What's new with Microsoft Azure infrastructure | FS180
[Music] hello and welcome back to ignite my name is aurelia and i'm a product marketing manager on the azure team now you may be wondering what could be new from azure infrastructure can i simplify my path to azure and are there new innovations in compute storage and networking that can optimize my business critical apps the answer to all of that is yes during this session we have product experts online and ready in the chat window to answer your questions in real time now joining me to share our updates is erin chapel corporate vice president of azure compute welcome aaron thanks aurelia it's great to be with you today not only is it a treat for me to get to share with you everything the team has been hard at work on to make your lives easier but recording these sessions is literally the only time i get to see my colleagues in person these days as i'm sure many of you can relate this is a real treat for me it seems like just yesterday we were together for the first virtual ignite in september and yet so much has continued to change the one thing that has remained constant is how busy you've been every customer i talk to is thinking deeply about how to accelerate cloud migration how to continue to support remote work finding new ways to optimize costs and to maintain business continuity i know i feel an immense responsibility to deliver solutions to support you with these critical projects and i'm sure you face similar responsibility while i hear similar business demands from across customers each of you is on a different path of growth and innovation we recognize that your journey to the cloud is unique to you and we're committed to meeting you where you are today and preparing you for the needs of tomorrow so many of you of all sizes across different industries have chosen azure to adapt build and innovate thank you for the trust and confidence that you place in us in particular during the current times now one customer i want to recognize is rxhealth rxhealth is a digital healthcare provider confronting the challenges of 21st century healthcare such as remote scaling resources to meet their patients needs using both azure vms and data services rxhealth is accelerating connections between patients and their information optimizing digital healthcare now how might you implement solutions like rxhealth to transform your business today i'll share with you the latest services from azure that help you innovate on your terms for every one of your workloads across all of your environments from on-prem to cloud and edge we take the time to understand and support your infrastructure i'm going to focus today on the cloud however most of you are running a hybrid environment so be sure to attend the azure arc session to learn about all the new hybrid capabilities now i often hear from customers the challenge of managing so many different workloads each with different requirements our goal is to reduce this complexity for you by delivering a robust infrastructure that can support the diverse nature of your application portfolio this starts with compute and storage several of your workloads depend on great performance to deliver the best end user experience today we're announcing new vms that can run your memory intensive workloads like sap more efficiently not only will you get 20 more cpu performance but we're providing more flexible storage options like disk or disk list many of you have chosen dedicated hosts for more control over your server infrastructure and yet you still want the simplicity of deployment that comes from the cloud we've heard you starting today you can simplify the deployment of azure vms running on dedicated hosts by letting the platform select the host group to which the vms will be deployed and if you want to scale this deployment you can use virtual machine scale sets in conjunction with dedicated hosts to scale across multiple hosts within dedicated host groups to continue to bring down costs and drive performance up we are announcing the future availability of new dedicated host skus featuring intel cascade lake processors which deliver greater price per performance for your memory intensive workloads the compute and storage infrastructure we know network connectivity is crucial to delivering not only a great workload experience but in depending on running mission-critical applications in the cloud i often hear how complicated it can be to combine the multiple networking appliances needed to meet workload demands starting in preview today you can connect all your branch offices and remote locations to azure through your vmware sd-wan solution with our new integrated partnership between vmware and the azure virtual wan that's right you can now integrate your vmware sd-wan appliances directly with your azure virtual wan hub bringing the best of both worlds together this provides that last mile connectivity with optimization with routing intelligence and security it can also be time consuming to manually configure route information for individual network virtual appliances in a large scale deployment with azure route server a new service that facilitates dynamic routing between nvas and virtual networks we simplify operations management enabling easy configuration for all of your nvas to take the route information automatically from the server think of how much effort and time this will save you now that we've talked about core infrastructure let's look at the ways azure can optimize your workloads what if we could both automate the number of daily vm management tasks and save you time securing your windows server vms well today we're introducing unique capabilities in azure auto manage for windows server that allow you to enable reboot lists i'm going to say that again rebootless security patching for windows server vms it's pretty cool if you ask me but beyond being cool why does this matter to you well now you can continue to run your business critical applications without interruption while also protecting against critical threats for more information about windows server innovations and a look into windows server 2022 be sure to check out the windows server and sql server session and for those of you with linux vms don't worry we're extending auto manage to linux 2. with support for centos red hat ubuntu suse and more linux distros to come and this is not all we have planned for those of you running linux with more than 50 of the cores in azure today running linux we continue to invest to ensure your linux vms run the best on azure for example you may think that running linux on azure will increase your license costs but with azure hybrid benefit you save not only on your windows server and sql server licenses but now on your linux investments as well so you can bring your red hat and suse licenses to azure now let's talk about one of the most frustrating experiences i hear from