my kind of flexibility...my kind of flexibility building an open and agile infrastructure for new...
TRANSCRIPT
My Kind of FlexibilityBuilding An Open And Agile Infrastructure For New Workloads And Increasingly Complex Environment
Lim Seh Guan, Sales Engineer
2
Open, Flexible and AgileSUSE Solutions
• Modular and multi-modal• Consolidated management• True to open source vision • Enterprise-ready, so you
can rest easy
SUSE Linux Enterprise Server (SLES)
SLES 15 Portfolio
SUSE Sales and Business Partner Use Only
Built based on purpose- SAP, POS, SLED, Workstation
Extensions-High Availability, Geo Clustering, Real Time, High Performance Computing, Live Kernel Patching
Support for heterogeneous Linux environment- Expanded Support
90% of all new apps will feature microservices architectures.of all production apps will be cloud-native.35%
The World is Changing. By 2022,
https://www.ericsson.com/en/mobility-report/internet-of-things-forecast
A co-existence of traditional infrastructure, software-defined infrastructure and application oriented architectures.
Multimodal Platform
Multimodal IT
Traditional Infrastructure
Multiple use cases
Manual and automatic installation
Variety of updates, upgrades, legacy
Variable packaging and installation
May become huge in size and management
Software-defined Infrastructure
Single use case, multiple systems
Automatic and centralized installation
Always up-to-date
Fit one purpose
Small as possible for size and management
Multimodal OS Requirements
Common Code BaseAll Architectures (x86-64, Arm, POWER, IBM Z)
Container Workload
Virtual Machine Workload
Appliance Workload
TraditionalInfrastructure
SLE 15 Products
Software-DefinedInfrastructure (SDI)
ServicesSDI Products
SUSE CaaS Platform
SUSE OpenStack
Cloud
SUSE Enterprise Storage
SUSE Cloud Application
Platform
SLES
SLED
Multimodal Architecture
Benefits across 3 dimensions:• Hardware Architecture• Applications• Systems Management
“IDC believes the common code base of SUSE Linux Enterprise 15 makes the product a multi-platform OS that is well suited for heterogeneous computing environments.”– IDC Market Note, 2018
Ensure Consistency
Improve systems
management
Simplicity in support and
services
Silicon agnostic computing
Support IBM Mainframe to Raspberry Pi
Common Code Base
SUSE Linux Enterprise Server
Common Code Base Modules
Base System
Desktop Apps ….
ServerApps Legacy
SUSE Linux EnterpriseHigh Availability Extension
SLE Desktop
DesktopProductivity
A product (e.g., SUSE Linux Enterprise Server) is a set of modules.
Containers
SAP Solution
Public Cloud
….
Pool of Modules
Modular+ “Everything is a Module”
• Move to production faster from developer setups
Community Linux openSUSE Leap
SLE 15Option 1
Free Developer Subscription Option 2
SLE 15
• Two options for a direct path to SUSE Linux Enterprise
Developer’s Friend
Upgrade Methods
On-line Upgrade: Performed on the running system directly • Limited to non-intrusive changes → Designed for minor version updates (i.e. 15 GA → 15
Service Pack 1)
Off-line Upgrade: System needs to be rebooted from installation media• Intrusive changes are possible → Designed for major version updates (i.e. 12 → 15 GA / 15
Service Pack 1)
Transactional Update: Update is applied onto a new snapshot; the running system is not touched • Designed for maintenance updates, minor & major version updates
Transactional Update (Tech Preview in SP1)Create a snapshot
Update performed on snapshot
Update successful
Snapshot mark as new default; take effect up next
reboot
Update Fail
Snapshot discarded; current system untouched
Upgrade PathsSUSE Linux Enterprise 12 SP4 → 15 GA/SP1• Boot Unified Installer (Off-line upgrade)
SUSE Linux Enterprise 11 SP4 → 15 GA/SP1• Boot Unified Installer (Off-line upgrade)• Major changes require manual interaction• SUSE recommendation: Full installation of 15 GA/SP1
SUSE Linux Enterprise 15 GA → 15 SP1• Run update from installed system (On-line upgrade)• Boot Unified Installer (Off-line update)
Lifecycle – SUSE Linux Enterprise Server15
• Service Pack Overlap Support: 6 months• Long Term Service Pack Support: up to 3 years after generic end of support• 13 Years total support lifecycle
Lifecycle: SUSE Linux Enterprise 15
17
Roadmap
2018 2019 2020 202115
12 SP415 SP112 SP515 SP2
15 12 SP4 15 SP1 12 SP5 15 SP2
