INFRA210-How to Migrate Windows Workloads to Google Cloud Speakers: Jack Lo - Engineering Director, Google Cloud, Souvik Choudhury - Product Manager, Google Cloud, Simon Zeltser - Software Engineer, Google

Your Feedback is Greatly Appreciated! Complete the session survey in the Next ‘19 UK mobile app 1-5 star rating system Open field for comments Rate icon in status bar Nov 20 | 11:15 AM - 12:05 PM

Jack Lo Director, Engineering Google Souvik Choudhury Product Manager Google Simon Zeltser Software Engineer Google

We’re committed to making GCP a first class platform for running Microsoft workloads” Urs Hölzle Senior Vice President Technical Infrastructure

Win GKE Support Windows on GCP 2017 2018 2019 Windows Server Images 2016 SQL Server images VSS integrated PD snapshots Support for WinRM Reference TSC enlightenment Cloud Client Libraries in NuGet (Beta) 2016 2015 Windows Server [2008R2, 2012R2] images SQL Server HA AlwaysOn Availability Groups Cloud Tools for VS and PowerShell Stackdriver support for ASP.NET Logging & Error Reporting Google joins .NET foundation Private IP for Windows VM SQL Server HA AlwaysOn FCI Migration Tooling for Windows Shielded VMs Managed AD Beta BYOL sole tenancy New Win and SQL images And more to come . . . Managed SQL VGA Support

Thank you to many, many thousands of customers running Windows on GCP

"Each January, we face new, unprecedented challenges that could be along the lines of a 50 percent traffic spike. This year we had our large Windows applications running on Google Cloud Platform and we found we were suddenly better prepared. Everything went well, as we didn't have to deal with obstacles such as manually managing scaling across zones and we were not stressed about whether we had enough resources to avoid downtime." Jorrit Salverda, Principal Technical Architect

"From a business standpoint, support for Windows workloads on Google Cloud Platform brings us flexibility that would otherwise be expensive to achieve. For our customers, Google offers features such as high-performance storage and flexible compute infrastructure that we simply couldn't match in a self-hosted environment. And this in turn means happy customers." Shad Lutz VP of Information Technology

Why Windows on GCP?

Lift and Shift: Windows critical component of Enterprise workloads Open: No vendor lock-in, modernize to an open future Google-grade everything: Innovation, efficiency, security, infrastructure, reliability Data Gravity / Integration with Google services: BigQuery, Cloud AI, Cloud Run

Journey to Modernization Assess, Plan and Migrate Operate Modernize 1 2 3

Some key questions 1 How do I start? 2 Do I have to “rebuy” MSFT licenses? 3 What technology do I use for VM migration? How do I test?

Migration center One stop for getting started on migrating to GCP cloud.google.com/migrate

1 Discover your application landscape 2 Assess your workload portfolio 3 Estimate cost Discovery, assessment, and planning tools 4 Plan your migration

Example output: Dependencies

Example output: Spend Estimation

(Highly simplified; each individual situation is different. Please validate with your MSFT licensing expert) Microsoft EA licensing basics (Windows) License requirement Description Remain fully dedicated Servers and such devices remain fully dedicated to customer’s use 90-day server affinity Cannot reassign a license [to new physical hardware] within 90 days of last reassignment except in case of permanent hardware failure or loss

Buy special MSFT SPLA License for running Windows on Public Cloud General Fleet VMs Cost efficient for “spikey” workloads (esp. compute-optimized VMs) Extra cost if you have already licenses bought through MSFT EA Cost of Windows VM Up to 60% 40%

Bring your existing Microsoft Windows Server, Windows Desktop, and SQL Server** Licenses to GCP Complies with Microsoft BYOL requirements of dedicated hardware per customer and 90 day server affinity Must place Windows VMs on ST nodes Detailed reporting on hardware usage for audits etc** Sole tenant nodes for BYOL *Without need for MSFT Software Assurance ** Customer is still responsible for license compliance and reporting Single-tenant VM 1 VM 2 Host Hardware Host Kernel VM 1 VM 2 Host Hardware Host Kernel (Note: MSFT licenses bought after Oct-2019 might be governed by different rules. Please validate with your MSFT licensing expert)

Custom VM Sizes (esp for MS SQL Server Ent) Per second billing Preemptible VMs Rightsizing Recommendations Sole Tenant Over-commit Source: Kinsta Save even more on Licensing (& Infrastructure)