customers accessing billing and management across different platforms we're here to help by expanding on deep collaboration with linux and open source workload partners like elastic you can now operate your workloads and access your billing seamlessly from a single portal now what was that did i just hear you cheer many of you are looking to take advantage of cloud benefits application modernization optimizing costs ensuring business continuity and you have significant expertise in running your workloads on-prem using vmware that is why we built azure vmware solution or simply avs with avs you can seamlessly run your comprehensive vmware environments in the cloud now i know trevor can't wait to show you avs in action over to you trevor to show it just how easy it is to start using avs thanks aaron i'm excited to show how easy avs makes it for you to lift and shift your vsphere workloads to azure and exit your on-prem data center let's look at how a hospital can migrate their electronic medical records app or emr to the cloud to begin we'll use azure migrate to assess our on-prem workload readiness having this detailed assessment makes it easy to identify which vms support the emr app as well as other critical information like os and resource requirements the green check marks you see indicate that the vms are ready to migrate also note that vmware hcx is the recommended migration tool just look at how fast and easy it is to get started with our first azure vmware solution deployment just like all other azure services avs is deployed via the azure portal we provide the location number of hosts network details for the private cloud and logging credentials for vcenter and nsx with this one form azure creates a private cloud for us in just a few hours an entire vsphere cluster is ready for us and we can begin to migrate workloads to run natively on vmware inside of azure once the deployment is complete we retrieve the vcenter details from the azure portal and log in it's that simple avs lets you continue to leverage the vm tools you already use in the vsphere client we see the new avs environment is connected to the existing on-premises environment we navigate to the vmware hcx console select the virtual machines that run the emr app these are the same vms we identified earlier when using azure migrate with a few simple clicks we're able to migrate these virtual machines to avs in a matter of minutes you can extend and migrate your existing vmware environment to azure and continue to take advantage of your existing investments with azure vmware solution you can also take advantage of the complete azure ecosystem deploy avs through the azure portal and get started migrating or extending your on-premises vmware environment today and back to you aaron wow wasn't that simple just think of how avs enables you to preserve your existing investments and benefit from all of azure's cloud capabilities including the azure hybrid benefit and much more additionally we are expanding spot virtual machine capabilities to help you optimize your budget available today you can simulate evictions to test the behavior of your applications and ensure they tolerate interruptions you can also dramatically improve the overall run time of your scale out applications by letting azure redeploy any spot virtual machine that might have been evicted klaus jepsen the cto of unit 4 shared that customers and service industries have always needed to react to market conditions quickly and efficiently to bring customers the hyper speed flexibility and reliability they need unit 4 chose microsoft azure the collaboration with microsoft has allowed us to reimagine how business software is built and delivered and whether you plan on extending your infrastructure to the cloud using a hybrid approach or fully migrate we are committed to simplifying your journey and trust me i understand that cloud migration can be overwhelming so to simplify your journey across infrastructure apps and data we built azure migrate a single hub for data center migration with end-to-end visibility of the entire migration process and while azure migrate is not new we continue to broaden the suite of tools available starting today you can seamlessly assess your sql server estate in azure migrate with new discovery and assessment capabilities you can also automate the migration of vmware virtual machines with powershell support and equip yourself with partner resources from zerto and finally you can accelerate your migration of containerized applications such as net and java web apps and streamline your path to azure kubernetes service broth is here to show us just how easy it is to migrate containerized apps to azure over to ubera thanks erin app migration is an important mechanism for customers to unlock the productivity and innovation of the cloud and we are committed to making this process easy for customers with azure migrate when migrating web-based applications to azure azure app service offers a fully managed platform with built-in infrastructure maintenance security patching and scaling and is a great choice for running your web-based applications but if you needed more control over your infrastructure azure kubernetes service can be a great choice too let's see how azure migrates new app containerization tool helps you containerize java and asp.net web apps and simplify migrations to aks for my demo i'll be migrating a java based music streaming app called airsonic that is running on an apache tomcat server on premises to containers on aks using the app containerization tool i've already migrated the mysql database for the app using the azure database migration service from the app containerization tools web-based interface i can discover the web apps running on my app server the tool discovers app configurations and dependencies by connecting to the app server i select the apps to containerize and review discovered configurations i can parameterize app configurations such as database connection strings and more content folders or directory paths to persistent volumes i then review the tool generated docker file and can further customize it before i build the container image for the app with the app container image built complete i am now ready to deploy the app in aks i specified deployment values for the settings that i parameterized review the generated kubernetes deployment spec and can even deploy the apps to aks from right here and there you have it using the azure migrate app containerization tool i was able to take a java based web app that was running on servers containerize it through a templatized process and migrated to aks with the app now running in aks i can continue to further optimize my application and application management processes with our investments in azure migrate like this new app containerization tool we offer you the choice that you need while simplifying the cloud migration journey for