Disaster Recovery for SharePoint 2013 with Azure Neil Hodgkinson M349
Neil Hodgkinson Pre-Microsoft Microsoft (2005-) Contact Process Chemist (Drugs, Poisons and Explosives) CSC SharePoint Specialist – 5 Years Microsoft (2005-) SharePoint PFE - 5 Years SharePoint Service Engineering O365 - 3 Years Office 365 CXP CAT - Current MCSM SharePoint Instructor Team Contact Email – neil.hodgkinson@microsoft.com Twitter - @nellymo
Agenda Disasters and Recovery (DR) DR Terms DR scenarios DR tools ASR Setup And Configuration SharePoint specifics
Disaster Types Forecasted event - the impact can be foreseen (such as a weather system event such as a hurricane) and can be mitigated through prior planning. Un-forecasted event - the organization cannot provide a mitigation plan due to the immediate timing of the event itself (such as an earthquake or cyber security attack) or the realization of previously accepted risk factors.
1 in 4 businesses never re-open their doors after a disaster 4/23/2017 Disaster Recovery “The process, policies, and procedures that are related to preparing for recovery or continuation of technology infrastructure which are vital to an organization after a natural or human-induced disaster.” Disaster Recovery is about recovering the critical operations that enable the business to function A company denied access to its mission-critical data for more than 48 hours will likely be out of business within the year 1 in 4 businesses never re-open their doors after a disaster © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Define Business Continuity Management Business Continuity Management (BCM) is a management process or program that defines, assesses, and helps manage the risks to the continued running of an organization. Focuses on creating and maintaining a business continuity plan, which is a roadmap for continuing operations when normal business operations are interrupted by adverse conditions. These conditions can be natural, man-made, or a combination of both. A disaster scenario is not a business as usual scenario How long can my business NOT perform this function without suffering
Planning and Drivers Multi stage planning process Analyse Define Document Implement Most – Import TEST it and TEST it again A business impact analysis A threat and risk analysis A definition of the impact scenarios A set of documented recovery requirements Solution design or identified options, an implementation plan, a testing and organization acceptance plan, and a maintenance plan or schedule
Disaster Recovery Terms RTO Recovery Time Objective Fail over in Minutes. DR Drill each action recorded for total time. RPO Recovery Point Objective. How much data loss? Near-Synchronous as low as 30 second replication.
Disaster Recovery Options and Tools SharePoint Backup/Restore SQL Server Log Shipping Mirroring Always On Availability Groups Third Party Options Azure Site Recovery !
ASR – Azure Site Recovery Replication of Machines based on admin defined policies. Supported Technologies SQL AlwaysOn Hyper V System Center VMware VMs to VMware VMs NetApp/HP/EMC SAN replication And………..more…..
Protect Customer’s Application On-premises to Azure protection with ASR Orchestration and replication Microsoft Azure Site Recovery Enterprise & HSP primary site Windows Server Orchestration and replication Microsoft Azure Site Recovery SMB & branch primary site Windows Server Orchestration and replication Microsoft Azure Site Recovery Enterprise, SMB & HSP primary site VMware/Physical GA Use Azure as your replication site Automated VM protection and replication Remote health monitoring Customizable recovery plans No-impact recovery plan testing Orchestrated recovery of tiered applications Replication into Azure for SMBs and remote branch offices without System Center Key features include: NEW: Support for heterogeneous environments
4/23/2017 Protect Customer’s Applications On-premises to on-premises protection with ASR Microsoft Azure Site Recovery Communication channel Replication channel: Hyper-V Replica or SAN replication Primary site Windows Server Recovery site Microsoft Azure Site Recovery Download ASR Scout Replication and orchestration channel Primary site VMware/Physical Recovery site VMware Use customer’s replication site Automated VM protection and replication Remote health monitoring Customizable recovery plans No-impact recovery plan testing Orchestrated recovery of tiered applications Key features include: NEW: Support for heterogeneous environments © 2015 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
ASR – Azure Site Recovery Can be Synchronous Near-Synchronous Or whatever the business requirement is Can store way points to restore to. Single Button TRUE Failover Paired with System center – Automated SUPER Cheap insurance
ASR – Azure Site Recovery Costs – mileage will vary 2 WFE, 3 APP, 1 AlwaysOn (2 SQL) = $378 USD month $54 USD per instance, per month OnPrem-Azure NO add. costs VMs stored in Storage Only cost more via IaaS when you fail over via EA = 100GB storage, 100GB fail back Other purchased plans don’t include storage $16 USD per instance, per month OnPrem-OnPrem
ASR – Azure Site Recovery Data Costs First time Sync FULL VHD needs to be pushed over the wire After full sync, only deltas are pushed Only the data used in the VHD (not the virtual size) will be sent to Azure and stored in Azure* 3rd party compression tools are available and more coming
ASR – Azure Site Recovery Connection needed: Public internet - Default Site-2-Site VPN ExpressRoute Doesn’t actively “support” VHDX yet. Doesn’t support Gen2 (yet)
Physical to Azure Mobility Service auto installed on each physical Intercepts changes in workloads sends to Process Server Encrypts and sends changes to Master Target Writes those changes to the Target committing them to Azure Storage / IaaS Required: Config Server. Fill in the blanks Azure can build it for you!
Physical 2 Azure Requirements Server 2012 R2, Server 2012 or Server 2008 R2 SP1 Hostname, Mount Points, Device Names and system path in English only OS on C Drive Firewall open to reach Azure Max 31 disk protected per server less than 1023 GB No Clustered Servers UEFI not supported No bitlocker Server Names 1-63 char.
