Tag Archives: cloud

Enterprise Mobility Suite in Open Licensing

Single-Sign-On (SSO) is one of the crucial concerns engineers have when moving in to cloud. This is critical when it comes to hybrid-cloud model. It needs to integrate “already setup” infrastructure with various SaaS applications and IaaS. Users also may connect from different locations as well as via different devices. Microsoft already have Azure AD which give opportunity bring identity management capabilities in to the azure cloud.  The Enterprise Mobility Suite (EMS) is designed to help organizations meet complex IT challenges by providing a people-centric IT solution that gives users access to corporate resources from the devices of their choice, while making it easier for IT administrators to securely manage devices, data, and applications across platforms.

EMS is a collection of 3 Azure individual offerings brought together in a single SKU namely; Microsoft Intune, Azure Active Directory Premium and Azure Rights Management Services. EMS provides a significant discount over these individual products and is a comprehensive cloud solution that provides hybrid identity and access management, Device and Application management and rights protection. This solution is targeted at hybrid cloud customers and O365 users.

Following slide show the main 3 characteristics of EMS.

ems1

You can get more details about each feature by watching fallowing videos.

Hybrid Identity Management Demo

Mobile Device Management Demo

Information Protection Demo

Why Microsoft?

ems2

The Enterprise Mobility Suite simplifies the procurement process—all you need is one vendor, one contract, and one SKU.

By contrast competitive offerings require customers to stich together a patchwork of products from multiple vendors.  This generally a more expensive approach, a more complex acquisition with different licensing models, and often involves using products with overlapping and incompatible capabilities.

Offering Enterprise Mobility Suite (EMS) through Open programs will enable sales of additional Microsoft Cloud services through Distributors and their Reseller channels, targeting small and medium businesses (25-250 PCs.)

Starting March 1, 2015 Enterprise Mobility Suite Full user license will be available in the Volume Licensing Updated Open Programs, Open License, Open Value, and Open Value Subscription. This offer is for customers wishing to purchase the Enterprise Mobility Suite without requiring an underlying Core CAL or Enterprise CAL.

Where to Start?

You can get more details about EMS using http://www.microsoft.com/en-us/server-cloud/enterprise-mobility/Overview.aspx

You can get pricing from http://www.microsoft.com/en-us/server-cloud/enterprise-mobility/pricing.aspx

You can find some great articles on http://blogs.technet.com/b/em/

Microsoft Azure – Bringing Cloud to your Enterprise

azure1

Cloud!! Cloud!!! Cloud!!! Everywhere!! Public-cloud, private-cloud, hybrid-cloud are the most common words you hear in IT these days. There are mainly two types of organizations in cloud service business. One type provide tools, techniques to build your own cloud or help organizations to become cloud service providers. Others bring their own products or services to the cloud and then let customers to use it from there. Microsoft stand strong in cloud because it do both of above.

Microsoft Azure”, I am sure everyone in IT heard about this already, this post is not just about azure but it’s about why your enterprise should move in to “Azure – The Cloud”.

There are mainly 3 facts people consider when moving in to public cloud.

Speed – if you going to put a new server in to your organization how many days, steps it will take? You need to search for model, check stock, arrange shipments, custom clearance, rack mount and install software etc. so we talking about days to weeks. But in a cloud it is matter of seconds to get a server instance or service up and running. Time is crucial for any business, for ex- if you running software firm and if your developers need to wait a week to get new server setup for testing purposes of an application definitely it affect the project delivery time.

Scale – Cloud will give you almost infinite computing resources. So you can easily increases or decreases the allocated resources for your application or services according to the business requirements. If it’s in datacenter environment you may need to involve with lengthy migrate cycles, downtimes to match resources with application needs.

Economics – If you leased a rack in datacenter if you used it fully or not you need to pay for it, power and bandwidth also same, use or not you need to pay. But in cloud you pay only for the things you “used”

But NOT YET???

Even organizations urge to move to cloud there are few facts which holding them back by making the move.

