AWS re:Invent 2016: Running, Configuring, and Securing Windows Workloads (ARC405)

159 views

Published on

From servers to workstations, AWS provides the best place to run your Windows workloads. In this session, we'll discuss the ease of deploying Windows workloads on AWS, and architecting for performance, scalability, security, and cost savings. We will explore the use of AWS Directory Service, the Amazon EC2 Run command, and Windows PowerShell to bootstrap your instances for seamless Microsoft Active Directory integration, application installation, and management. We will walk through an architecture that includes Amazon RDS, Amazon EC2, and Amazon WorkSpaces, and discuss the secure relationships among these services. You will learn how you can use native AWS services as well as the tools you are already familiar with to manage your Windows environment.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
159
On SlideShare
0
From Embeds
0
Number of Embeds
9
Actions
Shares
0
Downloads
26
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

AWS re:Invent 2016: Running, Configuring, and Securing Windows Workloads (ARC405)

  1. 1. © 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Julien Lépine, Solutions Architect, AWS Brian Lewis, Partner Solutions Architect, AWS December 1, 2016 Running, Configuring and Securing Windows Workloads ARC405
  2. 2. Agenda of this session BUILDING THE FOUNDATIONS ENSURING REPEATABLE DEPLOYMENTS ENABLING EFFICIENT OPERATIONS
  3. 3. Building foundations AWS IAM AMAZON VPC AWS DIRECTORY SERVICE
  4. 4. Building foundations: platform identity AWS IAM AMAZON VPC AWS DIRECTORY SERVICE
  5. 5. Platform identity corporate data center ADDC ADFS AWS IAM Amazon S3 AWS CloudTrail AWS Config Logging and monitoring platform
  6. 6. Building foundations: networking AWS IAM AMAZON VPC AWS DIRECTORY SERVICE
  7. 7. Core network infrastructure Availability Zone Availability Zone Internet gateway NAT gateway NAT gateway VPN connection corporate data center Amazon S3 Logging and monitoring platform Public subnet Public subnet Private Subnet Private Subnet flow logs Amazon CloudWatch Logs Availability Zone
  8. 8. Building foundations: application identity AWS IAM AMAZON VPC AWS DIRECTORY SERVICE
  9. 9. Windows identity Availability Zone Availability Zone Internet gateway NAT gateway Active Directory Tier AWS Directory Service NAT gateway VPN connection corporate data center AWS IAM ADFS ADDC
  10. 10. Moving initial Microsoft workloads to AWS BUILDING IN THE CLOUD MIGRATION MAINTENANCESUPERVISION
  11. 11. Creating repeatable architectures IMAGE AUTOMATION BOOTSTRAPPING CONTAINERS AUTOMATED DEPLOYMENTS AWS CloudFormation Amazon ECS PowerShell
  12. 12. Sample platform Availability Zone Availability Zone Internet gateway NAT gateway NAT gateway VPN connection corporate data center ADDC ADFS AWS IAM users Active Directory Tier Database Tier Web Tier ELB IIS Server IIS Server Amazon RDS AWS Directory Service
  13. 13. Administration at scale REMOTE DESKTOP ACCESS REMOTE SCRIPTING RDGW Amazon WorkSpaces CLOUD CONTROL CENTER PowerShell AWS Tools for Windows PowerShell Amazon EC2 Run Command
  14. 14. Keeping the platform up to date IMAGE HYGIENE PowerShell DSC Desired state MONITORINGCONFIGURATION MANAGEMENT Amazon CloudWatchAMI Automation PATCHING Patch management
  15. 15. Next steps HANDS-ON LABS ARCHITECTURE CENTER TRAINING AND CERTIFICATION AWS TOOLS FOR WINDOWS POWERSHELL
  16. 16. Thank you!
  17. 17. Remember to complete your evaluations!
  18. 18. Related Sessions  Windows on AWS Sessions • WIN201 - Simplifying Microsoft Architectures with AWS services • WIN402 - How I learned to embrace DevOps and Configure Infrastructure at Scale

×