Slides from 2010 Linux Day


Published on

Slides from 2010 Linux Day presented by Novell and Intel

Published in: Technology, News & Politics
1 Comment
No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Slides from 2010 Linux Day

  1. 1. Linux Day – 2010 Tour
  2. 2. Today's Agenda • Why SUSE Linux Enterprise? • SUSE Linux Enterprise 11 Service Pack 1 • Build & Deploy • Secure • Manage • Availability & Disaster Recovery 2 © Novell, Inc. All rights reserved.
  3. 3. Why SUSE Linux Enterprise?
  4. 4. Why SUSE Linux Enterprise? • Linux Distributions Share 90 to 95% of the Same Components – Most technical differentiators are very short-lived... – ...though SUSE Linux has always been a technical leader • So How Do You Choose the Best Linux Distribution? – Corporate Strategy – Best of Breed Solution Stacks – Interoperability – Support – Partner Ecosystem & Application Certification – Market Trends 4 © Novell, Inc. All rights reserved.
  5. 5. Intelligent Workload Management Intelligent Workload Management enables IT organizations to manage and optimize computing resources in a policy-driven, secure and compliant manner across physical, virtual and cloud environments to deliver business services for Intelligent end customers. WORKLOAD Management 5 © Novell, Inc. All rights reserved.
  6. 6. A Desktop to Data Center Platform SUSE Linux Enterprise Desktop End User Thin Client Devices Desktop SUSE Linux Enterprise Retail Point of Service Kiosk/ATM Retail/POS Appliances SUSE Linux Enterprise Server Open Enterprise Server Proxy, File & Print Firewall, VPN Email WAP, VOIP Caching SUSE Linux Enterprise Server SUSE Linux Enterprise Real Time ERP, SCM, Mainframe Cluster SAN Database Web CRM, HR 6 © Novell, Inc. All rights reserved.
  7. 7. Best of Breed Solution Stacks - Mixed-Source Approach • Novell has a large portfolio of Open Source and proprietary products – Able to provide complete Data Center solutions using best of breed technologies > SLE, ZLM, Virtualization, Workload Management, BSM – Better positioned to work with ISVs that sell proprietary software > Example: Microsoft • RedHat is a purely Open Source company – Limited solution offerings 7 © Novell, Inc. All rights reserved.
  8. 8. Interoperability • Windows Integration – Active Directory Integration – Out of the Box – Support for Windows 7 domain logon with Samba 3.4 • eDirectory, NIS, and LDAP Integration • Improved interoperability with next-generation network filesystem – NFS v4.1 extends support for file system ACLs and interoperability to UNIX systems such as Solaris • Linux Standards Base 4.0 certification – Interoperability with other Linux distributions 8 © Novell, Inc. All rights reserved.
  9. 9. Virtualization • Out-of-the-Box Virtualization Host – Xen 4.0 & KVM • Out-of-the-box Perfect Guest, Optimized for: > SLES Xen / KVM > Citrix XenServer > VMWare > MicroSoft Hyper-V • Simplified Virtualization Pricing – Pay once for physical node – Run a unlimited number of VMs 9 © Novell, Inc. All rights reserved.
  10. 10. Support Overview Novell is the only Linux software company worldwide that offers ® comprehensive enterprise level support for your entire Linux environment – from the desktop to the data center. • Priority access to expert resources, 24x7x365 • Fast and predictable response times • Full-service support offering • Dedicated resources for personalized support • Relationship management • Field-based technical resources • Support packages for every size customer • World-wide breadth (11 Global Support Centers) • Award-winning support and service 10 © Novell, Inc. All rights reserved.
  11. 11. Standard Platform Life-cycle Year 1 Year 2 Year 3 Year 4 Year 5 Year 6 Year 7 Year 8 Year 9 Year 10 GA General SP1 General Long Term SP2 General Long Term SP3 General Long Term Self SP4 General Self Total General Self Long Term Service General General Support Long Term Self Self Support Pack Support • 10-year life-cycle (7 years general support, 3 years self support) • Service packs every 16-18 months, major releases every 3-4 years • Six month upgrade window • Long-term service pack support option available 11 © Novell, Inc. All rights reserved.
