The cloud is the new norm for organisations of all sizes. In this session you will learn how to create an entire Microsoft Enterprise environment in AWS that includes AWS Active Directory Service, Simple System Management (SSM) service, MS Exchange and SharePoint.
James Saull, Principal Solutions Architect, Amazon Web Services, EMEA
2. Agenda
Reasons customers are running Microsoft on AWS
What Microsoft workloads run on AWS
Developing .NET / PSH on AWS
Licensing
Publishing your Microsoft stacks in AWS Service Catalog
https://aws.amazon.com/windows/
4. Why run Microsoft workloads on AWS
Building and managing cloud since 2006
12 regions, 33 availability zones, 54 edge locations
Thousands of partners; 2,500+ Marketplace products
Security & Reliability
Performance
Experience
Scale
Ecosystem
Extensive VM and network performance options
Security in layers approach and 99.95% application SLA
5. Security
A few of our many certifications:
Secured premises
Secured access
Built-in firewalls
Unique users
Multi-factor authentication
Private subnets
Encrypted data storage
Dedicated connection
https://aws.amazon.com/compliance/https://aws.amazon.com/security/
6. Reliability
Easily build highly available applications
ELB distributes load (ideal for SharePoint)
Auto Scaling for availability and scalability
Use multiple Availability Zones (AZs)
7. High Performance
High performance instances (X1) and HPC solutions
https://aws.amazon.com/hpc/
Automated instance scaling (EC2 Auto Scaling)
Dedicated low-latency network (AWS Direct Connect)
Ensure storage performance (AWS EBS Provisioned IOPS)
9. Every imaginable use case
Collaboration
Full/Partial Franchise Migration
Web / Mobile / Media
Mail
ERP
VDI
BI
https://aws.amazon.com/windows/case-studies/
10. Information Security
Corporate Applications End User ComputingBusiness Applications
Amazon EC2 Windows,
Amazon RDS,
AWS CloudFormation,
AWS CloudFront
Amazon EC2 Windows,
AWS Directory Service,
Amazon RDS,
AWS Marketplace
Amazon WorkSpaces,
Amazon AppStream, AWS
Marketplace,
AWS Mobile Services, SaaS
AWS Identity and Access Management
(IAM), AWS CloudHSM, AWS Key
Management Service, Security
Groups, AWS Marketplace
Amazon EC2, Amazon S3, Amazon RDS,
Amazon VPC, Amazon Direct Connect,
Directory Service, AWS IAM,
AWS Service Catalog
Infrastructure
AWS service offerings for Microsoft workloads
AWS Elastic Beanstalk,
AWS CodeDeploy,
AWS CloudFormation
DevOps
12. Corporate Apps in AWS
Deploy highly available applications
BYOL or pay per use
Security in layers approach helps with
compliance
Leverage multi-AZ architectures for
reliability & availability
22. AWS SDK and Tools for .NET ArchitectureEXECUTION
PLATFORM
AWSSDK
LOW-
LEVEL
SERVICE
APIS
AWS
TOOLS
HIGHER-
LEVEL
UTILITY
APIS
.NET 3.5 .NET 4.5 PHONE STORE
SERVICE CLIENTS
AMAZON S3
TRANSFERUTILITY
AMAZON
DYNAMODB OBJECT
PERSISTANCE
VM IMPORT RESOURCE API
AWS TOOLS FOR
WINDOWS
POWERSHELL
AWS TOOLKIT FOR
VISUAL STUDIO
ASP.NET SESSION
PROVIDER
TRACE LISTENER
…
AWS ENDPOINTS: REST API
https://aws.amazon.com/visualstudio/
23. AWS Toolkit for Visual Studio
Full Integration in Visual Studio
24. Blob Storage in Amazon S3
var bucketName = "<BucketName>";
var fileName = "<FileName>";
var s3Client = new Amazon.S3.AmazonS3Client();
// Write Data to Amazon S3
s3Client.PutObject(new Amazon.S3.Model.PutObjectRequest {
BucketName = bucketName,
Key = fileName,
InputStream = fileStream
});
// Read Data from Amazon S3
var s3Object = s3Client.GetObject(bucketName, fileName);
Amazon S3
25. Loose Coupling Sets You Free
var queueUrl = "https://sqs.<region>.amazonaws.com/<AcctNum>/<QueueName>";
var sqsClient = new Amazon.SQS.AmazonSQSClient();
// Send to Amazon SQS
sqsClient.SendMessage(queueUrl, "My Message Data");
// Process Amazon SQS
while(!exit) {
var messages = sqsClient.ReceiveMessage(queueUrl);
foreach(var message in messages.Messages) {
// Process message then delete
sqsClient.DeleteMessage(queueUrl, message.ReceiptHandle);
}
}
Amazon SQS
26. AWS Also Provides Extended Support
AWS Elastic Beanstalk
• Deploy from within Visual Studio / Automatic Log Rotation to Amazon S3
AWS CodeCommit / CodePipeline / CodeDeploy
• Manage a large (on-premises and cloud-based) fleet
.NET SDK and PowerShell CmdLets
• Get-Command -Module AWSPowerShell | Measure-Object -Line
• 1821
AWS is the de-facto standard
• Jenkins, Bamboo have native integration to AWS
• Other IDE Support AWS (Unity, Xamarin Studio, Eclipse…)
28. Microsoft licensing options
Flexibility helps you optimize costs
Buy licenses from
AWS
• AWS manages
licensing
• Pay as you go
pricing
• Multi-tenant or
Dedicated
• No need for
Software Assurance
• Unlimited CALs
Bring your own
licenses (BYOL)
• Save money on
software licensing
• You manage
licensing costs and
compliance with
your ISV
• No need for
Software Assurance
Leverage License
Mobility
• AWS manages
Windows Server
licensing
• You manage
licensing costs and
compliance with
your ISV
• Uses Software
Assurance
29. BYOL using Dedicated Hosts
License compliance and portability
Host ID = h-123abc
Sockets = 2
Physical Cores = 20
• Maintain license compliance
• Granular resource and placement controls
• Visibility into physical resources
• Physical core and socket counts
• Capacity utilization
• Instance location
• Now supports reservations for discounted
pricing
https://aws.amazon.com/ec2/dedicated-hosts/
31. Supportability on AWS
Microsoft workloads are supported on AWS. Amazon Web Services fully
supports Microsoft Windows Server as both infrastructure and a platform.
Our customers have successfully deployed in the AWS cloud virtually every
Microsoft application available, including Microsoft Exchange, SharePoint,
Lync, Dynamics, and Remote Desktop Services.
If you have support related issues you should contact AWS Support.
33. What is AWS Service Catalog?
AWS Service Catalog allows organizations to create and manage
catalogs of IT services. It enables users to quickly deploy the approved
IT services they need in a self-service manner.
Organizations Developers
Control
Standardization
Governance
Agility
Self-service
Time to market
34. Why should I use AWS Service Catalog?
Self-service
• Increase agility with access to services
• Improve employee satisfaction
Promote standardization
• Share best practices
• Compliance with business goals and policies
Control provisioning of AWS resources
• Tag at provisioning
• Restrict user permissions
35. IT Product Lifecycle Management in AWS
CloudFormation
template
Admin
Define
AWS Service Catalog
Publish
CloudFormation
stack
Users
Browse and Launch
AWS CloudTrail Amazon S3
Monitors
Logs all API calls
AWS CloudWatchalarm
Monitors
Initiates
Notifies
AWS Config
Track changesNotifies
Changes
Provisions
Procure
Package