If it’s not a new business, organizations already spent $$$$ building their current infrastructure. It may include data center facilities, servers, software licenses, man hours etc. so can it just through away? Because of this reason most of organizations are end up with hybrid-cloud setup. According to latest IDC findings 40% of enterprises already adopting to hybrid-cloud. but question is even go for hybrid-cloud how easily services and resources can integrate together with minimal impact.

One of another concern is the complexity of IT needs. Your organization may be running with lot of different frame works, software services, development languages, tools etc. so before move into cloud it is important to make sure the cloud you choose can handle this complex requirements.

Security, it’s not only about the company data security in the cloud, if organizations bringing their application or services to the cloud they need to make sure its customers can trust the security in place. 

Why Microsoft Azure?

Microsoft Azure already addressed these 3 main concerns. Let’s dig deep to see how they did it.

azure2

On-premises AND Cloud: We believe in a world where you’re integrating public cloud with your on-premises infrastructure, and using each where it makes sense, in conjunction with each other. Think and, not or. It’s not an on-premises OR cloud proposition – it’s an AND proposition. And when they say integration, they mean true integration – across infrastructure, apps, identity, and databases. This is what we call hybrid.

Microsoft is the only company which has the necessary assets across virtualization, identity, data platform , development and management to provide a consistent experiences across on-premises, our cloud and 3rd party service providers. This vision and strategy – called “Cloud OS” – is what Microsoft aim to deliver for our customers. If you choose look at other Cloud vendors that provide public OR private cloud offerings (Amazon, VMware, or Google), you have to cobble together disparate offerings and you will not get a seamless experience.

azure3

Open, Broad and flexible: Microsoft realize that you’ll want to run a variety of workloads in the cloud. In Windows Azure, we will of course provide first and best experience and support for Microsoft workloads, but at the same time we have embraced other open technologies so you get a cloud experience that satisfies your heterogeneous needs.

In enterprises, Java and .NET are still most used, but developers are also using PHP, Python and other languages in addition. Windows Azure supports all these languages and more. 

Windows Azure provides out-of-the box experience for open frameworks like Hadoop, web frameworks like WordPress, Joomla and Drupal. Microsoft also provide first party SDKs for developing apps using Android, IOS or Windows phones.

Microsoft not only support, but have embraced open technologies.

Microsoft also provide a broad set of services that provide you a good choice. In addition to the breadth of the platform, it’s important to note that using Windows Azure is not an all or nothing proposition. You can use most services independently of each other. For example, you can just use storage without compute or use DB without using storage. What you want to use and how you want to use is really YOUR choice.

azure4

Microsoft believe in Trust through Transparency. Microsoft are transparent in the following ways:
1.    Microsoft participate in industry standards like ISO 27001, SSAE16 and Cloud Security Alliance.
2.    Microsoft undertake yearly audits with independent 3rd parties
3.    Microsoft provide a rich set of financially backed monthly SLAs (this differentiates us from other cloud providers like AMZN whose SLAs are fewer and annual). Monthly SLAs are more stringent with less room for error than yealy SLAs
4.    All of Microsoft’s regulatory compliance and privacy policies are clearly explained in the online portal called Trust Center
5.    Microsoft provide real time status of all the services via a Service Dashboard. We provide Root Cause Analyses in case of issues.

azure5

With Microsoft and Windows Azure, you’re relying on you existing relationship and account team to procure and get support.
1.    Azure can be a part of you existing Enterprise Agreement you have in place with Microsoft. This way, you don’t have to negotiate and sign up for yet another agreement with another vendor.
2.    Microsoft support Azure and other Microsoft software that you use just the same way. When you run Microsoft workloads on other cloud platforms, you might not get the same level of support. You’ll be relying on a single point of support for you infrastructure and software with Microsoft and Windows Azure
3.    Microsoft have an Azure practice in MCS, and continue to be your trusted advisors as you start your journey with the Cloud.

azure6

Windows Azure is not Microsoft’s first foray into Cloud Computing. Microsoft have been doing this for more than two decades, and have the deepest experience in the industry.