  12. 12. Certified Linux ISV Applications SUSE Linux Enterprise 9+ vs. RHEL 4+* ® 4500 4,141 4,279 4,423 4000 3,803 3,963 3,478 3,635 3,325 3500 3,005 3,160 2,810 3000 2,645 2,539 2,339 2,361 2500 2000 1500 1000 500 0 DEC08 JAN09 FEB09 MAR09 APR09 MAY09 JUN09 JUL09 AUG09 SEP09 OCT09 NOV09 DEC09 February 2010 * Red Hat's inventory is unlisted SLE 9 S L E 10 and 11 and unknown, whereas Novell ® numbers are public and countable. Recent claims from Red Hat RHEL 4 RHEL 5 suggest that their catalog has 3,500+ applications, well below our count 12 © Novell, Inc. All rights reserved.
  13. 13. Market Share (Novell vs. RedHat) Market Share 2006 Market 2007 Market 2008 Market Share (%) Share (%) Share (%) RedHat 73.8 69.5 64.7 Novell 17.6 24.5 29.8 Source: IDC August 2009 – Worldwide Linux Operating Environment 2009-2013 Forecast 13 © Novell, Inc. All rights reserved.
  14. 14. Linux Revenue Growth (Novell vs. RedHat) Revenue Growth 2006 Rev 2007 Rev 2008 Rev Growth (%) Growth (%) Growth (%) RedHat 40.5 22.3 14.8 Novell 62.7 80.7 50.3 Source: IDC August 2009 – Worldwide Linux Operating Environment 2009-2013 Forecast 14 © Novell, Inc. All rights reserved.
  15. 15. SUSE Linux Enterprise ® Only Linux Endorsed By 15 © Novell, Inc. All rights reserved.
  16. 16. SUSE Linux Enterprise Service Pack 1
  17. 17. SLES 11 - Reliability Reliability – Availability – Serviceability (RAS) • Strong cooperation with IBM on providing a Linux OS optimized for mission critical workloads on System z • Large blade centers benefit from swap over NFS capabilities to centralize swap space and improve availability of the datacenter • Cost savings by using built-in device-mapper MultiPath I/O (MPIO) replacing expensive commercial solutions. MPIO connects systems to a Storage Area Network (SAN) via multiple routes – increases availability, reliability and performance 17 © Novell, Inc. All rights reserved.
  18. 18. SLES 11 SP1 - Reliability • Support hardware RAS features bringing AMD64/Intel64 systems on par with traditional RISC systems • Improved MPIO hardware-support expands multi-path options, reliability and performance • Increased redundancy through support of RAID 6, RAID 10 • Scheduler optimizations and support for new floating point features improve performance and save costs – More efficient scheduler, optimized defaults – Extended hardware floating point capabilities improve algorithm efficiency 18 © Novell, Inc. All rights reserved.
  19. 19. SLES 11 - Scalability The only enterprise Linux operating system that helps customers • Manage several workloads within one Linux instance in a lightweight manner by providing Kernel Resource Management with Control Groups • Scale with their hardware by supporting 512 CPUs on AMD64/ Intel64, 1024 CPUs on POWER, 4096 CPUs on Itanium • Deploy huge amounts of data by supporting SGI's XFS for filesystem and file sizes up to 8 EiB • Improve efficiency by leveraging HW support for power saving features due to the “tickles idle” Kernel, i.e. individual cores can be sent to sleep completely 19 © Novell, Inc. All rights reserved.
  20. 20. SLES 11 SP1 - Scalability • Exploit most recent hardware by scaling up to 4096 CPUs on AMD64/Intel64 • Compute huge amounts of data in memory, e.g. in data- warehouse and ERP systems, by supporting 16TiB RAM (and beyond) on certified hardware • Improve inter-system connectivity and performance, reduce latency by enabling 10G ethernet hardware and Infiniband via the Open Fabrics Enterprise Distribution (OFED). • Choose the right architecture for your workload: – Intel Nehalem-EX CPUs and specifically the new AES instruction set (AES-NI), to improve crypto operations – All recent and upcoming AMD CPUs and Chipsets – SGI Altix UV scales Intel64 to 4096 CPUs & 16TiB RAM – IBM System z machines including extended floating point capabilities – IBM POWER7 – Intel Itanium 20 © Novell, Inc. All rights reserved.
  21. 21. SLES 11 - Systems Management • YaST – unique, highly integrated local management tool – Ease of use, effective learning curve – Reduces training efforts – Automation via AutoYaST datacenter mass deployments • Fastest Open Source update stack (ZYPP) – Reduce management time, effort and costs – Improve reliability and availability by reducing downtimes • Cost free Subscription Management Tool and Proxy – Ensure security perimeters – Manage and control compliance of subscriptions • CIM instrumentation – Remote administration standard:datacenter integration 21 © Novell, Inc. All rights reserved.
