Upgrade to Pro — share decks privately, control downloads, hide ads and more …

MUN_Azure_Foundation_AzureDay2019_Public.pdf

nisanthmrajah
October 22, 2019

 MUN_Azure_Foundation_AzureDay2019_Public.pdf

Vorstellung von Azure Foundation bei der Trivadis Azure Days 2019.

Trivadis Azure Foundation – Das Fundament für den erfolgreichen Einsatz der Azure Cloud

Die Azure Cloud steuert auf ihr 10-jähriges Jubiläum zu und ist in der Schweiz angekommen. Im Vergleich zum Betrieb von On-Premise Lösungen bietet die Cloud eine Vielzahl von Vorteilen. Viele Aufgaben aus der On-Premise Welt werden im Cloud Computing vom Anbieter übernommen.

Aber die Freiheiten, welche Cloud Computing bietet, sind sehr mächtig und das beste Rezept für Wildwuchs und Chaos. Viele unserer Kunden werden sich erst jetzt bewusst, um welche Aufgaben sie sich bereits vor 5 Jahren hätten kümmern sollen. Die Trivadis Azure Foundation ist unser in der Praxis erprobtes Vorgehen, um alle Vorteile der Cloud optimal Nutzen zu können, ohne die Kontrolle zu verlieren. In dieser Session bekommen Sie einen Einblick in unsere Azure Foundation Methodik, zusätzlich berichten wir von den Azure-Erfahrungen unserer Kunden.

nisanthmrajah

October 22, 2019
Tweet

More Decks by nisanthmrajah

Other Decks in Technology

Transcript

  1. https://blog.rajah.ch nishi1905 Trivadis Azure Foundation Grüezi | Willkommen | Bonjour

    | Welcome | Velkomst Nisanth Muthukirushnasamy, Cloud Architect
  2. Nisanth Muthukirushnasamy helps customers: • to get Cloud Ready •

    to adopt Microsoft Azure as an enterprise Ready Cloud platform @nishi1905
  3. Ideation Way to Azure Architecture Workshop Incubation Realization Operation Strategy

    Azure Strategy Check-up Azure Readiness Check Objective Workshop Orientation Workshop Innovation Proof-of- Value Coaching & Know-how Transfer Azure Consulting Azure Reviews Azure Architecture Microsoft Courses Trivadis Azure Training Cloud Competence Center as a Service Managed Azure as a Service Transformation / Migration Azure Solutions Azure Foundation
  4. System Management Automation Cloud Service Management Connectivity Network Security Management

    Identity & Access Management Reference Architecture Resources Security Cost Management Auditing&Reporting Resources Organization Physical security Cabling Facility Management (Powering/Cooling) Hardware Lifecycle
  5. Azure Solutions Azure Foundation Azure Governance Azure Core Infrastructure System

    Management Automation Azure Operations Cloud Service Management Connectivity Network Security Management Identity & Access Management Reference Architecture Resources Security Cost Management Auditing&Reporting Resources Organization Physical security Facility Management (Powering/Cooling) Cabling Hardware Lifecycle
  6. Trivadis Azure Foundation Trivadis Best Practice for the adoption of

    Microsoft Azure as an Enterprise Ready Cloud Platform in an organization.
  7. Azure Solutions Azure Governance Azure Core Infrastructure System Management Automation

    Azure Operations Cloud Service Management Azure Foundation Connectivity Azure Network Security Management Identity & Access Management Reference Architecture Resources Security Cost Management Auditing&Reporting Resources Organization
  8. Azure Services and Resources Azure Account Azure Active Directory Azure

    Subscription Management Groups Azure Blueprints Azure Policies Azure Management Services Azure Resources Machine Learning MS SQL Database Virtual Network IoT Hub Virtual Machine Key Vault
  9. Azure Solutions Resources Security Cost Management Azure Governance Auditing&Reporting Resources

    Organization* * Submodule: Enterprise Agreement- Management structure Subscription/Provider Management Azure AD Tenant Management Naming Convention Governance structure Basic Subscriptions Default Subscription Design Resource Groups Design Solution Design Patterns Tagging Azure Foundation
  10. Resource Organization – Azure AD Tenant Level Root MG IT_Core

    IT_IaaS Business_nonProd Business_Prod Azure Account Auditing Enforcing Corporate-wide Policies Environment Policies Application Policies Sandbox Default Subscription tvd-it-mg (IT) tvd-bunitnonprod-mg (Business NonProd) tvd-bunitprod-mg (Business Prod) tvd-sandbox-mg (Sandbox) tvd-itcore-network-rg tvd-itcore-vnet-001 Tags Tags Tags Tags Tags
  11. Default Subscription Design Network System Manageme nt Shared Services Database

    Application Frontend Application Backend Subscription Management
  12. * Submodule: Hybrid Identity Azure AD Authentication Azure AD Authorization

    Domain Services for IaaS MFA Conditional Access Identity Protection Privileged Identity Management Break glass Concept Azure Solutions Azure Governance Connectivity Azure Network Security Management Identity & Access Management* Azure Core Infrastructure Azure Foundation Resources Security Cost Management Auditing&Reporting Resources Organization
  13. Identity and Access Management Azure Active Directory Microsoft Active Directory

    Service Azure AD Connect Authentication Methods Azure Active Directory Domain Services for IaaS Identity Synchronisation
  14. Customer Case 1 - KMU Azure Active Directory MFA Forest

    kunde.ch DC01 Domain: kunde.ch DC02 Domain: kunde.ch Azure AD Connect kunde.onmicrosoft.com kunde.ch Azure VM’s OnPremises Forest Identity Syncronization Authentication with PWHash-Sync OnPremises Domain Service
  15. Customer Case 2 - Enterprise Enterprise Enrollment Company 1 Company

    2 Company 4 Central IT Azure AD Tenant: Enterprise Domain: ent.com Azure AD – Com1 Domain: com1.ch OnPremise AD Azure AD Connect External Azure AD Domain: centralit-admins.ch Suppliers Azure AD B2B-Office365 Azure AD Domain: centralit.ch B2B-Office365 Company 3 Multi-Tenant IAM with Identity Syncronization and B2B
  16. Customer Case 2 - Enterprise Domain Service IaaS in Azure

    Extern Intern Azure Active Directory AD-Federation Services Microsoft Active Directory Service Authentication with Federation Services Forest xyz.ch DC01 Domain: xyz.ch DC02 Domain: xyz.ch DC03 Domain: xyz.ch DC04 Domain: xyz.ch AD Site - Azure AD Site – OnPremise AD Repication Azure VM s OnPremise VM s
  17. Azure Solutions Azure Governance Connectivity Azure Network Security Management Identity

    & Access Management Azure Core Infrastructure Azure Operations * Submodule: Integration Monitoring Alerting Business Continuity (Backup, Restore, Disaster Recovery) IaaS System Management (Update-, Configuration-, Change Management) Azure Foundation System Management* Automation Cloud Service Management Reference Architecture Resources Security Cost Management Auditing&Reporting Resources Organization
  18. Erfahrungen mit Azure Foundation • Kommt bei den IT Pro’s

    sehr gut an, da die Themen sehr bekannt und nachvollziehbar sind • Azure Foundation als Vorgehensmodell kann unabhängig von Cloud Provider, als Grundlage für die Einführung einer Enterprise Cloud Plattform angewendet werden • Geht bei vielen Cloud Projekte vergessen oder wird zu wenig Beachtung gegeben, da es nicht einen direkten Business Mehrwert liefert.
  19. Q&A