SlideShare a Scribd company logo

093049ov10.pptx

Download as PPTX, PDF
N
NguyenNM

The document discusses various methods for maintaining cloud systems, including patching cloud components, designing and implementing automation/orchestration, and different patching strategies. It covers patching development, QA, and production environments separately and describes techniques like rolling updates and blue/green deployments. The document also discusses hotfixes, patching failover clusters, dependency considerations, and guidelines for reviewing component types, using test environments, scheduling updates, and investigating dependencies. It suggests automating tasks like snapshotting VMs, patching, restarting VMs, and removing outdated/stale components. Automation workflows and regular maintenance schedules are also proposed.

1 of 19
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintaining Cloud Systems 1 • Patch Cloud Systems • Design and Implement Automation and Orchestration for Maintenance
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Scope of Components to be Patched 2 The components you should look to patch are: • Hypervisors • Virtual machinesOperating systems • Virtual appliances • Networking components • Applications • Storage components • Clusters
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Production vs. Development vs. QA Patching 3 Development QA Patching/Test Production
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Rolling Updates 4 • A rolling update is a patching strategy that staggers deployment across multiple phases. • This helps reduce downtime and issues from the update. • Instead of updating all of the servers or tiers at the same time, the update is installed on one server or subset of servers at a time. • This can be for any group of cloud components, not just servers or VMs. • Yu want to consider peak usage times for the organization and schedule any updates when they will have the least impact.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Blue/Green Deployment Patching 5 Users Router New Version Old Version
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Hotfixes 6 • Designed to fix serious or critical flaws or security vulnerabilities. • Designed to be deployed quickly to solve a specific issue.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Failover Cluster Patching 7 • You may want only the critical security patches to address severe vulnerabilities. • You may instead plan regular outages to perform patching. • Or you may want to stay as up to date as possible and schedule downtime to install all patches. • Cluster-Aware Updating (CAU) is a feature in Windows 2012 and later that updates all servers in a failover cluster so that it does not impact the availability of the cluster.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Patching Order of Operations 8 Here are the steps to help you create your own process: Step 1: Do an inventory of all components in your environment, documenting the type of each component, version, IP addresses, physical location, and function. Step 2: Try to standardize components of the same type to all use the same version of their software/firmware/etc. Step 3: Inventory the security controls you have in place (routers, firewalls, IDSes, anti- malware, etc.) and their configurations (i.e., firewall rules, etc.). Step 4: You will compare any reported vulnerabilities against your inventory and security control list. Step 5: Once you know the vulnerabilities that apply to your environment, you need to assess each one for how critical the vulnerability itself is, and how critical the systems it affects are. Step 6: You will deploy patches without disrupting uptime or production. Step 7: Finally, monitor your patch systems for any issues and be prepared to rollback patches in the event they create problems in your environment.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Patching Dependency Considerations 9 • Some software packages have dependencies on specific versions of other software packages. • This can create a problem if you update one software package and another software package requires the previous version. • It will throw an error or not function properly, forcing you to rollback the update. • As part of your inventory, you will determine if you have any software dependencies, and if they require specific versions of other software.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Guidelines for Patching Cloud Systems 10 • Review all of the different types of components that need to be patched. • If you can, use a test environment to test patches before applying them to your production environment. • At the very least, use pilot systems to test patches on them first. • Consider peak usage times for the organization and schedule any updates when they will have the least impact. • Consider following a patching order of operations to ensure you roll out updates in the least disrupting and most comprehensive manner. • Investigate possible dependencies among your systems that could be broken by patching.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Activity: Creating a Patching SOP 11 • Rudison Technologies does not currently have a plan for patching systems and applications in their on-premises or cloud environments. • They want to keep systems up to date without impacting the production environment with downtime from applying patches or from patches affecting production systems in unexpected ways. • You will need to create the high-level steps that form the procedure for patching. • You will also research automation options that will help with the patching process.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Platform Automation and Orchestration Options 12 • Automation and orchestration can aid your patch maintenance efforts by allowing you to automate the installation of patches, creating test environments, rebooting patched systems, etc.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Types of Updates 13 • Physical Hardware Checks • Backup and Restore • Software Updates and Licensing • Event Logs and Services • Disk Management • Anti-Virus • Security • Active Directory • Microsoft Exchange Mail System • Network Performance • Miscellaneous
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintenance Activities to Automate 14 Here are some maintenance activities you might consider automating: • Snapshot VMs • Cloning VMs • Patching systems • Restart/Shutdown VMs • Maintenance Mode • Enabling/ Disabling alerts • Clearing logs and archiving logs • Compressing drives • Removing inactive accounts • Removing stale DNS entries • Removing orphaned resources • Removing outdated rules from firewall • Removing outdated rules from security • Resource reclamation • Maintain ACLs for the target object
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Automation Workflows 15 • In addition to using automation and orchestration, there are also automation workflows you can employ. • Automation workflows are either managed or unmanaged automation solutions that have prebuilt automation workflows related to the cloud. • Many CSPs offer their own versions of these tailored to work with their environment. • AWS has the Amazon Simple Workflow Service (SWF) • Microsoft Azure has Azure Automation
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintenance Schedules 16 Automation scripts run on regular basis on different schedules
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Guidelines for Designing and Implementing Maintenance Automation and Orchestration 17 • Consider using automation and orchestration to aid your maintenance efforts. • Consider all your maintenance tasks and which ones would be best to automate. • Consider using automation workflow either through your CSP or a third party tool to aid your automation efforts. • Schedule your maintenance tasks to ensure they are performed on a regular basis.
Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Activity: Designing Maintenance Automation and Orchestration 18 • As part of cloud maintenance the Executive Steering Committee wants to ensure there are processes in place to help perform maintenance and ensure it is done correctly. • The Executive Steering Committee has asked you to evaluate different processes and tasks that Rudison may want to consider automating. • Common administrative tasks that are performed are creating new user accounts, scaling VMs up or down, provisioning and de-provisioning VMs, patching VMs and applications, backing up data, and managing user accounts. • You will also need to consider what automation tools you would use.
Reflective Questions Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Reflective Questions 1. How have your IT teams patched systems in the organizations you've worked for? 2. In the current IT environment, what maintenance activities would be good choices for automation? 19