Multimodal OS Delivery SUSE Linux Enterprise Server and Desktop, SUSE Linux Enterprise Server for SAP Applications + Modules + Extensions General purpose OS versions Multiple use cases (physical,
virtual, containers) Full set of deployment,
management options; Full control of the installed packages, updates, upgrades
Continue major version upgrade support including auto upgrade
Common Code BaseArchitecture/Platform Support Arch64, x86-64, ppc64le, s390x Designed for physical, virtual,
clouds & containers - Ready for IoT
Base OS Improve hardware
enablement via Kernel version update
Update of the graphics stack (tentative)
XFS deduplication Transactional updates
Modules Toolchain update Refresh of module
packages according to separate lifecycle of modules
Base OS HW enablement, including
driver updates. NVDIMM! Improve “system roles” Perform common criteria
certification and FIPS 140-2 validation
Migration from SUSE Linux Enterprise 11 SP4 to SUSE Linux Enterprise 15 SP1
Improve SAML2 single sign-on framework
Default to python3 OpenJDK long-term version SUSE Manager included in
Unified Installer
Modules Development module GCC
update Development modules
updates based on demand
Ease-of-use Quarterly updates of
installation media
Base OS Last service pack for SUSE
Linux Enterprise 12 (tentative)
Consolidation release Constant user land (minor
version upgrades by need or business case)
Reuse kernel from SP4 + very selected hardware innovations, including graphic stack
Modules Latest GCC version in
the Toolchain module
Base OS HW enablement via Kernel
version update, following upstream
Full enablement for Intel AEP NV-DIMMs
Update of the graphics stack, not including Gnome
Modules Toolchain update Refresh of module
packages according to separate lifecycle of modules
SUSE Linux Enterprise – Base OS / Modules
No plans for SUSE Linux Enterprise 12 SP6* Information is forward looking and subject to change at any time.
Significant ChangesSUSE Linux Enterprise Server 15
• Kernel 4.12• 389 Directory Server replaces OpenLDAP• Salt management• Python 3• Chrony replaces ntpd• Firewalld replaces SUSE Firewall2• NGINX is fully supported• OpenJDK 10• Systemd - xinetd has been removed• zypper search-packages• RMT replaces SMT
19
2020
Expert Days 2019 - SLES for SAP
21
Join the best. Run your SAP solutions on SUSE20 years of joint collaboration and innovation• SAP Cloud Platform is powered by SUSE OpenStack and SUSE Enterprise Storage
• Joint testing and development at the SAP Linux Lab
• First OS for SAP HANA
Leading platform for SAP applications• 90 percent of SAP HANA runs on SUSE
• 70 percent of NetWeaver on Linux runs on SUSE
• 100 percent of Business One on HANA runs on SUSE
SAP internal infrastructure runs on SUSE
22
Deployment Options for SAPfor workloads like SAP HANA, NetWeaver and S/4HANA
23
Reliability and Resilience
Performance
Ease of Use and
Deployment
Base OS and Support
SUSE Linux Enterprise High Availability
Remote Storage Encryption
Management
SAP HANA HA Resource Agents & Cluster Connector
SAP HANA Firewall
Workload Memory
Management
Performance Configuration and
Tuning
Installation Wizard & YaST for SAP HA SUSE ConnectPublic Cloud
Platform ImagesS/4 HANA
Transition Support SUSE Package Hub
SUSE Linux Enterprise Server
SAP Specific Update Channel24x7 Priority Support
Extended Service Pack
Overlap Support
SAP Specific Features from SUSE
SUSE Products and Services
SUSE Linux Enterprise Server for SAP Applications
NVDimmSupport
24
Updated Product LifecycleNew ESPOS for SLES for SAP 12 & 15
Year 1 Year 2 Year 3 Year 4 Year 6Year 5
GA ESPOS
Year 7 Year 8
SP1 ESPOS
SP2 ESPOS 4.5 years of support
Year 1 Year 2 Year 3 Year 4 Year 6Year 5
GA ESPOS
Year 7 Year 8
SP1 ESPOS
SP2 ESPOS
OLD
Life
cycl
e
25
x
Intel Optane DC Persistent Memory and SAP HANA
26
SAP HANA with Persistent Memory
27
Reboot and restart SAP HANA systems faster
Source: Blog by Andreas Schuster, Product Manager – SAP HANA Platform
Restart time:• Large Databases gain the most
advantage at restart time
System Performance:• Read times are similar to DRAM, write times
are ‘in the same performance envelope’ • HANA writes changes in batches
Size:• 15 TB (3TB DRAM, 12TB NVDIMM)• POC’s up to 36TB SAP HANA Rev 35 supports NVDIMMs with
SLES 12 SP4 and SLES 15 GA
Faster Recovery After System Restarts
28
SUSE Linux Enterprise Server for SAP Applications is the FIRST enterprise Linux optimized for Intel® Optane™ with SAP HANA® workloads.