  22. 22. SLES 11 SP1 - Systems Management • New web-based systems management tool – WebYaST delivers administrative functionality via remote hosts, simplifying configuration – Remote administration of software appliances now possible • Update stack and CIM improvements simplify management – ZYPP now handles multiple installed kernels: improve reliability – CIM infrastructure available by default – ease of installation • Enhanced subscription and patch management tools – New NCC interface allows pushing and reviewing of applied updates, improving usability • New maintenance model: more flexibility for customers while retaining full control and stability 22 © Novell, Inc. All rights reserved.
  23. 23. SLES 11 - Virtualization • Virtualization host – technology leadership – First Enterprise Linux OS to include and support Xen hypervisor technology; first to ship KVM – Manageability: leverage mixed-source for maximum customer satisfaction and success – Interoperability: full support for Windows guest operating systems (Windows 2003, Windows 2008,...) • Perfect guest – supported on MSFT Hyper-V, VMware ESX, Citrix XenServer, and SLES+Xen hypervisors – flexibility and choice in the datacenter • Unique cost efficiency – unlimited number of virtual machines per physical server with one subscription 23 © Novell, Inc. All rights reserved.
  24. 24. SLES 11 SP1 - Virtualization • Virtualization host – more deployment options – Updated Xen 4.0 improves I/O performance and flexibility; Technologies: SR-IOV, OVF 1.0 – Improved Xen Scalability for higher consolidation ratio in the datacenter and cost savings – Support for KVM hypervisor helps customers exploit virtualization capabilities of their recent Intel and AMD CPUs. • Virtualization guest – integration and performance – easier deployment due to perfect Interoperability with all hypervisors – Improved virtual guest performance – Highlight: Open Source guest drivers for VMware ESX and Microsoft Hyper-V (“Linux Integration Components”) 24 © Novell, Inc. All rights reserved.
  25. 25. SLES 11 - Security & Certifications • System architecture with security in mind: customers are guided to install in a secure way: – Minimize number of running daemons (services) – Firewall installed in default pattern • System is hardened by default, hardening can be validated and tuned using YaST Security Center. • Built-in audit capabilities: security analysis/compliance • Security team/response team/code reviews – Active participation of the Novell SUSE Team: improve overall ® code quality and security • Application confinement with AppArmor – Prevent local and remote attacks – Improves security also towards external networks 25 © Novell, Inc. All rights reserved.
  26. 26. SLES 11 - Security & Certifications • Help customers improve network security by: – Using the enhanced authentication capabilities of NFSv4 (Kerberos) – Installing Virtual Private Networks (VPNs) across architectures and operating systems without additional software (using openVPN or IPSec) • Check integrity of systems on file level with Advanced Intrusion Detection Environment (AIDE) • Protect systems and data using encryption on several levels: – “Full Disk” encryption (device mapper layer) – Volume encryption (device mapper layer) – Filesystem encryption (eCryptFS) • Filesystem POSIX capabilities allow administrators to allow access to files and running executables in a standardized way 26 © Novell, Inc. All rights reserved.
  27. 27. SLES 11 SP1 - Security & Certifications • Trusted computing enablement – Trusted Platform Modules (TPM) provide a cryptographically signed statement about the state of the system when it has booted; – Allow for a remote attestation that can be used for access control and for “identity management” of systems • Certifications – CGL 4.0 / Carrier Grade Linux 4.0 registration: System is validated for telecommunication environments – IPv6 (refresh) 27 © Novell, Inc. All rights reserved.
  28. 28. SUSE Linux Enterprise Server 11 Service Pack 1 ® Reliability Enhancements on INTEL64 • Detect physical memory and the specific DIMM where errors happen – improve hardware service and increase uptimes • MCELOG (the userspace tool to process MCEs) moves from a cronjob to a real service, improving response time – improve reliability • Predictive failure analysis • Storage related – Support for ISW/IMSM RAID arrays during installation, and full integration into the Systems Management Stack (YaST) – leverage latest HW technology and reduce costs 28 © Novell, Inc. All rights reserved.
