Introduction to Hyper-V Management for the VMware Admin Symon Perriman Alex Karavanov VP, Business Development Director of Solutions Engineering Symon@5nine.com AMK@5nine.com 5nine Software, Inc. www.5nine.com Twitter @5nine_Software June 18th, 2015
Introduction to Hyper-V Management Comparing Hyper-V to VMware Migration to Hyper-V Management for Hyper-V Security for Hyper-V Summary and Discussion
Meet the Speakers Symon Perriman is 5nine Software’s VP of Business Development and Marketing. Previously he was Microsoft's Senior Technical Evangelist and worldwide technical lead covering Hyper- V, Windows Server, and System Center. He has trained millions of IT Professionals, holds several patents and dozens of industry certifications (including VMware VCP), and in 2013 he co-authored "Introduction to System Center 2012 R2 for IT Professionals" (Microsoft Press). Contact Symon@5nine.com or Twitter @SymonPerriman Alex Karavanov manages 5nine Software’s Solutions Engineering team. He has been in information security field for more than 10 years. Alex leads major 5nine Software management and security projects worldwide and aims to deliver the best efficiency and protection of the virtual infrastructures, to achieve the highest system performance and security level. He also holds multiple industry certifications. Contact AMK@5nine.com or Twitter @5nine_Software
Meet 5nine Software Founded in 2009 Headquartered in Chicago with offices worldwide More than 60,000 users globally, representing companies and datacenters of all sizes The #1 leading solutions provider of security & management applications for Hyper-V environments 5nine Cloud Security - Agentless security for Hyper-V, System Center and Azure Pack 5nine Manager - Integrated Hyper-V and Cluster Management for SMB 5nine V2V Easy Converter - Free VMware to Hyper-V virtual machine migration tool www.5nine.com
Upcoming Webinars from 5nine Software Tuesday, June 23 – [Russian] Security Best Practices for Hyper-V Wednesday, July 8 – Hyper-V Security Essentials for the Infrastructure Admin Tuesday, July 21 – Scale & Secure Microsoft VDI on Hyper-V with Enterprise-Class Protection for Desktops presented with Unidesk Thursday, August 13 – Azure Pack Essentials: Secure & Bill your Customers presented with Cloud Cruiser Wednesday, August 19 – Hyper-V Security Best Practices presented with System Center Universe Visit www.5nine.com or join our mailing list to stay informed
Comparing Hyper-V to VMware Introduction to Hyper-V Management for the VMware Admin
Comparing Management Technologies Windows Server Management Marketing 4/21/2017 Comparing Management Technologies Service Mgmt. SC Service Manager vCloud Automation Center Automation 5nine Cloud Security PowerShell SC Orchestrator vCenter Orchestrator Self-Service 5nine Cloud Security Azure Pack SC Azure Pack vCloud Director Protection 5nine Cloud Security SC Data Protection Manager vSphere Data Protection Monitoring 5nine Manager SC Operations Manager vCenter Ops Mgmt. Suite VM Management 5nine Manager SC Virtual Machine Manager vCenter Server Hypervisor Hyper-V vSphere Hypervisor © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Comparing Virtualization Strategies 4/21/2017 Comparing Virtualization Strategies VMware Hyper-V Established virtualization leader Also a leader in the industry Investing in management stack through acquisitions, but limited integration Mature & integrated management stack Less investment on workloads Best (or only) platform for many workloads New to cloud & hybrid cloud Mature cloud platform & integration Unclear roadmap for storage, networking & ISV partners Growing ISV partner ecosystem and defined SDN/SDS roadmap Broadest guest OS “support” Similar OS support and new Linux investments Cost is higher, usually paying both VMware and Microsoft (for Active Directory) Offers the free Hyper-V Server 2012 R2 for virtualization hosts (plus free migration tools) © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Windows Server Management Marketing 4/21/2017 Hyper-V Versions Windows Server Server with a GUI Server Core Installation Many roles available including Hyper-V Hyper-V Server Free Standalone Download Contains hypervisor, driver model & key virtualization components Server Core minus other roles http://aka.ms/HyperVServer All versions have identical virtualization capabilities, including scale, features, high-availability and replication © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Hyper-V’s Growing Market Share Q1 CY2008 Windows Server 2008 Released Q3 CY2009 Windows Server 2008 R2 Released Q3 2012 Windows Server 2012 Released Q4 CY2014 Windows Server 2012 R2 Released Change Since Hyper-V Released Microsoft Hyper-V Server 0.0% 11.8% 26.0% 30.9% +30.9 Pt 40.1% 46.8% 51.5% 47.8% +7.7 Pt VMware ESXi Source: IDC WW Quarterly Server Virtualization Tracker, September 2014. Hyper-V and ESX + vSphere shares based on percent market share among all x86 new hypervisor deployments (nonpaid and paid). x86 hypervisor shipments include those sold on new servers, new nonpaid hypervisor deployments aboard new servers, and new hypervisor sales and nonpaid hypervisor deployments on installed base servers. Share gains for Hyper-V and ESX + vSphere come in part from market share transfers from older products from same vendors.