Microsoft’s first datacenter was in 1989. Since then, Microsoft have run some of the largest global services securely and efficiently – Bing, Office 365 and Hotmail just to name a few.

Today, Microsoft run over 200+ global services 24×7 and here are some stats to show you how large scale and global our operations are.

Windows Azure is operated in the same manner by the same teams as some of these other global services. You can rest assure that security and operational efficiency is at our core.

Huge Infrastructure

azure7

Over the last few years Microsoft truly delivered a huge infrastructure to enable us to grow services at scale around the globe.  Whether it’s Microsoft flagship facilities in Quincy, Washington or Boydton, Virginia, or some of the newly announced facilities in Shanghai, Australia and Brazil, it really is key for Microsoft to make smart investments around the world to deliver services in a resilient and reliable fashion.

A lot of people ask, what goes into site selection at Microsoft and how do Microsoft decide where to place our datacenter investments?  There are over thirty-five factors in Microsoft site selection criteria.  But really, the top elements are around proximity to customers and energy and fiber infrastructure, insuring that Microsoft have the capacity and the growth platforms to be able to grow Microsoft’s services.

Another key element is about skilled workforce.  Microsoft have the right people to run and operate datacenters on a day to day basis.

We can categorize azure cloud building blocks in to 2 classes

azure8

Infrastructure services which are lower level building blocks
Data services that provide storage and data management capabilities to apps, and
App services which provide different capabilities to rapidly develop apps, scale and run apps at a global scale.

How to Start?

Azure provides 1 month free trial to start with and you can sign up using http://azure.microsoft.com/en-us/pricing/free-trial/

If you looking for pricing you can use this great tool http://azure.microsoft.com/en-us/pricing/calculator/

See ya in the cloud!!!

Note – This article is dedicated for Joel Langford from MVP Award Program – Canada, A nice, talented guy. He passed away on 3rd June 2015. Just two days ago he suggested to write an article about this topic for mvp blog. My prayers with him and his family! Rest in peace mate!

Active Directory in Hybrid Cloud

Cloud”, the most common term now in IT, its everywhere . Companies which provides IT services bringing their products and services in to the cloud rapidly. “Hosting services” was the first industry affect with it and now its spread to even small companies, individual professionals. With introduce of everyday products like Microsoft office365 every one start to understand the benefits of the “cloud”. Some organizations are use their own private cloud while some are completely move in to public cloud services.

One of the main concern people had about cloud was how they can bring there infrastructure services, resources, applications without impact to productivity. For example most organizations uses Single-Sign-On (SSO) to reduce the complexity of the authentication and authorization process. After we move organization’s resources, products, services to cloud if SSO do not work it still preventing full benefits of the cloud in end user prospective. The same time it will make impact on productivity directly. This access control and authentication concerns are more applying in to “Hybrid Cloud” systems. In Hybrid cloud some resources, services, application will run on-premises and some will be run from public cloud or private cloud setup in data center. This is the most commonly used cloud model in industry.

One of the solution used to address this is federation services. But issue is not every application or products uses same standards, protocols for identity management. As we know most of available products supports integration with AD services. Even Microsoft gives relevant tools, techniques to succeed with SSO on application development. So if you have working infrastructure system with all company requirement, how you convince management to move in to cloud system which will needs to deal with identity and access issues?

Well, Microsoft has found the solution for this. “Microsoft cloud – Azure” and windows server 2012 allows to extend the active directory in to the cloud. It allows to use claim based authorization. We can use windows azure AD as the identity store for the hybrid cloud and easily integrate other systems such as web portals, email system, crm, non-Microsoft apps. Also it can sync with the on-premises windows server active directory using “DirSync (Windows Azure Active Directory Sync Agent)” with AD FS (Active Directory Federation Services).

clip_image001_1E3725C4

In next posts let’s see how we can configure Azure AD and how it works with integration. If you have any question about post feel free to contact me on rebeladm@live.com

Image Source: http://blogs.technet.com/cfs-file.ashx/__key/communityserver-blogs-components-weblogfiles/00-00-00-98-54-metablogapi/clip_5F00_image001_5F00_1E3725C4.png