  29. 29. Open Source Collaboration   Together, Intel and Novell work closely together to provide optimized TTM code that enables key new Intel® Xeon® processor features on Novell SUSE* Linux* Enterprise Server 11 –  Virtualization (VT-x, VT-d) and AES-NI –  Introducing support for KVM and Multiplatform support in XEN –  RAS: Corrected error reporting (CMCI), advanced mcelog, and MCA recovery   Provide best-in-class end-to-end capabilities for IT via strong partnerships with HP, IBM, Dell, Microsoft and SAP –  Key Benchmarking results with SGI SPECint and SPECfp –  Application porting and proofs of concept   Our co-development on multiple fronts –  Drives down the cost of ownership and Speeds up return on investment –  Standards-based open solutions for improved innovation and value,
  30. 30. Today’s IT Challenges Application Performance Maintain or improve performance SLAs as computational demands increase Scalability Serve a growing user base, diverse workloads and exploding data volumes without adding significant cost High Availability Computing solutions available 7x24 to a global user base Growing Demands Requiring Wise Investments 2
  31. 31. Intel Xeon® 5600 Processor Series 32nm Technology with 2nd Generation High-k Process NEW! BUILDS on last year’s Xeon® 5500 platform leadership:  50% more cores and cache, same power Intel® 5520 Chipset Intel® Data Center Manager envelope! Intel® Node Manager  Up to 40% higher performance/watt Technology PCI Express* 2.0  New security features such as Intel TXT and AES-NI Intel® X25-E ICH 9/10 Intel® 82599 10GbE Helps BREAKS DOWN remaining barriers for IT SSDs Controller investment with better ROI: Energy Efficiency Performance Virtualization
  32. 32. 1 All comparisons vs. previous generation Intel® Xeon® 7400 platforms. Memory capacity is for 4S platform (16DIMMs/socket with 16GB DIMMs). See backup for performance configurations. 2 See backup for consolidation configurations. Comparisons vs. single core Xeon® MP processor 3.33/8MB Performance tests and ratings are measured using specific computer systems and/or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, visit Intel Performance Benchmark Limitations. All dates, product features and plans are subject to change without notice.
  33. 33. Source: Intel internally measured results 15 January 2010. Each bar represents the score or estimated score of best measured/estimated results on the geometric mean of internal benchmarks (server-side Java*, integer throughput, floating-point throughput, ERP, and OLTP). Results have been estimated based on internal Intel analysis and are provided for informational purposes only. Any difference in system hardware or software design or configuration may affect actual performance. Performance tests and ratings are measured using specific computer systems and/ or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, Go to: Relative performance is calculated by assigning a baseline value of 1.0 to one benchmark result, and then dividing the actual benchmark result for the baseline platform into each of the specific benchmark results of each of the other platforms, and assigning them a relative performance number that correlates with the performance improvements reported.
  34. 34. 12 month ROI claim estimated based on comparison between 4S Intel® Xeon® MP CPU 3.3Ghz (Single core w/ HT, 1MB L2, 8MB L3, Potomac) and 4S Intel® Xeon® X7560 (8 core, 2.26GHz) based servers. Calculation includes analysis based on performance, power, cooling, electricity rates, operating system annual license costs and estimated server costs. This assumes 42U racks, $0.10 per kWh, cooling costs are 2x the server power consumption costs, operating system license cost of $900/year per server, per server cost of $36,000 based on estimated list prices, and estimated server utilization rates. All dollar figures are approximate. SPECint_rate_base2006* performance and power results are measured for X7560 and Xeon 3.3GHz based servers. Platform power was measured during the steady state window of the benchmark run and at idle. Performance gain compared to baseline was 20x.Baseline platform (measured score of 33.8): Intel server with four MP Intel® Xeon® processor 3.33Ghz (single core w/HT, 1MB L2, 8MB L3), 16GB memory (8x2GB DDR2-400), 2 hard drives, 1 power supply, using Redhat EL 5.3 x86_64 operating system New platform (measured score of 705): Intel internal reference server with four Intel® Xeon® Processor X7560 (24M Cache, 2.26 GHz, 6.40 GT/s Intel® QPI, Intel Hyper-Threading Technology, Intel Turbo Boost Technology), 256GB memory (64x 4GB QR DDR3-1333), 1 hard drive, 2 power supplies, using SuSE* LINUX 11, cpu2006.1.1.ic11.1.linux64.binaries.nov242009.tar.bz2 binaries. Performance tests and ratings are measured using specific computer systems and/or components and reflect the approximate performance of Intel products as measured by those tests. Any difference in system hardware or software design or configuration may affect actual performance. Buyers should consult other sources of information to evaluate the performance of systems or components they are considering purchasing. For more information on performance tests and on the performance of Intel products, visit Intel Performance Benchmark Limitations.