2014 Gartner x86 Virtualization Magic Quadrant Windows Server Management Marketing 4/21/2017 2014 Gartner x86 Virtualization Magic Quadrant Thomas Bittman, Mark Margevicius, Philip Dawson, July 2, 2014 Microsoft a leader four consecutive years “Leaders in this market have a clear strategy and road map for their offerings, understand virtualization's role in infrastructure and operations transformation, and have a clear vision with respect to private cloud, hybrid cloud, and public cloud computing (in terms of the role of virtualization). Most importantly, they have a strategy to communicate their vision to their market and are executing well from a sales and market share perspective.” Download the report at no cost http://www.gartner.com/technology/reprints.do?id=1-1WR6HLK&ct=140703&st=sb 9% This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Microsoft. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. All statements in this report attributable to Gartner represent Microsoft’s interpretation of data, research opinion or viewpoints published as part of a syndicated subscription service by Gartner, Inc., and have not been reviewed by Gartner. Each Gartner publication speaks as of its original publication date (and not as of the date of this presentation). The opinions expressed in Gartner publications are not representations of fact, and are subject to change without notice. © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Migration to Hyper-V Introduction to Hyper-V Management for the VMware Admin
5nine V2V Easy Converter FREE host to host conversion of VMware VMs to Microsoft Hyper-V VMs Runs on all version of Windows Server, including Microsoft Hyper-V Server and Core installations Guest OS Windows Server 2012 R2, 2012, 2008 R2, 2008, 2003 (x86 and x64), Windows 2000 Advanced Server Windows 8.1, 8, 7 Linux Ubuntu, CentOS Convert to Generation 1 and Generation 2 VMs Modify target guest configuration parameters Performs up to 30% faster than other solutions
Migration Steps Select VMware ESXi source server Select VMs Edit VM Configuration Select Hyper-V destination server Verify Hyper-V destination host resources Specify temporary storage path Migrate!
How it Works The VM’s configuration settings are remapped VMware (.vmx) to Hyper-V (.xml) Copies the name, memory, virtual networks, virtual disks, etc. The VM’s hard disk is copied to a temporary location, then saved VMware (.vmdk) to Hyper-V (.vhd/x) OS disk Data disks A new VM is created on Hyper-V by combining the configuration file and disk
How to Acquire 5nine V2V Easy Converter Microsoft Ignite 2015 4/21/2017 2:38 PM How to Acquire 5nine V2V Easy Converter www.5nine.com or Sales@5nine.com V2V Easy Converter: http://www.5nine.com/vmware-hyper-v- v2v-conversion.aspx Free version suitable for most projects Paid version includes APIs, automation & cluster support Licensed per user Unlimited number of VMs Sales direct, online, or through resellers & solution integrators © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Management for Hyper-V Introduction to Hyper-V Management for the VMware Admin
Manage the Entire Virtualization Infrastructure Manage all resources Datacenter Cluster Host VM Network Disk Designed for SMBs that cannot use System Center Looks & feels like VMware vCenter for a familiar experience
Summary View Essential system status and alarms in a convenient visual format Different views for different levels (datacenter, cluster and host) Sortable tab view that can be filtered by hosts, VMs and clusters Detailed info about the health state of clusters, hosts and VMs in convenient graphs
Datacenter Management Local and remote Agentless – uses PS or WMI Automatic discovery File Manger for local navigation Virtual Transfer Disk
Cluster Management Review cluster information Pause/resume cluster nodes Live migration Add/remove VMs to/from cluster
Host Management Supports older versions of Hyper-V 2012 2008 R2 SP1 Fast remote management configuration Hyper-V host templates to clone settings to other hosts
VM Management Connect via Hyper-V VM Connection, Microsoft RDP, FreeRDP All VM Guest OS CentOS OpenSUSE Ubuntu RHEL Server FreeBSD Debian Oracle Linux Virtual SAN and networks management Checkpoints
Runs Directly on Core & Hyper-V Server Local GUI Microsoft Hyper-V Server Windows Server Core Built-in File Manager Fully functional
Monitoring Graphical dashboard that shows key system status indicators on host and VM level Customizable display parameters for virtual machines (organize your view by virtual machine OS, type, and more) Ability to exclude certain hosts from monitoring All of the historical data is stored in the database