Illustrative Lic Cost Savings (based on real life example)

Automated Optimization Recommendation Tooling (CloudPhysics, Stratozone)

Migrating “Petshop” no code change: - Automated migration - GKE - Cloud SQL - Managed AD

Modernizing “Petshop” BEFORE Kubernetes Deployment Load Balancer Cloud SQL Proxy Open-sourced exe Application .NET Framework, IIS Pod A Cloud SQL Proxy Open-sourced exe Application .NET Framework, IIS Pod B Cloud SQL Managed SQL Server On-Prem SQL Server 4 Databases Application .NET Framework, IIS VM AFTER

Easy, riskless migration with Migrate for Compute Engine. Google-owned cloud migration solution built for fast, at-scale lift-and-shift VM migration from on-prem VMware, EC2, Azure directly into Google Compute Engine. ● Apps start on GCP in < 10 mins ● Test & rollback ● Handles GCP drivers and customizations (Power Settings / Firewall / NTP…) ● Handles licensing: automated conversion to SPLA license ● Windows BYOL & Shielded VM support Migrate for Compute Engine for easy lift and shift

Demo

Journey to Modernization Assess, Plan and migrate Operate Modernize 1 2 3

Some key questions 1 How do I deploy new VMs/apps? 2 Is it secure? How is the performance? 3 How do I manage my applications?

Easily access license-included Windows Server and SQL images tested, patched, and performance-tuned by Google engineers Quickly launch VM instances with pre-installed images Readily available “Pay-as-you-go” images for SQL Server 2012+ on Windows Server Need a license? Pay by the second for the use of the Windows Server license. SQL Server Enterprise sql-ent-2017-win-2016 sql-ent-2016-win-2016 sql-ent-2016-win-2012-r2 sql-ent-2014-win-2012-r2 sql-ent-2014-win-2016 sql-ent-2012-win-2012-r2 SQL Server Standard sql-std-2017-win-2016 sql-std-2016-win-2016 sql-std-2016-win-2012-r2 sql-std-2014-win-2012-r2 sql-std-2012-win-2012-r2 SQL Server Web sql-web-2017-win-2016 sql-web-2016-win-2016 sql-web-2016-win-2012-r2 sql-web-2014-win-2012-r2 sql-web-2012-win-2012-r2 SQL Server Express sql-exp-2017-win-2016 sql-exp-2017-win-2012-r2 Premium Windows and SQL Images windows-2019 windows-2019-for-containers windows-2019-core windows-2019-core-for-containers windows-1809-core windows-1809-core-for-containers windows-1803-core windows-1803-core-for-containers windows-1709-core windows-1709-core-for-containers windows-2016 windows-2016-core windows-2012-r2 windows-2012-r2-core windows-2008-r2 Windows Server Backed by Google, supported by Microsoft. Windows and SQL: Google-engineered images

GCP marketplace with solution templates by Google and partners for MS applications Marketplace solutions Deploy production-grade solutions in a few clicks Single bill for all your GCP and third-party services Manage solutions using Deployment Manager

Windows Server 2008/R2 End of Support (EOS) is on 14 Jan, 2020. GCP provides easy ways of upgrading to a supported version. Windows Server 2008 EOS No impact to existing WS 2008 instances after the EOS date. Customers must copy images into their projects to continue to create new instances Plan for the upgrade to a supported version Decide whether you want to do an in-parallel upgrade, or in-place upgrade. For in-place upgrades, GCP provides media and easy steps

Shielded VMs are virtual machines (VMs) on Google Cloud Platform hardened by a set of security controls that help defend against rootkits and bootkits. Shielded VMs for special security needs Quickly protect VMs against advanced threats like remote attacks, privilege escalation, and malicious insiders Ensure workloads are trusted and verifiable with secure and measured boot, vTPM, UEFI firmware, and integrity monitoring Verify the integrity of your VMs with tamper-evident attestation claims Management Security Disks Networking Shielded VM Turn on all settings for the most secure configuration Turn on Secure Boot Turn on vTPM Turn on Integrity Monitoring ? ? ? ?