DR Planning - Revisited Trade-offs between Cost and RPO/RTO ASR supports all options! DR with RPO of 5 minutes and RTO of 1 Hour Leverage ASR Host or Guest based replication for all tiers of the application. DR with RPO of 5 minutes and RTO of ~30 minutes Leverage AD replication for AD, SQL Availability Group for SQL and ASR replication for Web and Middle Tiers. DR with 0 RPO (No data loss) Leverage SAN based replication support of ASR Test failover – measure and improve
Physical to Azure - Walkthrough Neil Hodgkinson
Step by Step 1 2 3 4 5 6 7 8 Customer selects recovery region CREATE VAULT 1 View step-by-step guidance QUICK START 2 A group for servers to represent Site or Branch. CREATE SITE 3 Register Hyper-V Server REGISTER 4 Define protection policy CONFIGURE PROTECTION 5 6 Replicate disks to Azure PROTECT VIRTUAL MACHINES Define DR Plan CREATE RECOVERY PLAN 7 8 Test the deployment RUN DR DRILL
POC Requirements (1 Host) One Hyper-V 2012 R2 Host Connectivity to Azure from Host either direct or through proxy One Azure account – free trial sign-up. Every ASR Instance you protect is free for 31 days. Getting started for Branch office to Azure DR https://azure.microsoft.com/en-us/documentation/articles/site- recovery-hyper-v-site-to-azure/
What about SharePoint?
Enable DR of SharePoint server using ASR Protect your SharePoint Server farm Each component of the SharePoint farm needs to be protected to enable farm replication and recovery. Protection of Active Directory Protection of SQL Tier Protection of App and Web Tiers Protection of Search Service Application Networking configuration
Active Directory Replicate AD to Azure For small environments where failover will be for entire site Extend AD to secondary site For more complex environments where partial failover may be required
With ASR only, Asynchronous Replication of SQL Server Databases Always On Availability Groups Three availability groups Content Search Services One availability group can simplify azure deployment With ASR only, Asynchronous Replication of Farm Configuration Database Admin Content Database FULLY SUPPORTED
SharePoint Servers Configure Virtual Machine Protection
Networking For the App and web tier VMs configure network settings in ASR so that the VM networks get attached to the right DR network after failover. Ensure the DR network for these tiers is routable to the SQL tier. White Paper on ASR Networks : https://gallery.technet.microsoft.com/Designing-Your-Network-a849fa98
Don’t forget to add the cloudapp.net DNS domain as an AAM For internet facing sites, create an instance of Traffic Manager in the Azure subscription and configure it and your DNS in the following manner. Where Source Target Public DNS Public DNS for SharePoint sites Ex: asrsponprem.obs-test.com Traffic Manager contososharepoint.trafficmanager.net On-premises DNS sponprem.obs-test.com <Public IP on the on-premises farm> Don’t forget to add the cloudapp.net DNS domain as an AAM
Restore Search ASR Replication is Asynchronous SharePoint search requires Database and Index Synchronisation Must follow search service application backup and restore guidance https://technet.microsoft.com/en-us/library/ee748654(v=office.15).aspx Alternative approach is to use new search service application and crawl
The Big Picture Failover On Premises Azure 192.168.0.0/24 10.0.0.0/24 S2S ATM Database SQL Always On Database SP App ASR replication SP App Public DNS NAT Public EndPoint Public EndPoint SP Web ASR replication SP Web AD DNS ASR/AD replication AD DNS
Failover and Failback
Failover Different Modes Test Planned Unplanned SharePoint config cache flush – Required for all
Test Failover – No impact on Prod Select Network to fail over to Validate failover Mark as complete Auto cleaned up
Planned and Unplanned Select Network to fail over to Validate failover Unplanned requires confirmation
Config Cache Flush
Failback Failback SQL Always On Failback ASR Recover Search Flush Config Cache
Wrap Up !
Currently Available Application-Aware ASR Solutions Workload Hyper-V VMWare Site to Site Site to Azure AD, DNS Infra COMING SOON! Web Apps IIS SQL SCOM SharePoint SAP* Exchange** COMING SOON Remote Desktop/VDI Linux (OS & Apps) Dynamics AX CRM Oracle DB File Server Supported and Certified by workload team Supported – Certification by workload team in process SAP Site to Azure for un-clustered setups. Exchange 2013 Non-DAG setups View based on in-market solutions * **
Related Ignite NZ Sessions 1 4 1 Use Azure Site Recovery to mitigate DR risk at VMware sites Ballroom 2 Wed 13:55 SharePoint deployment automation with PowerShell Desired State Configuration M388 Thu 11:00am 2 Azure Infrastructure As A Service Overview & What’s New M318 Wed 11:55am Find me later at… Hub Happy Hour Wed 5:30-6:30pm Hub Happy Hour Thu 5:30-6:30pm Closing drinks Fri 3:00-4:30pm 3 Getting ready for SharePoint 2016 M311 Tue 9:00am
Resources Microsoft Virtual Academy TechNet & MSDN Flash 4/23/2017 Microsoft Virtual Academy Resources TechNet & MSDN Flash Free Online Learning http://aka.ms/mva Subscribe to our fortnightly newsletter http://aka.ms/technetnz http://aka.ms/msdnnz Sessions on Demand http://aka.ms/ch9nz © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Complete your session evaluation now and be in to win! 4/23/2017 9:14 PM Complete your session evaluation now and be in to win! © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
4/23/2017 9:14 PM © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.