System Reports Per Hyper-V host extensive report Exportable to PDF, Word or Excel format Multiple report sections: Host information Summary CPU Memory Network Disk Checkpoints DVD Integrations Services Detailed VM information
Resource Library Create “master” copies of your virtualized resources in the Library Store VM templates, virtual hard disks and ISOs Created a VM from a template or from an existing VM View and adjust new VM settings prior to creation
Integrated Logging All Hyper-V & cluster logs in one place Hyper-V-Config Hyper-V-EmulatedNic Hyper-V-High-Availability Hyper-V-Hypervisor Hyper-V-Integration Hyper-V-Shared Hyper-V-SynthFC Hyper-V-SynthNIC Hyper-VSynthStor Hyper-V-VID Hyper-V-VMMS Hyper-V-VmSwitch Hyper-V-Worker
Best Practice Analyzers Built-in scanning for Hyper-V & other roles Configuration compliance to Microsoft’s best practices Remediation recommendations
Load-Balancing & Automation Dynamic Optimization - automatically moves VMs between hosts based on resource utilization In-box automation Use PowerShell for Hyper-V, clustering, etc.
Email Alerts & Notifications Email configuration according to customized thresholds (setting up critical indicators for VM/host performance) Real-time email notifications about virtual machine live migrations and storage live migrations Immediate alerts on active protection agents or antivirus and antimalware scans threat detection
Admin Tasks Logging Monitor all the actions performed on the infrastructure and centrally observe them on the Task Logs console Check background tasks progress status
Hyper-V Replica Support Replication configuration on per Hyper-V host level Replication health real-time monitoring VM Replication Failed notifications
Integration with Antivirus (Upgrade) The only agentless protection built for Microsoft Hyper-V Automatic & immediate protection for VMs Possibility to choose between 2 industry- leading AV engines Kaspersky Lab ThreatTrack VIPRE Installs antivirus only once per host for full and subsequent incremental scans CBT Technology to scan up to 70 times faster than traditional full system scans Real-time protection via optional Active Protection agent
5nine Manager
How to Acquire 5nine Manager Microsoft Ignite 2015 4/21/2017 2:38 PM How to Acquire 5nine Manager www.5nine.com or Sales@5nine.com 5nine Manager: http://www.5nine.com/manager Licensing options Subscription license is available per 2 CPU Upgrade to 5nine Manager with Antivirus is available upon request Sales direct, online, or through resellers & solution integrators © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Security for Hyper-V Introduction to Hyper-V Management for the VMware Admin
Automatically & Immediately Protect Everything It is impossible to guarantee security for VMs with traditional security (“endpoint protection”) Requires installation Slows deployment Cloud environments are dynamic Virtual machines Virtual disks Virtual networks Virtual switches
How 5nine Cloud Security Works Hyper-V Virtual Machines Virtual Network Adapters Virtual Switch Hyper-V Host Physical Network Adapter
Host-Based Protection
Abstract & Hide Security from Users The “public” or non-technical users are using the provider’s hardware Assume the user does not want to worry about security Manage security for them Update signatures for them Ensure they cannot disable security Accidently Purposely With a bad intention Centrally manage security for users and tenants
Guarantee Isolation & Resources Isolation and privacy is critical in a cloud An admin cannot access a VMs A VM cannot affect the host A VM cannot affect another VM Use Quality of Service (QoS) or throttling for memory, CPU, network & storage bandwidth Avoid Denial of <resource> attacks
Protect All Virtual Networks 4/21/2017 Protect All Virtual Networks Traditional security protect traffic between hosts Does not protect traffic between VMs on the same host Virtual Network Types External Internal Private Traditional Security Appliance © 2015 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Use a Single Solution for all VMs Intercept traffic before it gets to the VM Manage traffic at the network protocol level TCP, UDP, GRE, ICMP, IGMP, etc. Hyper-V Guest OS List: aka.ms/HyperVGuestOS Server Windows Server 2012 R2 Windows Server 2012 Windows Server 2008 R2 Home Server 2011 Small Business Server 2011 Windows Server 2003 Client Windows 8.1 Windows 8 Windows 7 Windows Vista Windows XP Linux & UNIX CentOS Debian FreeBSD Oracle Linux Red Hat RHEL SUSE Ubuntu