  35. 35. Summary   Intel offers a portfolio of platforms for high-end computing workloads   The Xeon® 7500 and Itanium® 9300 platforms include significant advancements in performance, scalability, and RAS   Both platforms have broad support for high-end server designs from multiple OEMs as well as the software community   Novell and Intel are working together to provide seamless, TTM feature support for mission critical capabilities Please contact your Intel and Novell Sales Representatives to learn more about our joint solution For additional online information, visit: - Ecosystem then Novell 8 Intel® server processors codename Nehalem-EX
  36. 36. Back-up
  37. 37. Intel® Xeon® processor 7500/6500: OVER 20 NEW RAS Features •  Demand and Patrol scrubbing •  Mirrored Memory Board Hot Add /Remove •  Fail Over from Single DRAM •  PCI-E Hot Plug Device Failure (SDDC) •  Failed DIMM Isolation •  MCA-recovery •  Physical Memory Board Hot •  Intel® SMI Packet Retry Add/remove •  Intel QPI Packet Retry •  Physical CPU Hot Add & Remove** •  Intel QPI Protocol •  Physical IOH Hot Add** Protection via CRC (8bit •  Direct Connect Flash or 16bit rolling) •  Dynamic/OS Assisted •  Data Poisoning/ and Viral Memory Migration* Mode •  Dynamic/OS Memory On •  On-Die Error Protection -lining (capacity change)* •  Address Parity via •  Dynamic/OS CPU On-lining Memory Lockstep (capacity change)* Operation •  Dynamic/OS IOH On-lining (capacity change)* See backup for RAS feature descriptions
  38. 38. SUSE Linux Enterprise* Key Virtualization Features •  Support for Intel® Virtualization Technology •  Ultimate Performance SUSE Linux •  Network and block device hot plugging Enterprise •  Virtual Machine Management and Orchestration Tools •  Scalability, Live Migration •  UNIX to Linux •  High Availability Migration •  Introducing support for KVM •  Mission-Critical •  Multiplatform support in XEN Computing – SUSE Linux Enterprise Server 9, 10 and 11 – Novell Open Enterprise Server 2 •  Virtual Appliances – NetWare 6.5 •  Linux/Windows – Windows Server 2000, 2003, 2008 – Windows XP, Vista Interoperability – Red Hat Enterprise Linux 4 and 5 •  Virtualization •  Host Limits with SLE11-SP1: – 255 CPU threads •  Desktop Linux – 1 TB RAM •  Guest Limits with SLE11-SP1: – 32 CPU threads – 256 GB RAM *Other names and brands may be claimed as the property of others.
  39. 39. SUSE Linux Enterprise* Intel® Xeon® Processor 7500 Series Platform Optimized OS •  Support built into Linux for (No Novell enablement needed)‫‏‬ SUSE Linux –  Intelligent Performance: 8-core support, 44-bit memory Enterprise addressability –  Energy Efficiency: Multicore Power Management, DBS •  UNIX to Linux Migration •  SLE 10 SP3 –  Flexible Virtualization: VT-x support; FlexPriority, VT-d •  Mission-Critical Computing •  SLE 11 Additions to the above: •  Virtual Appliances –  Intelligent Performance: SSE 4.2, I/OAT3, NUMA, UEFI 2.0, DMRAID 0, 1, 5, Turbo –  Flexible Virtualization: VT-x: EPT, VPID, Flex Migration; VT-d •  Linux/Windows –  igb driver update required Interoperability –  Scalability Expandable: x2APIC, 255 cores, 1 TB RAM •  Virtualization •  SLE 11 SP1 –  MDRAID 0, 1, 5 •  Desktop Linux –  AES (gcc in the SDK)‫‏‬ –  Always running APIC timer –  VT: real mode EPT (Xen and KVM), Pause Loop Exiting (Xen)‫‏‬ –  RAS: Corrected error reporting (CMCI), advanced mcelog, MCA recovery
  40. 40. Build & Deploy
  41. 41. Server Deployment Paths • Server (physical) • Virtual Host • Perfect Guest • Appliance – minimal packaging – created using imaging tools 31 © Novell, Inc. All rights reserved.
  42. 42. Keeping the Momentum SUSE Studio SUSE Studio “The 10 SUSE Studio “a product of Coolest Open- 2010 Codie the year” Source eWeek . Award Finalist Products Of . 2009” ChannelWeb 54,280 Registered users are using SUSE Studio Online 250,364 Appliances have been built 4,405 ISVs are using SUSE Studio Online 32 © Novell, Inc. All rights reserved.