you back to you erin thank you bharath for introducing us to this new capability and for you watching think of how quickly you will be able to modernize your applications with this new capability in azure migrate beyond the capabilities available in azure migrate with the azure migration program or amp you can receive proactive guidance and hands-on technical assistance to ensure high confidence at every stage of your migration journey amp is expanding support for app modernization scenarios beyond.net and java web apps to cover all of your major open source application frameworks such as lamp-based apps into azure kubernetes service and with this expansion amp enables your choice of compute as you look to modernize your applications on azure azure migrate and amp are a powerful combination of tools and resources to help you and we don't stop there in january sap and microsoft announced an extensive expansion of our endorsed cloud partnership to automate migration and operation of sap s 4hana on azure and integrate microsoft teams across sap solutions with this expansion you can improve collaboration and productivity by linking core sap business processes with everyday microsoft solutions now thanks to the partnership we've had with sap customers broadly favor azure when moving their sap applications to the cloud and one such customer is carhart thanks to microsoft teams carhartt rolled out a reliable and scalable sap s4hana infrastructure running on azure in the middle of the pandemic when it comes to running your mission critical apps and operations in the cloud secure business continuity is top of mind azure ensures you can achieve high availability for your applications while at the same time taking advantage of our continued investments that provide local and data resident cloud services for example since we last met in september we announced the delivery of data center regions across 15 new countries and launched availability zones in five regions to bring your apps and data closer to your business now you may be wondering how can i easily leverage these new regions and zones in azure well azure resource mover provides the agility and flexibility to move resources between azure rejoins and the service is generally available now with azure site recovery integration you can also perform disaster recovery to any secondary region across the world and now within availability zones azure site recovery makes it possible to replicate and orchestrate the failover of apps in azure to support your business at various levels of business continuity plans now have you ever had the need to reserve compute capacity to ensure success for future vm deployments well now you can new on-demand capacity reservations help you achieve a higher level of assurance for the deployment and maintenance of your mission-critical apps running on azure vms as well as for disaster recovery scenarios plus we're announcing more features to increase the availability of your apps and data zone redundant storage support for managed disks provides high availability for your workloads by protecting your data in the event of a zone failure such as a natural disaster or hardware issue this provides zero rpo and ensures that your mission critical applications do not experience any downtime and what if we could simplify the way you manage your entire estate with backup well today azure backup center is generally available so you can monitor operate govern and optimize data protection at scale with an aggregate view of your inventory all from a single portal every conversation i have with customers at some point surfaces the question how to best keep apps and data secure with auto key rotation you can now enable all disks snapshots and images to be automatically updated when a new version of an encryption key is created your data is always secure with the latest key and you no longer need to manually update your azure resources additionally you can protect data in use on all azure vms with enhanced features in confidential computing securely deploy and boot virtual machines with verified drivers with our new trusted launch this hardens your azure workloads with security features that protect against boot kits root kits and kernel level malware we're also safeguarding sensitive data in azure with sql always encrypted secure enclaves and finally we're enabling secure orchestration of confidential containers on azure kubernetes service another important layer of security is network security we are bringing next-gen firewall capabilities with the new azure firewall premium enhancing the visibility control and protection for virtual networks to secure your applications and content delivery the new azure front door premium natively combines key capabilities such as security load balancer and private link with cdn technology joining me is amit to show us how to accelerate app protection adopt a zero trust approach and drive business success in a few simple clips with azure front door premium over to you emmett thanks erin today i'm excited to show you the simplicity of adding security and acceleration to your applications using a zero trust approach one of my favorite new additions to the azure front door is quick create experience which enables you to create a new front door to origin of your choice with just a few simple clicks so let's get started with creating a front door let's click on the continue to create a front door button this brings up the provisioning page where we will choose a subscription and a resource group we'll also give a name to our front door let's call it airsonic aft we have announced two skus to the front door standard sku is optimized for content delivery high throughput use cases the premium sku builds on the capabilities of the standard sku and offers integration with valve ddos and private link service i'm going to choose the premium sku we also have to give an endpoint name which is an entry point into the front door this is where you will point your custom domains and your traffic to so let's give it a name of airsonic ep front door has built-in integration with many services for this demo let's choose app service called airsonic app service now one of the key investments we have made is our integration with private link so that your origin need not expose a public internet facing endpoint if your origin supports private link service then with just a single click of a button you will able to allow afd to talk privately to this app service let's also enable caching and compression to the front door finally in premiums queue we have deep integration with vaf you can either choose an existing wave policy or create a new wave policy let's create a new wave policy now with a single click of a check box you can also add protection against bot and automated attacks so let's use that and click on the create at this point the front door is configured let's click on review and