Active Protection on the Network Immediately identify and alert on incoming threats 01010011 01111001 01101101 01101111 01101110 00100000 01110010 01110101 01101110 01110011 00100000 00110101 01101110 01101001 01101110 01100101 00100000 01010011 01101111 01100110 01110100 01110111 01100001 01110010 01100101 00100000 00111010 00101001
Fast AV Scanning Agent-based scanning can cause “scanning storms” Decreases VM performance for all users 5nine uses its proprietary Change Block Tracking driver Scan only changed blocks on disk Scan up to 70x faster
Automated Task Management Enables scalability Ensures consistent SLAs Eliminates human error For tasks with high resource utilization, stagger the action across the virtualized resources
Internal, Inbound & Outbound Threats 5nine Cloud Security Management Server / VM Public Internet Unusual Traffic Normal Traffic Hyper-V Hosts Database or SQL Server
Centrally Manage Security Use antivirus / antimalware signatures from industry leaders Kaspersky Lab & ThreatTrack VIPRE Use intrusion detection rules from industry leaders Cisco Snort Use a centralized signature database to simplify updating No need for users to keep security updated
Provide High-Availability for Security 4/21/2017 Provide High-Availability for Security 5nine Cloud Security Management Server / VM 5nine Cloud Security Management 5nine Console | 5nine PowerShell | Azure Pack Extension | SCVMM Redundant Management Group Branch Office 5nine Sync Hyper-V Hosts & Clusters SQL Server SQL Server SQL Server SQL Cluster © 2015 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Security as a Service (SECaaS) The Azure public cloud is not available to everyone Azure Pack allows you to run Azure-like services in your datacenter Differentiate your services by offering improved security Provide guided service selection to maximize monetization Simply security through templates
Maintain Compliance Requirements Virtualization & cloud security is different Regulators require it Customers expect it Hackers know how to exploit it A single security breach can ruin your reputation…and business… “Most partner solutions are nice to have. 5nine Cloud Security is the only must have” -Alex Verkinderen (@AlexVerkinderen) Microsoft Hybrid Cloud Architect & MVP
5nine Cloud Security
How to Acquire 5nine Cloud Security Microsoft Ignite 2015 4/21/2017 2:38 PM How to Acquire 5nine Cloud Security www.5nine.com or Sales@5nine.com Cloud Security: http://www.5nine.com/CloudSecurity Licensing options Licensed per 2 CPUs Flexible pricing based on VM density Service provider licenses and volume discounts available Sales direct, online, or through resellers & solution integrators © 2015 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Summary & Discussion Introduction to Hyper-V Management for the VMware Admin
Summary Hyper-V is now enterprise-ready 5nine provides VMware-like management & security solutions 5nine Solutions for Hyper-V V2V Easy Converter Manager Cloud Security SCVMM Plug-in Azure Pack Extension Visit www.5nine.com for more information
Upcoming Webinars from 5nine Software Tuesday, June 23 – [Russian] Security Best Practices for Hyper-V Wednesday, July 8 – Hyper-V Security Essentials for the Infrastructure Admin Tuesday, July 21 – Scale & Secure Microsoft VDI on Hyper-V with Enterprise-Class Protection for Desktops presented with Unidesk Thursday, August 13 – Azure Pack Essentials: Secure & Bill your Customers presented with Cloud Cruiser Wednesday, August 19 – Hyper-V Security Best Practices presented with System Center Universe Visit www.5nine.com or join our mailing list to stay informed
Resources 5nine Cloud Security: http://www.5nine.com/CloudSecurity 5nine Cloud Security Azure Pack Extension: http://www.5nine.com/azure-pack-extension 5nine Cloud Security SCVMM Plugin: http://www.5nine.com/5nine-security-for-hyper-v-product.aspx#scvmm 5nine Manager: http://www.5nine.com/manager 5nine V2V Easy Converter: http://www.5nine.com/vmware-hyper-v-v2v-conversion.aspx
Copyright © 2015 | 5nine Software, Inc. | All Rights Reserved Discussion 5nine Software, Inc. Sales Phone US: +1 630-288-4700 Oak Brooke Pointe 700 Commerce Drive, Suite 500 Oak Brook, IL 60523 United States Phone Europe: +44 (20) 7048-2021 Email: Sales@5nine.com Technical Support Mailing Address Phone US/Canada Toll Free: +1 877-275-5232 1385 Highway 35, Suite 133 Middletown, NJ 07748 USA United States Email: TechSupport@5nine.com Copyright © 2015 | 5nine Software, Inc. | All Rights Reserved