Heterogeneous datacenter interop solutions Reducing Complexity in Heterogeneous

Heterogeneous datacenter & interop solutions: Reducing Complexity in Heterogeneous Data Centers Using Microsoft Interoperability Solutions Name: Aaron Holzer Title: Senior Product Mgr Company: Microsoft Corp. Session Code: MGT 219

What We Hear from Business Leaders reduce the cost “Help us of running mixed IT environments” “Help us protect our investments in legacy systems” realize more business value “Help us from our IT systems and the information they hold” freedom of choice “Give us in making vendor and technology selections” 3

Lack of Interoperability Slows Business to a Crawl When systems don’t interoperate, people, processes and information are disconnected. People Lack of interoperability Processes Information Costly Inefficient Limiting

Standards One Important Way to Achieve Interoperability Microsoft’s Multifaceted Approach Working with over 150 standard organizations yearly Providing native ODF, PDF, XPS support in Office 2007 SP 2 in addition to Open XML (ISO/IEC 29500) Ensuring broad, comprehensive support for Web Service standards and promoting compatibility testing Collaborating with IBM, EMC on Content Management Interoperability Services (CMIS) specification “By increasing the openness of our products and participating actively in the development and maintenance of document format standards, we believe we can help create opportunities for developers and competitors, including members of the open source communities, to innovate and deliver new value for customers. ” Chris Capossela, Senior Vice President, Microsoft Business Division 5

Microsoft’s Multifaceted Approach to Interoperability. Resolving real-world customer challenges Ongoing customer dialog Interoperability Executive Customer Council “Microsoft has already solved a number of the interoperability problems and challenges that we have in our day-to-day operations. ” General Ulrich Wolfe, NATO IEC Council Member Organization Customer Input and Feedback

Interoperability Executive Customer Council Participants 40 CIOs and CTOs from public and private sectors Members include NATO, European Commission, Goldman Sachs, Boeing, Pw. C, Raytheon, American Express, Bank of America, Aetna, Fraunhoffer Microsoft sponsors: Craig Mundie, Brad Smith, Bob Muglia Goals Identify customers’ major interoperability challenges Improve interoperability between Microsoft’s and other vendors’ products Identify areas for Microsoft to partner with the industry to resolve interoperability issues Progress Almost 60% of issues identified through year 2 have been addressed 7

IEC Council Workstreams Office, Collaboration Ensure that productivity tools can exchange documents/data and enable true collaboration and document management across systems Executive Sponsor: Kurt Delbene, Sr. VP, Office Business Platform Systems Management Enable end-to-end, cross-platform systems management to help increase efficiency and control, and to reduce problem-resolution time Executive Sponsor: Brad Anderson, GM, Systems Management Security, Identity Management Manage security settings and user identities to facilitate authorization and authentication services for access of systems’ resources Executive Sponsor: Joe Long, GM, Identity and Access Management Developer Tools, Runtime Facilitate application development and runtime infrastructure across platforms and systems Executive Sponsor: S. Somasegar, Sr. VP, Developer Division Business Process Modeling, SOA Facilitate design, development and management of business processes to run across multiple platforms and systems Executive Sponsor: Robert Wahbe, Corp, VP, Connected Systems Division Policy 8 Guide Microsoft in its approach to Interoperability and related initiatives as well as inform Microsoft’s public policy positions for interoperability, intellectual property, privacy and security Executive Sponsor: Craig Shank, GM, Interoperability and Standards

Interoperability Vendor Alliance Working Together Toward Interoperable Solutions 60+ members Community of software, hardware vendors working together to enhance interoperability with Microsoft systems on behalf of mutual customers Membership doubled since 2006 formation Strategies Identify most pressing interoperability challenges faced by customers Use labs to test solutions for issues raised by customers System Management Centralized Directory Federated Identity Content Management Open XML Publish results on IVA web site as practical guidance http: //www. interopvendoralliance. org 9

Customer Interoperability Challenges Managing Heterogeneous Environments Enabling Applications that Work Together Connecting People and Information

Bridging the Divide November 2, 2006 Microsoft and Novell announced landmark collaboration agreement Targeting solutions for customers with Windows and Linux Delivering unprecedented customer value Interoperability via technology cooperation agreement (TCA) • Virtualization • Standards-based systems management • Directory and identity federation • Document format compatibility • Accessible computing • Moonlight (Silverlight browser plug-in) IP Assurance via patent cooperation agreement Microsoft providing SUSE Linux Enterprise Server subscription certificates Joint sales, marketing, support programs; Interoperability LAB

