (ARM) & CLASSIC PORTAL. This cloud platform from Microsoft has been around in the market for seven years and has made significant improvements during these years. One such improvement is the introduction of a new model called the Azure Resource Manager (ARM). With the announcement of this new deployment model, a range of questions and misconceptions came into light. It is common to hear questions like: Should I Choose ARM portal or Classic? Should I upgrade to ARM if I have deployed classic? What’s the difference between ARM and Classic? Etc. Figure 5.4 Microsoft Azure 90 CU IDOL SELF LEARNING MATERIAL (SLM)
All these queries are valid, and it is, of course, essential to understand the technology before deploying it. There are some stark variations between ARM and Azure classic or ASM portal, and during this web log, we've coated all the foremost ones that may assist you create associate knowing decision! Classic Azure Portal The underlying feature of this portal is that it's accustomed produce and tack resources that solely support resource manager. The network characteristics of the virtual machine are determined by a necessary cloud service that is a logical instrumentation for virtual machines. this suggests VM in classic Azure ought to be within a virtual instrumentation referred to as cloud service. This conjointly implies that one will have multiple VMs within one umbrella referred to as cloud service. However, all the VMs below one cloud service have single very important person to take care of the provision of the VMs and cargo levelling. moreover, cloud services during this model support virtual network however don't essentially enforce it. at the side of this, there are other characteristics of classic Azure, which are: • The API set utilized by ASM is XML driven REST API. • Security options like Network Security teams on VMs may be organized mistreatment Azure Power Shell. ARM Portal There is no dedicated support for cloud services, and to supply equivalent practicality, ARM offers many extra resource varieties. A user is going to be ready to produce and tack all resources inside it. ARM portal encompasses a logical instrumentation referred to as resource cluster, that makes all the Azure resource-related tasks simple and efficient. most significantly, deletion of resources is simple in ARM as compared to the classic portal. In addition, non-public portals may also be created by investment the on-premises knowledge centre. Besides these, there are another advantage of ARM, which are: • Unlike classic Azure, fine-grained access management with the assistance of RBAC is feasible in ARM on all the resources in a very resource cluster. 91 CU IDOL SELF LEARNING MATERIAL (SLM)
• Deployment mistreatment JSON-based templates is feasible on ARM • The resources on the ARM portal may be logically union in Azure subscription and may be labelled if needed. • Deletion of resources is additionally simple in ARM as compared to classic Azure because the resources are classified. • JSON templates may be created to tack the complete pattern. As of now, each mode is offered to users, and it's necessary to listen to the options that everyone offers. However, some functions are still gift within the previous portal, however Microsoft is quickly delivery new practicality in ARM. Figure 5.5 ARM Portal Having said all that, it is more likely that the classic model will become obsolete in the near future. So, if you are new to Azure, then it is a wise decision to deploy ARM and harness its advantages. Additionally, it is always cost-effective to outsource these kinds of business requirements as the outsourcing company has the entire infrastructure deployed to implement the model at different locations. 92 CU IDOL SELF LEARNING MATERIAL (SLM)
5.5 SUMMARY In this technology-driven world, businesses are solely focused on maximizing the effectiveness of shared resources rather than focusing on the products that differentiate their projects and offerings. In this pursuit, they consistently develop and deploy technologies that support their objectives and goals. Companies like Amazon have invested hugely in a computing infrastructure to decrease their costs and to maintain their expensive existing technology. With the emergence of more disruptive technologies, cloud computing became a possibility. Cloud computing is basically a model for enabling ubiquit ous, on- demand, convenient network access to a shared pool of configurable computing resources. And, Microsoft Azure is a cloud platform that provides services to developers to build, deploy, and manage business applications. It is a breakthrough service that is considered as both PaaS and SaaS offering. In fact, the services of Azure cloud include data storage, analytics, networking, hybrid integration, identity and access management, internet of things, DevOps, migration, etc. Microsoft Azure is a public cloud platform featuring powerful on-demand infrastructure and solutions for building and deploying applications workloads as well as a wide variety of IT and application services. You can use Azure as a public cloud provider and as a hybrid extension to existing on-premises infrastructure. Organizations that use Microsoft solutions on-premises are able to easily extend their infrastructure and operational processes to Azure. With the growing popularity of Azure, today’s systems administrators need to acquire and strengthen their skills on this fast-growing public cloud platform. In this chapter we explore the Azure public cloud platform with a focus on the Infrastructure-as-a- Service (IaaS) features. We cover general architectural features of the Azure clou d including geographic regions, availability zones, and Service Level Agreements (SLAs) attached to the core Azure IaaS infrastructure. Regions, Availability Zones, Availability Sets, and Uptime SLAs 93 CU IDOL SELF LEARNING MATERIAL (SLM)