  43. 43. The SUSE Appliance Toolkit ® + Streamline the OS + Simplify Deployments + Simplify Maintenance Build The SUSE Appliance Toolkit is a collection of tools designed to improve the efficiency of Manage building, managing and maintaining Maintain software appliances. 33 © Novell, Inc. All rights reserved.
  44. 44. The SUSE Appliance Toolkit ® Components SUSE Studio Onsite WebYaST SUSE Lifecycle Build Management Server Manage Maintain 34 © Novell, Inc. All rights reserved.
  45. 45. SUSE Studio Onsite ® Stand-alone version of SUSE Studio behind your firewall Build appliances based on: SUSE Studio SUSE Linux Enterprise JeOS 2010 Codie Award Finalist SUSE Linux Enterprise or openSUSE SUSE Studio “a product of Supported formats: the year” . eWeek USB Stick/ hard disk image Live CD (.iso)‫‏‬ SUSE Studio VMware/Virtual Box (.vmdk)‫‏‬ “The 10 Coolest Xen Virtual Machine Open-Source Products Of Soon: Hyper-V, OVF, EC2 2009” ChannelWeb 35 © Novell, Inc. All rights reserved.
  46. 46. Show Time... SUSE Studio Onsite Demo 36 © Novell, Inc. All rights reserved.
  47. 47. Secure
  48. 48. Comprehensive Security Capabilities No operating system is invulnerable - not even Fact: SUSE Linux Enterprise Linux...But SUSE Linux ® offers the most Enterprise Server offers: comprehensive security capabilities for Linux • Built-in application security • Integrated VPN, firewall and anti-virus Result: protection Ensure data integrity • Certificate management while reducing emergency patching • Proactive security features across Linux systems • Easiest security configuration and management 38 © Novell, Inc. All rights reserved.
  49. 49. AppArmor AppArmor is an open source application security tool that helps protect Linux systems from unknown security flaws Allow programs Deploy security to do only what Designed for policy in hours they are supposed ease of use not days to do and nothing else AppArmor 2.0 integrated with SLES/SLED for “out of the box” protection AppArmor support included with SUSE Linux Enterprise support contracts ® Consulting available to assist customer with deployment and custom policy development if needed 39 © Novell, Inc. All rights reserved.
  50. 50. Novell Privileged User Manager ® • Support compliance with internal policies and external regulations • Control user access to root privileges • Audit all user activity with 100% keystroke logging • Analyze potential threats based on policy-based smart risk ratings • Simplify audit reporting with the most relevant, context-based information • Enhance user experience with automation and remote logging 40 © Novell Inc. All rights reserved
  51. 51. Novell Identity and Security Solutions ® Identity and Access Security Compliance Management Management Management User Provisioning Security Monitoring Compliance Assurance and Management and Remediation Enterprise Compliance Roles Management Log Management Automation for SAP Simplified Secure Cloud Security Privileged User Access Management 41 © Novell Inc. All rights reserved
  52. 52. Novell Privileged User Manager ® 3-Step Approach to Audit-Ready UNIX/Linux Systems Step • Super user privilege management 1 • Scalable with automated centralized policy Step • 100% privileged user keystroke recording 2 • Smart grading of activity risk level Step • Proactive compliance management with 3 real-time control and alerting • Auditing the auditor 42 © Novell Inc. All rights reserved
  53. 53. Show Time... Privileged User Management Demo 43 © Novell, Inc. All rights reserved.
  54. 54. Manage
  55. 55. SLES Management Options • YaST / AutoYaST / WebYaST • SUSE Lifecycle Management Server • Subscription Management Tool • Novell Support Link • ZENworks Linux Management ® – Push Applications and Data, Policy-Driven Configuration, Inventory, Reporting, Remote Control, Web-based Admin • Use existing tools – Create images with SUSE Studio that integrate with your ® existing management environment by baking the management client into the build 45 © Novell, Inc. All rights reserved.
  56. 56. YaST & AutoYaST • YaST installation and configuration management framework – Unified and consistent single interface to all systems management tasks via modules Prepare Install Configure – Configure every aspect of the server Pre-configure Install Partition packages – Enhanced YaST Partitioner Create – CIM Standard adopted Create profile filesystem X11 • AutoYaST auto-installation Get profile Install Packages System variables – A tool for installing SUSE Linux ® Parse profile Bootloader SuSEconfig Enterprise on systems with as much (or little) automation as you want Convert Data Hardware – Works in networked and Network non-networked environments – Very flexible, very scalable, Misc. configs easy to use Quickly install, configure, and manage systems a rapidly set up popular services, both locally and remotely 46 © Novell, Inc. All rights reserved.