“Microsoft and Novell’s agreement gives us the benefit of choice of platforms and tremendous flexibility that will help make our company more competitive and efficient. ” Clemens Jochum, Chief Technology Officer, Deutsche Bank AG 12

interoperable virtualization

Heterogeneous Virtualization SUSE Linux Enterprise Server is enlightened to run on Microsoft Hyper-V through Linux Integration Components

The Perfect Linux Guest: SUSE Linux Enterprise Server The ideal Linux guest completes your virtualization strategy Optimized for Hyper-V VM Guest SUSE Linux Enterprise Server Runs fully enlightened with Linux Integration Components Tested in Joint Interop Lab Most attractive VM guest pricing Integrated with System Center management (1 H 2009) Fully supported by Novell and Microsoft Windows Server 2008 Standard Windows Server Hyper-V Windows Datacenter Server Enterprise Key Criteria: Performance Manageability & Support Interoperability

Microsoft Contributes Linux Device Driver to Linux Community Microsoft has contributed in excess of 20, 000 lines of device driver code to the Linux Community thru a GPLv 2 license The code will be incorporated into the next available Linux kernel (likely early 2010) The code will be made available thru the Linux Driver Project http: //www. linuxdriverproject. org/twiki/bin/view The code enables Linux guest operating systems to run more efficiently on Microsoft Hyper-V Demonstrates Microsoft’s commitment to Interoperability!

Linux Integration Components Additional capabilities requiring Integration Component support being evaluated SMP support Orderly ‘Shutdown’ support Clock time skew Others. . . Planning underway with Novell support Schedule being developed

Cross Platform Migration Novell Plate. Spin

Virtualization workload migration challenges Managing virtualization migrations can be challenging: Microsoft System Center Virtual Machine Manager can help customers migrate most commonly used versions of Windows Server from physical to virtual (P 2 V) and virtual to virtual (V 2 V) environments Operating System P 2 V Online P 2 V Offline Windows Server 2008 with Hyper-V installed No No Windows Server 2008 without Hyper-V installed Yes Windows Server 2003 with SP 1 Yes Windows Server 2003 X 64 Edition Yes Windows 2000 with SP 4 No Yes Windows XP with SP 2 Yes Windows XP x 64 Edition Yes Yes Windows Vista x 64 Yes

For legacy versions of Microsoft Windows operating systems, as well as for most Linux distributions, Microsoft recommends the use of Novell Plate. Spin Recon • Virtualization planning and capacity management Plate. Spin Migrate • Anywhere-to-anywhere workload migration and relocation

interoperable systems mgmt & monitoring

Heterogeneous Data Center Management Challenges Heterogeneous data centers often require separate tools for management and monitoring: Each tool may require unique IT skills Using multiple monitoring tools can increase security risk and potential system failure Interrupted services or failed servers take hours for IT managers to locate, diagnose, and fix Inefficient management tools prevent IT staff from focusing on mission-critical business tasks

End to End Monitoring Managing Mixed Server Environments Availability, performance, and configuration monitoring to proactively address IT issues Monitor multiple platforms (e. g. Windows, Linux, and UNIX) for both your physical and virtual servers Proactively keep systems up and running with best-practice knowledge on how to resolve problems Allow configuration change monitoring by identifying configuration errors and changes Diagram data center operations and visualize status Report on status of configuration and system issues affecting availability, performance, and reliability Deep application and service-level monitoring Monitor service levels across applications and IT processes through operational IT service views Track and report service levels through dashboards Extend to monitor non-Microsoft applications with partners Guidance and best practice services to meet service-level goals and improve IT productivity 23

SUSE Linux Enterprise Server Mgmt Pack for Ops Mgr 2007 R 2 • Extends the powerful capabilities of Microsoft System Center to heterogeneous environments • Enables System Center to be the single, end-to-end platform for managing desktops, servers, and devices in both physical and virtual environments • Monitors and manages seven common services used by most businesses running Linux servers System Center Operations Manager 2007 R 2 Update Cross Platform Ext. SLES Management Pack Health and Performance Monitoring of Windows Servers Health and Performance Monitoring of Linux Servers: CPU, Disk, Network Health & Performance Monitoring of Linux Services:

SUSE Linux Enterprise Management Pack for Ops Manager 2007 R 2 Extends the powerful capabilities of Microsoft System Center to heterogeneous environments Enables System Center to be the single, end-to-end platform for managing desktops, servers, and devices in both physical and virtual environments. Monitors and manages seven common services used by most businesses running Linux servers. Integrates with Novell Support Advisor, an automated self -help tool used to support and diagnose SUSE Linux Enterprise Server, Open Enterprise Server (Linux) and associated products

The Novell Solution Delivers monitoring and management of several common Linux services Most businesses running Linux will be running some or all of these services on their Linux servers Packaged as singular RPM to be installed as an add-on product Can be distributed in the form of add-on CD, physical or ISO image Leverage DMTF CIM and Open. WS-man Standards Process to continue to align to Open Source strategy Open. Pegasus Project Providers to OMC project (www. omc-project. org)

Services Monitored by Novell MP Service Description Core Capabilities BIND/DNS BIND (Berkeley Internet Name Domain ) is the defacto standard for DNS on UNIX-like systems • Monitor named daemon • Start/stop/restart • List of allocated DNS names DHCP Server DHCP (Dynamic Host Configuration Protocol) is used to allocation configuration and IP addressing to clients in a network • Monitor named daemon • Start/stop/restart • List of allocated DHCP addresses SAMBA Delivers Microsoft-based file and print services to UNIX-like systems • Monitor smbd/nmbd/winbind daemons • Start/stop/restart • List of Samba shares NFS server Originally developed by Sun Microsystems, allows users to access files across a network • Monitor nfsd daemon • Start/stop/restart • List of connections to NFS mount LDAP server (Open. LDAP) An open source implementation of the Lightweight Directory Access Protocol (LDAP) • Monitor LDAP daemon • Start/stop/restart Print server (CUPS) CUPS (Common Unix Printing System) enables UNIX-like systems to act as a print server • Monitor cupsd daemon • Start/stop/restart Firewall (Su. SEfirewall 2) Firewall software for SUSE Linux distributions • Monitor Su. SEfirewall 2 daemon • Start/stop/restart

Novell MP Architecture Uses a Python library for making CIM operations over HTTP using the WBEM CIM-XML protocol Allows provider to be implemented using the Python scripting language Ops. Mgr Svc. Mgr WS-Man CIMOM CMPI Python Interface Novell MP Providers OS Resources

Management Pack Hierarchy Microsoft. Unix. Library Microsoft. Linux. SUSE. Library Microsoft. Linux. SLES. 10 Library Management Pack • Unix Object Definitions • Data Sources (WSMan/SSH/SFTP) • Probe Actions (WSMan/SSH/SFTP) • Write Actions (WSMan/SSH/SFTP) Generic Monitors • Linux Object Definitions • Generic Tasks • SUSE Linux Object Definitions • SLES 10 Object Definitions • Monitors • Rules • Diagnostics/Recoveries • Reports

DNS Service

Samba Service Health

DHCP Service Performance

identity federation

Enhance Security Capabilities Share identity information with other systems through Active Directory Federation Services, WS-Federation Provide claims-based user access with Geneva, SAML 2. 0 Centralize authentication, authorization across diverse systems Synchronize identity information across systems, applications 34

Federated Identity Simplifies sharing of digital identities, policies across organizational boundaries What is Federation? Trust agreements between disparate security realms Credentials, user attributes managed in “home realm” by partner organization’s Directory Active Directory Federation Services Standards-based approach to federated identity Local Network Business Partners Cross Organization Relationship Trust – Keys Security – Claims required Privacy – Claims allowed Audit – Identities, authorities 35 Web protocols for exchanging data Partner Value Add Novell enables centralized, single sign-on authentication, authorization and roles from external LDAP directories

Federated Identity Company Business Partner Provide Access Single Logon Credentials for all Business Partner Web Application Trust Established Novell Access Manager Active Directory Federation Services

Comparing AD FS, Card. Space, WCF with Geneva AD FS 1. 1 Card. Space 1. 0 WCF Passive browser federation WS-* protocols Self-issued information cards Federated Share. Point Federated rights management 37 “Geneva” Adds “Geneva” Framework “Geneva” Server Card. Space “Geneva” End to end claims support Pre-built ASP. NET controls Federate Office documents SAML 2. 0 protocol support Native SSO Active client federation Automated trust management Managed information cards Streamlined client UI