5.6 KEY WORDS/ABBREVIATIONS Management groups: Logical containers that you use for one or more subscriptions. You can define a hierarchy of management groups, subscriptions, resource groups, and resources to efficiently manage access, policies, and compliance through inheritance Subscription: A logical container for your resources. Each Azure resource is associated with only one subscription. Creating a subscription is the first step in adopting Azure Azure account: the email address that you provide when you create an Azure subscription is the Azure account for the subscription. The party that’s associated with the email account is responsible for the monthly costs that are incurred by the resources in the subscription. When you create an Azure account, you provide contact information and billing details, like a credit card. You can use the same Azure account (email address) for multiple subscriptions. Each subscription is associated with only one Azure account Identity: A thing that can get authenticated. An identity can be a user with a username and password. Identities also include applications or other servers that might require authentication through secret keys or certificates. Azure AD account: an identity created through Azure AD or another Microsoft cloud service, such as Office 365. Identities are stored in Azure AD and accessible to your organization’s cloud service subscriptions. This account is also sometimes called a Work or school account. 5.7 LEARNING ACTIVITY 1. With respect to organization draw the comparative study on ARM and Classic Portal ___________________________________________________________________________ ___________________________________________________________________ ________ 2. Study the Azure Architecture of any healthcare organization. ___________________________________________________________________________ ___________________________________________________________________ ________ 94 CU IDOL SELF LEARNING MATERIAL (SLM)
5.8 UNIT END QUESTIONS (MCQ AND DESCRIPTIVE) A. Descriptive Questions 1. Explain Microsoft Azure with its benefits 2. Discuss the architecture of Microsoft Azure. 3. Explain the various features of Microsoft Azure. 4. Differentiate between Azure Resource Manager (ARM) & Classic Portal. B. Multiple Choice Questions 1. Which of the following standard does Azure use? a) REST b) XML c) HTML d) All of the mentioned 2. What does IPsec in the Azure platform refer to? a) Internet Protocol Security protocol suite b) Internet Standard c) Commodity servers d) All of the mentioned 3. Which of the following web applications can be deployed with Azure? a) ASP.NET b) PHP c) WCF d) All of the mentioned 4. A _________ role is a virtual machine instance running the Microsoft IIS Web server that can accept and respond to HTTP or HTTPS requests. a) Web b) Server c) Worker 95 CU IDOL SELF LEARNING MATERIAL (SLM)
d) Client 5. Which of the following element allows you to create and manage virtual machines that serve either in a Web role and a Worker role? a) Compute b) Application c) Storage d) None of the mentioned Answer 1. d 2. a 3. d 4. a 5. a 5.9 REFERENCES Buyya Rajkumar, Vecchiola Christian, ThamaraiSelvi S. (2013). Mastering Cloud Computing. New Delhi: Tata McGraw-Hill. Jayaswal K., Kallakuruchi J., Houde D.J., Shah D. (2014). Cloud Computing: Black Book. New Delhi: Dreamtech Press. Buyya Rajkumar, Broberg James, Goscinski A.M., Wile (Editors). (2011). Cloud Computing: Principles and Paradigm. New Jersey: John Willy & Sons Inc. Microsoft Documents: https://docs.microsoft.com/en-us/azure/ https://channel9.msdn.com/Azure \"Azure Machine Learning Studio\". Machine Learning. Retrieved August 27, 2020. Directory of Azure Cloud Services, Microsoft.com \"How to monitor Microsoft Azure VMs\". Datadog. Retrieved March 19, 2019. Vaughan-Nichols, Steven J. \"Microsoft developer reveals Linux is now more used on Azure than Windows Server\". ZDNet. Retrieved July 2, 2019. \"Meet Windows Azure event June 2012\". Weblogs.asp.net. June 7, 2012. Retrieved June 27, 2013. \"Web App Service - Microsoft Azure\". Microsoft. \"Mobile Engagement - Microsoft Azure\". azure.microsoft.com. Retrieved July 27, 2016. \"HockeyApp - Microsoft Azure\". azure.microsoft.com. Retrieved July 27, 2016. \"File Storage\". Microsoft. Retrieved January 7, 2017. 96 CU IDOL SELF LEARNING MATERIAL (SLM)