  57. 57. WebYaST Overview WebYaST is a framework and a collection of modules providing a stylish, easy-to-use, and low-cost approach to packaging an Appliance with the minimal configuration interface necessary for its set up. Y 47 © Novell, Inc. All rights reserved.
  58. 58. WebYaST Modules Initial configuration wizard Time, Timezone, NTP Status, soft-shutdown, reboot Monitoring (configurable) Update Network License/EULA and Registration Users Service start/stop/status Log visualization Y 48 © Novell, Inc. All rights reserved.
  59. 59. SUSE Lifecycle Management Server ® • Unified update mechanism, which federates updates for all components of a software appliance • Authentication, entitlement and access control to distribute updates • Repository management, which stages repository support for quality assurance • Management of essential customer data and interface to CRM systems • Rollback to any previous version for system restoration or reproduction 49 © Novell, Inc. All rights reserved.
  60. 60. Subscription Management Tool SMT is a proxy and auditing tool that mirrors the Novell ® Customer Center and tightly integrates with it. It allows you to accurately register and manage an entire SUSE Linux ® Enterprise deployment, guaranteeing the subscription compliance and secure IT process flow organizations require. Customer's Network Novell Customer SMT Center 50 © Novell, Inc. All rights reserved.
  61. 61. Subscription Management Tool Novell Production Clients Customer Center Non- staged Mirror Production snapshot Staged Testing snapshot 51 © Novell, Inc. All rights reserved. Full Testing
  62. 62. Novell Support Link • Provides SUSE Linux Enterprise platform-integrated way to ® submit support requests to Novell Technical Services SM • Interface is a Yast module, which provides access to a simple wizard enabling quick reporting of an incident • supportconfig used underneath • Customer can review any and all data before submitting, and discard any bit considered sensitive • Enables diagnostics performed by the Novell Support Advisor • Organizations can leverage infrastructure for internal or OEM use Accelerate support communications, get faster issue resolution 52 © Novell, Inc. All rights reserved.
  63. 63. ZENworks Linux Management Manage the complete lifecycle of devices Asset Acquisition Identity Image (re-image) Configuration and Lockdown Manage Profiles Remote Support Install & Remove Apps Asset Retirement Inventory & Reporting 53 © Novell Inc. All rights reserved
  64. 64. ZENworks Linux Management Redefining Linux Management ZENworks 7 Linux Management : Full Stack Linux lifecycle management Policy Driven Linux OS imaging and deployment Application deployment and management Secure Remote Control Inventory and reporting Unique Policy Driven configuration & lockdown. All web-based management built on the next- generation ZENworks Architecture Cross-distribution support – Novell, SUSE, Red Hat Innovative web-based console keeps each administrator’s most common tasks a single click away. 54 © Novell Inc. All rights reserved
  65. 65. Show Time... ZENworks Linux Management Demo 55 © Novell, Inc. All rights reserved.
  66. 66. Availability & Disaster Recovery
  67. 67. SLES - High Availability Extension • An affordable, integrated suite of robust open source clustering technologies that you can use to implement highly available physical and virtual Linux services. • Used with SUSE Linux Enterprise Server, it helps you maintain business continuity, protect your data, and reduce unplanned downtime for your mission critical Linux workloads. • Benefits – Cost effectively meet your service-level agreements – Ensure continuous access to your mission-critical systems and data – Maintain data integrity – Increase resource utilization 57 © Novell, Inc. All rights reserved.
  68. 68. SLES 11 - Key HA Capabilities • Service Availability 24/7 – Policy driven clustering > OpenAIS messaging and membership layer > Pacemaker cluster resource manager • Sharing and Scaling Data-access by Multiple Nodes – OCFS2 Clusterfile system – Clustered logical volume manager • Disaster Tolerance – Continuous data replication via IP – Distributed replicated block device • Scale Network Services – IP load-balancing • User-friendly Tools – Graphical user interface – Unified command line interface 58 © Novell, Inc. All rights reserved.