29
Workload Memory Protection is a new feature that replaces Page Cache Management.
• Based on open source ‘cgroup’• Provides a highly scalable solution• Protects the memory where SAP
applications store data• Protects against any kind
of memory pressure• Offers lots of possibilities
for the future.
Workload Memory Protection
3030
Ongoing Innovation
31
Containers are a key topic for SAP. SAP is working on containerizing solutions• Extensions of S/4 HANA• SAP HANA (Public Cloud Service)• SAP DataHub
SAP is Starting to Deliver Solutions Through Containers
32
SUSE provides various solutions already today for clients to run Container based workloads
• SUSE CaaS Platform is a product that provides a platform based on Kubernetes and Docker to run a container at Enterprise Scale
• SLES for SAP Applications can also host containers by installing the respective extensions to the system – to get started
Containers themselves also require an OS – SUSE can help here, too!
SUSE CaaS Platform architecture
SUSE and SAP work closely in the area of containers to provide a holistic solution
33
2018 2019 2020 202115
12 SP415 SP112 SP515 SP2
15
Public Cloud Support HA integration for
Alibaba Cloud deployments
Performance & Scale Cluster stack: Support 64-node
clusters for large-scale deployments
Management SAP Management Console
integration improvements SAP Management Console
status to utilize the SUSE Linux Enterprise High Aavailability API
General Inherit capabilities from SUSE
Linux Enterprise 15 base OS Built-in support for NV-DIMM
technology, including DaX
Virtualisation/Private Cloud Meet specific performance
metrics for KVM to host SAP HANA
Security Base HANA firewall on new
open source firewall stack (firewalld)
Public Cloud Standardize the watchdog
service for cloud agnosticdeployments
Support HA integration forGoogle Cloud deployments
Support HA integration forAlibaba Cloud deployments
Performance & Scale Cluster stack: Support 64 node
clusters for large-scaledeployments
Management SAP Management Console
integration improvements SAP Management Console
status to utilize the SUSE Linux Enterprise High Aavailability API
General Inherit extended HW
enablement and scalability fromSUSE Linux Enterprise Server 12 SP4 across all supportedarchitectures
Enhanced support for NV-DIMM technology
Virtualisation/Private Cloud Meet specific performance
metrics for KVM to host SAP HANA
Public Cloud Standardise the watchdog
service for cloud agnosticdeployments.
Support for Google Cloud deployments
12 SP4 15 SP1 12 SP5 15 SP2
General SUSE Linux Enterprise 15 SP2
will improve hardware basis and scalability; functionality inherited by SUSE Linux Enterprise Server for SAP Applications
Management Cluster management workflows
in SAP Management Console Support management workflows
for clusters up to 128 nodes Cluster management and
monitoring for multiple geo
SUSE Linux Enterprise Server for SAP Applications inherits features from BaseOS and modules. Available on Intel/AMD and IBM Power
SUSE Linux Enterprise for SAP Applications
* Information is forward looking and subject to change at any time.
SUSE Manager
35
SUSE Manager
35
Asset Management
Provisioning
Redeployment
Configuration Management Package
Management
Patch Management
SUSE Manager
HEALTH MONITORING
COMPLIANCESECURITY
Best-in-class open source infrastructure management solution for
DEVOPS & Lifecycle Management• Optimize operations while reducing costs
• Reduce complexity and regain control of IT assets
• Ensure compliance with internal security policies and external regulations
36
Control wherever you need it!