Live migration keeps your virtual machine instances running even when a host system event occurs, such as a software or hardware update. Reliability with live migration Compute Engine live migrates your running instances to another host in the same zone rather than requiring your VMs to be rebooted. Perform maintenance that is integral to keeping infrastructure protected and reliable without interrupting any of your VMs. Live migration Huge differentiator

Compliance Reporting Detailed reporting /compliance across Windows and Linux distros and across hybrid clouds Patch reliability insights/recommendations with ML/AI Patch Action Across Clouds & OSes Patch approvals with flexible scheduling Orchestrated patch actions Application aware patching Integrate with existing systems (Satellite, Microsoft tools Puppet/chef, ITSM, open source tools) GCP Patch and Configuration Management Coming soon

Solution/workload: Microsoft Windows Server Migration, Microsoft Windows App Migration Lift and shift SQL Server databases to Cloud SQL for SQL Server BETA Compatibility Compatible with Microsoft SQL Server and tools (Visual Studio, SQL Server Management Tool) Simple & fully managed Fully Managed Service including backups, replication, patches, and updates Reliability & availability Runs on GCP with Cloud SQL SLA 99.95% Announcing Beta

Demo Managed SQL

Cloud-based AD-dependent apps and servers Managed Service for Microsoft AD Managed Service for Microsoft AD A highly available, hardened Google Cloud service running actual Microsoft AD that enables you to: • Manage your cloud-based AD-dependent apps and servers • Automate AD server maintenance and security configuration • Connect your on-premises AD domain to the managed service Your on-prem data center Get started at https://cloud.google.com/managed-microsoft-ad/ Beta

Demo Managed AD

Journey to Modernization Assess, Plan and migrate Operate Modernize 1 2 3

Containers on GCP .Net Client Libraries for all GCP APIs Visual Studio and VSCode Integration Write new apps or refactor older .Net apps to run on / leverage GCP Optimize infrastructure footprint, simplify and accelerate deployment Use your familiar work environment Observability with Stackdriver Observe .NET apps with logs, traces, monitoring, error reporting, and production debugging Innovation and openness with modernizing MSFT apps on GCP

Windows Server containers in GKE Early Access Preview Use Google Cloud to containerize and modernize your Windows server applications. Ready to use Windows Server images tuned for containers Run Linux and Windows container pods side by side to in GKE Upgrade legacy Windows server apps, develop cloud-native microservice architectures, adopt DevOps Sign up for early access “We used to set up and run Kubernetes based Windows clusters manually and have now shifted to using GKE. What used to take us weeks to set up and configure, now takes a few minutes. Features like autoscaling, high-availability, Stackdriver logging and monitoring are already baked in. Windows in GKE gives us the same scale, reliability and ease of management that we have come to expect from running Linux in GKE". Premkumar Masilamani Cloud Architect, Helix RE

Demo Windows GKE containers

Modernized Petshop Architecture Kubernetes Deployment Load Balancer Cloud SQL Proxy Open-sourced exe Application .NET Framework, IIS End user Pod A Cloud SQL Proxy Open-sourced exe Application .NET Framework, IIS Pod B Cloud SQL Managed SQL Server A fault tolerant and scalable application using Windows containers on Google Kubernetes Engine & Cloud SQL for SQL Server

Framework for modernizing apps on GCP AppEngine, Cloud Run New or existing apps that can be rewritten .Net Core on Linux on GKE GCP .Net APIs VS Integration Stackdriver .Net to .Net Core conversions GKE Windows containers on GKE Non .NET application that can be containerized Managed AD, SQL, Patch & Config, easier security, higher perf, lower cost, …. Windows VM on GCP – lower operational overhead and cost than on-prem or other clouds Application can’t be containerized

Windows on GCP: Easy steps to open, modern applications New services in 2019 Sole Tenancy BYOL Beta: Managed AD Service Beta: Managed MS SQL GA:Virtual Displays .Net Core support for Cloud Code for VS Code Coming soon: Windows on GKE Coming soon: Patch and Config Mgmt Service Coming Soon: OS Inventory Mgmt Service ● Commitment ● Reliability ● Capabilities ● Thousands of customers

Your Feedback is Greatly Appreciated! Complete the session survey in the Next ‘19 UK mobile app 1-5 star rating system Open field for comments Rate icon in status bar Nov 20 | 11:15 AM - 12:05 PM

Questions? Want to know more about How to Migrate Windows Workloads to Google Cloud? Engage directly in the Next app: 1. Open the Cloud Next app 2. Tap a session 3. Click Dory Q&A a question to move great questions to the top the Dory Q&A link

THANK YOU