UNIT 6: MICROSOFT AZURE 2 Structure 6.0. Learning Objectives 6.1. Introduction 6.2. Azure –Configuration 6.3. Why use App Configuration? 6.4. Use App Configuration 6.5. Diagnostics 6.6. Monitoring and Deployment of web apps. 6.7. Summary 6.8. Key Words/Abbreviations 6.9. Learning Activity 6.10.Unit End Questions (MCQ and Descriptive) 6.11. References 6.0 LEARNING OBJECTIVES At the end of the unit learner will able to understand and have knowledge of following aspects of Azure Configuration: Learning of Configuration of Azure Diagnostics feature of Azure Monitoring and Development services by Azure 6.1 INTRODUCTION Cloud environments offer a web portal expertise, creating it straightforward for users to manage cypher, storage, network, and application resources. as an example, within the Azure portal, a user will produce a virtual machine (VM) configuration specifying the following: the VM size (with reference to computer hardware, RAM, and native disks), the software, any pre-deployed package, the network configuration, and also the location of the VM. The user then will deploy the VM supported that configuration and among a number of minutes access the deployed VM. This fast readying compares favorably with the previous mechanism for deploying a physical machine, that might take weeks only for the acquisition 97 CU IDOL SELF LEARNING MATERIAL (SLM)
cycle. additionally, to the general public cloud simply delineated, there are non-public and hybrid clouds. in an exceedingly non-public cloud, you produce a cloud setting in your own datacenter and supply self-service access to cypher resources to users in your organization. This offers a simulation of a public cloud to your users; however, you stay fully liable for the acquisition and maintenance of the hardware and package services you offer. A hybrid cloud integrates public and personal clouds, permitting you to host workloads within the most acceptable location. as an example, you'll host a high-scale web site within the public cloud and link it to an extremely secure information hosted in your non-public cloud (or on- premises datacenter). Microsoft provides support for public, private, and hybrid clouds. Microsoft Azure, the main target of this book, may be a public cloud. Microsoft Azure Stack is associate add-on to Windows Server 2016 that permits you to deploy several core Azure services in your own datacenter and provides a self-service portal expertise to your users. you'll integrate these into a hybrid cloud through the utilization of a virtual non-public network. 6.2 AZURE -CONFIGURATION Azure App Configuration provides a service to centrally manage application settings and feature flags. Modern programs, especially programs running in a cloud, generally have many components that are distributed in nature. Spreading configuration settings across these components can lead to hard-to-troubleshoot errors during an application deployment. Use App Configuration to store all the settings for your application and secure their accesses in one place. 6.3 WHY USE APP CONFIGURATION? Cloud-based applications typically run on multiple virtual machines or containers in multiple regions and use multiple external services. making a strong and climbable application in an exceedingly distributed atmosphere presents a major challenge. Various programming methodologies facilitate developers modify the increasing quality of building applications. for instance, the Twelve-Factor App describes several well-tested fine arts patterns and best practices to be used with cloud applications. One key recommendation from this guide is to separate configuration 98 CU IDOL SELF LEARNING MATERIAL (SLM)
from code. AN application’s configuration settings ought to be unbroken external to its practicable and browse in from its runtime atmosphere or AN external supply. While any application will build use of App Configuration, the subsequent examples square measure the categories of application that have the benefit of the employment of it: Microservices supported Azure Kubernetes Service, Azure Service material, or different pack apps deployed in one or additional geographies Serverless apps, that embrace Azure Functions or different event-driven homeless calculate apps Continuous preparation pipeline App Configuration offers the subsequent benefits: An absolutely managed service that may be got wind of in minutes Flexible key representations and mappings Tagging with labels Point-in-time replay of settings Dedicated UI for feature flag management Comparison of 2 sets of configurations on custom-defined dimensions Enhanced security through Azure-managed identities Encryption of sensitive info at rest and in transit Native integration with well-liked frameworks App Configuration enhances Azure Key Vault, that is employed to store application secrets. App Configuration makes it easier to implement the subsequent scenarios: Centralize management and distribution of stratified configuration knowledge for various environments and geographies 99 CU IDOL SELF LEARNING MATERIAL (SLM)
Search
Read the Text Version
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
- 90
- 91
- 92
- 93
- 94
- 95
- 96
- 97
- 98
- 99
- 100
- 101
- 102
- 103
- 104
- 105
- 106
- 107
- 108
- 109
- 110
- 111
- 112
- 113
- 114
- 115
- 116
- 117
- 118
- 119
- 120
- 121
- 122
- 123
- 124
- 125
- 126
- 127
- 128
- 129
- 130
- 131
- 132
- 133
- 134
- 135
- 136
- 137
- 138
- 139
- 140
- 141
- 142
- 143
- 144
- 145
- 146
- 147
- 148
- 149
- 150
- 151
- 152
- 153
- 154
- 155
- 156
- 157
- 158
- 159
- 160
- 161
- 162
- 163
- 164
- 165
- 166
- 167
- 168
- 169
- 170
- 171
- 172
- 173
- 174
- 175
- 176
- 177
- 178
- 179
- 180
- 181
- 182
- 183
- 184
- 185
- 186
- 187
- 188
- 189
- 190
- 191
- 192
- 193
- 194
- 195
- 196
- 197
- 198
- 199
- 200
- 201
- 202
- 203
- 204
- 205
- 206