36
SUSE Manager:Powerful content control and system management, wherever deployment needs to be strategically done –across hypervisors, clouds, or architectures
37
Ensure ComplianceWith internal security policies and external regulations with automated monitoring, tracking, auditing and reporting
Check security compliance with
OpenSCAP
Verify patchesValidate security
settings
Search Common Vulnerability and Exposures (CVE)
database
Identify & remediate
vulnerabilities
38
Container Compliance
38
• Validate compliance (patch levels etc.) for systems and containers (CVE Audit)
• OpenSCAP audits now also via Salt
39
Demo!
39
40
SUSE Manager – Supported Client Systems
40
Operating System Architecture Traditional Clients Salt Clients
SUSE Linux Enterprise 11 SP3 and SP4 x86, x86-64, Itanium, IBM Power Systems, IBM z Systems Supported Supported
SUSE Linux Enterprise 12, SP1, SP2, SP3,SP4 x86-64, IBM Power Systems (ppc64le), IBM z Systems, ARM64 (aarch64) Supported Supported
SUSE Linux Enterprise 15, SP1 x86-64, IBM Power Systems (ppc64le), IBM z Systems, ARM64 (aarch64) Supported Supported
Red Hat Enterprise Linux 6 x86, x86-64 Supported Supported
Red Hat Enterprise Linux 7 x86-64 Supported Supported
Novell Open Enterprise Server 11, SP1, SP2 and SP3 x86, x86-64 Supported Supported
Novell Open Enterprise Server 2015 SP1, 2018 x86, x86-64 Supported Supported
41
SUSE Manager Clients – New favours!
41
Operating System Architecture Traditional Clients Salt Clients
openSUSE Leap 42.3, 15, 15.1 x86-64, ARM64 (aarch64) Supported Supported
Ubuntu LTS – 16.04, 18.04 x86-64 Not supported Supported
CentOS Linux 6 x86, x86-64 Functional Functional
CentOS Linux 7 x86-64 Functional Functional
Oracle Enterprise Linux x86, x86-64 Functional Functional
42
Demo!
42
4343
Roadmap
43
2018 2019 2021 2022
SUSE Manager3.24.04.1
3.2Configuration Management• Full UI for Salt-based config
management• Significant improvements to Formulas
with Forms
Product Integration & Supported Platforms• SUSE Linux Enterprise 15 (client)
support• Ubuntu support**• SUSE Manager for retail (PXE with
image support, KIWI-based image building)
Monitoring• Prometheus/Grafana “self-monitoring”
documentation**
Containers & Cloud• VM building with Salt & KIWI
Requires SUSE Linux Enterprise Server 12 SP3/SP4
Configuration Management• Content (patch and configuration) staging
UI & improved API• Templates for HA cluster and SAP
workload setup**
Product Integration & Supported Platforms• Better integration with SUSE CaaS
Platform, SUSE Enterprise Storage, SUSE OpenStack Cloud
• openSUSE, Debian, CentOS support**• Single sign-on support
SDI Management• Maintenance windows**• Improved virtualization management**
Monitoring• Complete Prometheus-based
monitoring stack**
Containers & Cloud• Proxy server shipped as container**
Based on SLES 15 SP1
4.0 4.1
Information is forward looking and subject to change at any time.** Item delivered post GA
5.0
2020
5.0Configuration Management• Config drift management• Support for cluster orchestration (HA, SUSE
CaaS Platform, SUSE Enterprise Storage)• CI/CD Integration with existing Terraform and
GitLab instances
Product Integration & Supported Platforms• Integration with the complete SUSE SDI stack
(SUSE CaaS Platform, SUSE Cloud Application Platform, SUSE Enterprise Storage, SUSE OpenStack Cloud)
• Basic management of Windows clients (TBD)
SDI Management• Manage and monitor the complete SDI stack
Subscription Management• Public cloud data gatherer
Monitoring• Grafana dashboard plugins for SUSE CaaS
Platform, SUSE Enterprise Storage• Log management (TBD)
Based on SLES 15 SP2
Configuration Management• Fully integrate Terraform and GitLab/Gitty
Product Integration & Supported Platforms• Edge IT/IoT device management• Salt-based next generation bare metal
installation framework
Security & Compliance• Salt-based security audit & remediation
SDI Management• Multi-cloud capabilities• Powerful virtualization management for large
distributed environments• Optimized for Edge IT management
Monitoring & Trouble Shooting• Provide actionable insights from data correlation• Automated remote support data collection
Containers & Cloud• All components shipping as containers (TBD)
Based on SLES 15 SP3