Cloud first: Be prepared SharePoint/SQL Saturday Cambridge Alan Eardley 9th September 2017

SAY THANK YOU TO OUR SPONSORS!

Sponsor Raffle!!! Each sponsor stamp will opt you into their raffle prize and mailings Collect 9+ sponsor stamps on your Badge to be eligible for the Xbox Hand entire Badge/ ribbon back into registration desk at end of day We will draw Badges for prizes at 5pm in Cromwell (if you are drawn and do not have the pre-requisite stamp/s….. You lose!) SQLCloud: XBox One-S with Forza Horizon 3 Bundle Amazon Fire TV with 4K Ultra HD Raspberry Pi 3 Starter Kit dbWatch: Apple iPad Mini Skybow: Marshall Speaker Coeo: A free place on any Coeo training course, RRP £600 Edison365: Helicopter ride (lunchtime session prize) and a Fire TV Stick Pyramid Analytics: Amazon Echo Quest: Samsung Gear S2 Smartwatch DBPro/ SQLGovernor: Splash-proof JBL bluetooth speaker Redgate: SQL Monitor License - with 12 months support and upgrades Axioworks: Amazon Echo Dot Idera: $100 Amazon card Lightning Tools: Lego Technics Race Car SQL Sentry: SQL Sentry license and 1 year of support (worth $2994) Locke Data: R for Data Science: Import, Tidy, Transform, Visualize, and Model Data SharePoint Unite /BMM Media: A free pass to SharePoint Unite 2017 conference in Haarlem, Netherlands, on the 25th & 26th October. worth €699. travel and hotel not included PASS: Recording (download) of all sessions from PASS Summit 2016

Social Make sure you tweet on #spscambridge or #sqlsatcambridge During the event we have Giant Jenga, Sack races and Conker Fights! After event, join us for a post event SharePint/ SQLPint from our bar Don’t forget to thank Sponsors, Volunteers and Speakers! The event will close at 6.30pm

About me Twitter: @al_eardley 20 Years in IT MCSE: Cloud Platform and Infrastructure MCSE: Productivity MCSE: SharePoint Prosci© Change Practitioner Certified Scrum Master PRINCE 2 Practitioner

What will I cover? Why move to the cloud? Scenario objectives Hurdles to overcome Key is the interface

Why move to the cloud?

Hardware Fewer machines Less network infrastructure Fewer data centres Reduce the cost of management Reduce the cost of high availability Reduce the cost of disaster recovery Patching and upgrading of OS and Software

Flexibility and scalability Increased access speed Pay for usage Dynamically scale on demand Global distribution of resources

Sample scenario

Acme.com Global company Growing rapidly Data centres need to be increased in capacity Existing solution at end of life

Solution objectives Replace on-premises project management tool with cloud based solution Rearchitect for cloud best practices Migrate existing data Continuous reporting across both platforms during migration period Increased delivery of enhancements Increased access globally

Functionality Use Project Online Use SharePoint Online Build data warehouse of data from Project and SharePoint Online Import legacy data from on-premises application Report on data using existing tools Report on data using PowerBI Extend data warehouse with other data in the future

Technology vision Office 365 and identity management

Technology vision Build of data warehouse and surface in PowerBI

Technology vision Import data from legacy solution

Technology vision

Hurdles

Identity On-Premises acme\alea01 alan.eardley@acme.com Cloud Other Other systems Other solutions Other products Other devices Without the ability to access the cloud, the project stops Different technical approaches such as cloud identity, federation and passthrough Common issues are more related to changes in user behaviour Paul Hunt @ 13:45

Integration Access to IaaS Access to PaaS Access to SaaS Kerberos Java

Security Azure is a data centre Manage permissions to resources Expose endpoints direct from Azure Intrusion detection by default Like any other data centre, access needs to be controlled Delegation of permissions works well in Azure – grant permissions to different resource groups containing logical sets of Azure resources Azure resources have different methods for exposing endpoints Azure SQL has firewalls to allow restriction to allowed IP addresses by default Web based applications can accept traffic from anywhere, or be restricted to a range of IP addresses

Network On-Premises to Azure Data Centre vulnerability VPN Bandwidth Data Centre vulnerability Routing to single DC DC goes down Speed Global connectivity Tunnel to Azure – 100MB BA Azure can scale globally – not if all traffic is routed through a single datacentre

Network topologies

Data access

Read data direct from Azure Data access Push data into Azure Read data direct from Azure Need a VPN?

Application lifecycle management Tenant level Site Collection level Multiple sets of resources Integration - Identity Environments SaaS – no access to DBs Tooling GUIDs Rollover Scripted, repeatable, automated Environmental differences Deployment

Disaster recovery and archiving for SaaS SaaS applications rely on vendor tools Legislative archiving requirements Can’t roll back to a point in time Can’t restore to a different tenant

Takeaways

Assess in advance Identity Security Network access Data access Application lifecycle management Disaster recovery and archiving Change management

Validate concerns and risks Planning Plan for technology Validate concerns and risks Plan for user adoption