Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Integrating Docker EE into Société Générale's Existing Enterprise IT Systems

6,248 views

Published on

Société Générale knows that containers and the cloud are the future of the IT industry and have been using Docker EE for over a year and a half. In this talk, we will share how Docker EE fits into our global strategy and our architecture for integrating the platform to our existing IT systems. We will go over tradeoffs of how we operationalized the platform to provide a highly available CAAS to our global enterprise. Finally, we will share how we are onboarding development teams and deploying their applications to production.

Published in: Technology
  • Be the first to comment

Integrating Docker EE into Société Générale's Existing Enterprise IT Systems

  1. 1. Integrating Docker EE into Société Générale's Existing Enterprise IT Systems Stéphan Dechoux Thomas Boussardon Société Générale
  2. 2. Integrating Docker EE into Société Générale's Existing Enterprise IT Systems Stéphan DechouxDevOps Architect Thomas BoussardonMiddleware specialistSociété Générale
  3. 3. Agenda ! Société Générale quick introduction ! Context of the project ! Platform power up(s) ! Sum up ! Questions ?
  4. 4. Société Générale Quick introduction
  5. 5. Some figures of our IT … Ø If we stack all our datacenters equipment, what will be the height of this tower ? 8x Hint : Think in Eiffel Tower size instead of meter
  6. 6. Some figures of our IT … Ø Storage Ø Network Ø CPU Power We can store more than 200 years of HD videos Our global fiber network can cover the « Tour de France » race Our grid computing can forecast weather faster than « Meteo- France »
  7. 7. Context of the project When, Where, Why, How …
  8. 8. Context of the Project !All type of Application: legacy, soa, API REST, monolithic, distributed … !Mutualized infrastructure, worldwide, secure !Integrate existing services and layers of infrastructure !Hybrid: Private / Public Cloud !Ready for API, Open Banking, Blockchain !Improve User Experience (PaaS and APaaS)
  9. 9. Platform power up(s) Level Up Time line 6 1510 30 NowStart Months
  10. 10. Platform Level 0 ! Existing services in Société Générale 6 1510 30 NowStart Months
  11. 11. Level 0 – Existing services Continous Delivery/Integrati on Source control Artifact repository 6 1510 30 Persistent storage Data lake Service registry KV store Secrets management
  12. 12. Development stacks 6 1510 30
  13. 13. Platform Level 1 ! Docker EE ! CD/CI pipeline 6 1510 30 NowStart Months
  14. 14. Level 1 Continous Delivery/Integrati on Source control Artifact repository 6 1510 30 EE UCP Engine DTR
  15. 15. Level 1 - Build Source control Artifact repository Build application Docker ImageJenkins Master Jenkins Slave Build Image Testin g Push in DTR 6 1510 30
  16. 16. Level 1 - Deploy Source control Jenkins Master Docker Images Docker HRM Jenkins Slave Docker UCP Docker WorkersApps Description Ø Scheduled Ø Trigerred Ø Manual Deploy Order 6 1510 30
  17. 17. Platform Level 2 ! Stateful containers ! Logging ! Monitoring 6 1510 30 NowStart Months
  18. 18. Level 2 Continous Delivery/Integrati on Source control Artifact repository Monitoring/Alertin g Ne w Persistent storage Ne w Data lake Ne w 6 1510 30 EE UCP Engine DTR
  19. 19. Level 2 – Persistence !Stateful containers are a real thing … Jenkins Master ELK stack Batches 6 1510 30
  20. 20. Level 2 - Storage !Integrate with existing storage Enterprise Plugins NFS CIFS Dedicated NAS Existing shares 6 1510 30
  21. 21. Level 2 - Monitoring !Need a new way to monitor containers !Introspect what is happening in the container !Provide dashboard to track activity, alerting !Send metrics and logs to data lakes Monitoring/Alertin g Ne w 6 1510 30
  22. 22. Platform Level 3 ! Micro services ! Parallel run ! Monitoring+ Here we are ! 6 1510 30 NowStart Months
  23. 23. Level 3 Continous Delivery/Integrati on Source control Artifact repository EE UCP Engine DTR Monitoring/Alertin g Persistent storage Service registry KV store Ne w Data lakes Lvl 2 Dynamic L7 load balancer Ne w Secrets management Ne w 6 1510 30
  24. 24. Level 3 !X-platform services !Store/generate secrets, certificates !Service registry and discovery for micro-services !K/V store for container’s configuration !Dynamic load-balancer / Parallel run Dynamic L7 load balancer Ne w Service registry KV store Ne w Secrets management Ne w 6 1510 30
  25. 25. Level 3 - Typical Worker Consul agent DNSMasqSysdig agent Netapp plugin CIFS plugin SyslogFabio HRM Docker EE Worker Persistent storage Data lakes VM Service registry KV store Secrets management Monitoring/Alerti ng Apps Apps 6 1510 30
  26. 26. Level 3 - Secure deployment !Scan images for vulnerabilities (Docker EE - DSS) !Scan Dockerfile and compose file to respect best practices (Linter in house development) !Manually promote images to PROD DTR (Ops) !Jenkins pipeline provided to dev to deploy in PROD 6 1510 30
  27. 27. Platform Level 4 ! Public cloud ! X-platform apps ! Perfs, security Q4 18 6 1510 30 NowStart Months
  28. 28. Level 4 – On going Software Defined Network Software Defined Storage Bare Metal Servers Dedicated nodes for specific needs Security Policies Enforcement Advanced configuratio n management Public cloud hybridation 6 1510 30
  29. 29. Platform Next level ?
  30. 30. Next level ?
  31. 31. Sum up Just a few thoughts…
  32. 32. Sum up: Just a few thoughts… Ø Clearly define priorities before each step Ø Select with care your candidates Ø Never forget to discuss with all teams
  33. 33. Sum up: Achievements!! Ø Create enthusiasm for new technologies and new offers Ø 10 applications in Prod / 50 in Dev / 400 developers Ø Easy integration with our actual infrastructure Ø Secure and rapid deployment in Production
  34. 34. Questions ?
  35. 35. Thank you !

×