Federated Identity Management 1 Authenticate y Identity Store Access Manager 3. 1 e at r de 3 ss e cc Firefox 4 Enterprise Policy Fe 2 S LE S IE A Leverages WS-Federation to provide single sign-on for users in separate directories. Provides secure and simple way to federate identities from any LDAP directory into Microsoft AD -based web service (eg. Share. Point) Available now with Access Manager 3. 1 and Active Directory Federation Services e. DIR Vista Linux Environment tif Enable cross-directory federated authorization and access control for web applications Authenticate using Card. Space or Digital. Me open source identity selector Id en Microsoft Share. Point Active Directory Federation Services Identity Store A/D Windows Environment

Federated Identity Management

Federated Identity Management

the rest of the story. . .

Document Format Compatibility Open Document Format Open XML Format Open standard file format for office applications that can be freely implemented by multiple applications on multiple platforms used in the Microsoft Office 2007 system. Microsoft / Novell Collaboration Bi-directional open source translators for word processing, spreadsheets and presentations between Open. Office. org and Microsoft Office ISO-standardized, XMLbased file format specification for office applications maintained by the open source community, developed by the OASIS industry consortium and used in Open. Office. org.

Moonlight Open source implementation of the Silverlight runtime Cross-browser, cross-platform plugin for delivering the next generation of. NET based media experiences and rich interactive applications for the Web Enables users to consume Silverlight content through a browser on a Linux platform Supports Firefox, Konqueror, Opera browsers Enables developers to create Silverlight content on a Linux platform Moonlight 2. 0 available today Download at http: //www. go-mono. com/moonlight/

UIA Accessibility Interoperability What: Accessibility interoperability between Windows and Linux using Mono and Moonlight When: Targeted for 1 H 2010 Windows user is able to use UIA enabled screen reader to access information. Windows user runs browser with Silverlight plug-in and is able to use screen reader to access information. 3 3 3 2 2 Without need to edit content Linux user runs browser with Moonlight plug-in and is able to use screen reader to access information. 1 Author creates accessible Silverlight content and posts to website. UIA for Silverlight and for Linux and Moonlight. Windows application is ported to Linux using Mono tools. User runs screen reader to access information. 1 Developer creates managed Windows application with UIA implemented for accessibility. Application written for Windows and ported to Linux.

Extend the monitoring capability of System Center Operations Manager to Linux environments Virtualize SUSE Linux Enterprise on Hyper-V and Windows on Xen, Document interoperability between Microsoft Office 2007 and Open. Office. org View and use Silverlight and Windows* Media content on Linux. Federate multiple ID stores with ADFS to extend your Share Point collaboration Creating Microsoft's User Interface Automation (UIA) bridge to Linux accessibility projects

Special Proof of Concept (POC) Offers • Four ‘flavors’ or POC available to address many customer interoperability issues • Virtualization of SLES on Hyper-V • Management using SCOM with Novell Management Packs for SLES monitoring • Expanded Support for RHEL on bare metal or as a virtual guest on Hyper-V • Microsoft Share. Point access from Linux guests through federated identity • Customer must have a defined project and be interested in migrating to SLES or purchasing support from Novell • Customer must commit appropriate levels of resources (people) to support the POC and to support the development of customer evidence (case studies, quotes. . . ) at the conclusion of the POC • A Dell (or similar) server may be supplied for the POC

question & answer time. . .

Resources www. microsoft. com/teched www. microsoft. com/learning Sessions On-Demand & Community Microsoft Certification & Training Resources http: //microsoft. com/technet http: //microsoft. com/msdn Resources for IT Professionals Resources for Developers

Additional Resources http: //www. moreinterop. com/hyperv/ http: //www. microsoft. com/windowsserver 2008/ http: //www. microsoft. com/virtualization/ http: //www. novell. com/linux/ http: //www. novell. com/virtualization/ E-mail us: novlcert@microsoft. com

Related Content Breakout Sessions (session codes and titles) • INT 206 on Friday, Nov. 13 from 9: 00 -10: 15 in Hall 7 -1 a, New York 2 Hands-on Demos & More details • Messe Hall 4 -2 booth S 1

Complete an evaluation on Comm. Net and enter to win an Xbox 360 Elite!

Enhanced Interoperability from Microsoft and Novell © 2009 Microsoft Corporation. All rights reserved. Microsoft, Active Directory, Windows, and Windows Vista are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. The names of actual companies and products mentioned herein may be the trademarks of their respective owners. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.