  69. 69. SLES 11 SP1 - Key HA Capabilities • Storage Based Quorum – Enabling the use of a storage device as a quorum instance to match traditional Unix setups and to prevent split brain scenarios • Integrated Samba Clustering – Integration of Samba with OCFS2 for higher throughput and scale out of SMB access • Metro-Area Clusters – Supporting clustering between different data center locations • Multilevel Administration Rights – More fine-grained control of cluster operation and administration • Enhance Data Replication – Improved DRBD capabilities • DR Framework – A tool set (ReaR) for node recovery 59 © Novell, Inc. All rights reserved.
  70. 70. Show Time... High Availability Demo 60 © Novell, Inc. All rights reserved.
  71. 71. PlateSpin Migrate & Protect Technology that automates the streaming workloads across infrastructures. • Decouple workload from host infrastructure • Live peer-to-peer workload movement • Deploy or recover workload from archives and backups Physical • Protect and recover workloads Blade Virtual Image Workload decoupled from hardware 61 © Novell, Inc. All rights reserved.
  72. 72. Consolidated Recovery Leveraging Virtual Infrastructure for Protection of Physical servers Physical production servers Solution • Replication of workload into an off-line virtual machine • One click failover • One click test restore • Flexible failback Benefits • Drastically reduce TCO and RTO while Virtual Recovery Hosts achieving whole workload protection • Improving RPO through incremental synchronization • Simplify testing with bootable backups Physical production servers 62 © Novell, Inc. All rights reserved.
  73. 73. PlateSpin Forge World’s first disaster recovery hardware appliance with embedded virtualization Protects up to 25 workloads out of the box Plug In and Protect DR Solution for : PlateSpin Forge Includes: • Medium enterprises • Storage • Branch or field use for large enterprises • Replication Software • Hosted recovery • Remote Management Interface • Hypervisor 63 © Novell, Inc. All rights reserved.
  74. 74. Consolidate Recovery 25 to 1 Whole Workload No Redundant Recovery Replication Infrastructure Environment Costs File based replication PlateSpin Forge (Remote Site) Internal Web Server Email Server Block Based replication 64 © Novell, Inc. All rights reserved.
  75. 75. Simplify Testing Rapidly Test Testing Logged For Isolated Testing of Recovery Reporting and Recovery Workloads Compliance Workloads PlateSpin Forge (Remote Site) Internal Web Server Email Server 65 © Novell, Inc. All rights reserved.
  76. 76. Rapid Failover and Flexible Failback Recovery Workload Failback to Failback with Sync Runs on PlateSpin Dissimilar To Repaired Forge Hardware Hardware PlateSpin Forge (Remote Site) Internal Web Server Repaired Email Server New Web Server 66 © Novell, Inc. All rights reserved.
  77. 77. Gain Visibility Demonstrate Policy Actionable Failure Compliance Alerts Notification PlateSpin Forge (Remote Site) Internal Web Server Smart Phone Email Server 67 © Novell, Inc. All rights reserved.
  78. 78. Summary
  79. 79. SUSE Linux Enterprise The most interoperable platform for mission-critical computing, both physical and virtual—from the desktop to the data center 69 © Novell, Inc. All rights reserved.
  80. 80. SUSE Linux Enterprise Server ® Best Choice for Your Business (1) • Highly reliable, scalable and secure enterprise-class operating system • Built to power mission-critical workloads in physical and virtual environments • Affordable, interoperable and manageable open source foundation • Cost effectively helps – Deliver high-performance, mission-critical business services – Enable secure network infrastructure – Provide essential Web infrastructure – Simplify management of heterogeneous IT infrastructure 70 © Novell, Inc. All rights reserved.
  81. 81. SUSE Linux Enterprise Server ® Best Choice for Your Business (2) • Only enterprise Linux recommended by Microsoft and SAP, designed for Interoperability – Supports open standard CIM interfaces and can be managed by any management solution utilizing CIM • Perfect guest for virtual computing – Optimized to run as a high performance guest on leading hypervisors – Supports an unlimited number of virtual machines per physical system with a single subscription • Modular, general purpose operating system – Runs on five processor architectures – Optional extensions that provide advanced capabilities • Backed by award-winning technical services from Novell ® 71 © Novell, Inc. All rights reserved.
  82. 82. Next Steps Try SUSE Studio Online ® Build an appliance with a few mouse clicks. Customize it to your heart's content, and share it with the world! SUSE Appliance Toolkit Learn about the fastest way to Build, Manage and Maintain new workloads! Demos Check out recorded product demos Reach out to your Novell sales contact to learn more 72 © Novell, Inc. All rights reserved.
  83. 83. Unpublished Work of Novell, Inc. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.