create to finally start the deployment process at this point it is deploying a front door it is provisioning a new tls certificate which is azure managed it is configuring a vaf policy and it is also configuring the origin for private access all of this is completed in a few seconds at this point you have created a front door and secured and accelerated your application thanks for the demo back to you thanks emma did you think it could be that simple to secure apps using a zero trust approach now let's shift focus to how you can easily and seamlessly achieve application scalability to meet the growing demands of your business building on a zero trust approach azure offers multi-layered built-in security capabilities across the physical network the virtual network all the way to the application and security does not come at the expense of performance with more than 60 regions worldwide we strive to be the closest cloud provider to you so that we can absorb your traffic on our global network off the internet as soon as possible and your traffic remains on our private network by default as a result 99 of azure inter-region latencies beat the internet benchmark which means an optimal application performance for you at all times in fact one of our partners riversand benefits from the wide reach availability and performance of azure so that they can deliver the uptime and redundancy that their customers require we continue to expand on the ability to scale your apps with ease there are so many ways to build your load balancing solutions and determining the best architecture can be challenging now you can easily choose the right service based on your requirements with services selection tool from the azure portal you can also load balance across ip addresses such as containers vms and virtual machine scale sets that are associated with your load balancer in the back end pool with the new azure load balancer and finally we know your changing business demands create changing requirements our goal is to provide you with the flexibility to run what you need when you need all while achieving your desired performance in managing costs with azure virtual machine skill sets you can create and manage a group of load-balanced vms which can automatically increase or decrease in response to demand virtual machine scale sets can support a variety of scenarios from big data and hpc to running your mission critical apps and providing regional resiliency and load balancing capabilities simplify vm deployment in availability zones and offer centralized operations across your vms now let's see how virtual machine scale sets in conjunction with azure front door can deliver a resilient infrastructure for a multi-tier application varoon turning it over to you thank you erin i'm really excited to show you how a mission critical ecommerce store can stay up and be available through different failure scenarios using azure vm scale sets load balancers and azure front door i will walk through how you can configure azure to tolerate failures of an app server or an entire zone or an entire region without manual monitoring with just few simple clicks i was able to set up four vm scale sets two in the primary region in each zone to in the secondary region in each zone with a load balancer in front of it and an azure front door the front door is configured to route traffic in priority order from region 1 and region 2. the vm scale sets
are configured to repair instances which become unhealthy to cause an app server failure let's kill iis as you can see azure has detected that the vm is unhealthy and will now be replaced our business critical site is still up and running what if one of the zone fails let's try to simulate a zonal failure by deallocating all the vms in zone one all my vms in zone 1 are now stopped and my ecommerce site is still up and running now let's simulate a region failure by deallocating the vms in zone 2. as you notice all the vms in zone 2 are also down meaning only the vms in the secondary region are up and running azure front door will detect the primary region to be down and degraded and will route all the traffic to the secondary region if i jump back to the website you would notice the customers did not find any issues in their experience with virtual machine skill sets load balancers and azure front door you can achieve high availability resiliency and uptime that your business deserves back to you erin that was pretty amazing application resiliency at scale thanks faroon for showing us how simple it was to achieve starting today you can further increase the availability of your apps and achieve more operational agility with simplified deployment management and scalability of apps with the new flexible orchestration mode you can also ensure sustainable high performance during planned events and keep your costs down with performance tiers disk performance scales up without downtime or without increasing disk size so that you can seamlessly run events such as seasonal promotions or training environments and when the level of performance is no longer needed you can reset the tier to the baseline and save money i've shared with you today ways to simplify the deployment management and accessibility of your mission critical applications but what about support for your most complex workloads at microsoft our goal is to empower innovators around the world and every year we see organizations drive projects related to the environment to public health energy sustainability and more finding solutions to these important challenges requires a huge amount of focused computing power for agility and leading-edge performance azure's purpose-built high-performance computing fuels the most power intensive ai workloads and distributes massive compute power to handle your most complex scenarios all of this is based on proven technology and design principles enhanced with the best features of the cloud with azure quantum you can accelerate development by building quantum solutions once access the latest optimization technologies from microsoft and our partners and broaden your learnings with access to the most diverse set of quantum technologies all from one centralized place as i said earlier azure really meets you where you are today and prepares you for the needs of tomorrow it is such an exciting time for cloud adoption what we covered a lot today there's even more to learn so for more information training and to join our community of technical professionals please visit aka dot ms slash azure ios resources we also have an exciting set of azure infrastructure sessions this week we hope to see you there now thank you for your time today i hope you walk away with just one thing azure can do to make your lives easier and help you with your business transformation i personally look forward to hearing how you innovate with these new capabilities see you at the next ignite
2021-03-11 16:55