Recommended

Datasheet.net pluginforrd
Datasheet.net pluginforrdDatasheet.net pluginforrd
Datasheet.net pluginforrd
MidVision
 
Application slides
Application slidesApplication slides
Application slides
IBM Rational software
 
Modern Software Licensing: New Trends and Options
Modern Software Licensing: New Trends and OptionsModern Software Licensing: New Trends and Options
Modern Software Licensing: New Trends and Options
lisaabe
 
Improving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNetImproving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNet
Venkat Janardhanam, MS, MBA
 
Datasheet apachepluginforrd
Datasheet apachepluginforrdDatasheet apachepluginforrd
Datasheet apachepluginforrd
MidVision
 
Application module slides
Application module slidesApplication module slides
Application module slides
Joanne Scouler
 
Getting to Walk with DevOps
Getting to Walk with DevOpsGetting to Walk with DevOps
Getting to Walk with DevOps
Eklove Mohan
 
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
Amazon Web Services
 

Recommended

Datasheet.net pluginforrd
Datasheet.net pluginforrdDatasheet.net pluginforrd
Datasheet.net pluginforrd
MidVision
 
Application slides
Application slidesApplication slides
Application slides
IBM Rational software
 
Modern Software Licensing: New Trends and Options
Modern Software Licensing: New Trends and OptionsModern Software Licensing: New Trends and Options
Modern Software Licensing: New Trends and Options
lisaabe
 
Improving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNetImproving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNet
Venkat Janardhanam, MS, MBA
 
Datasheet apachepluginforrd
Datasheet apachepluginforrdDatasheet apachepluginforrd
Datasheet apachepluginforrd
MidVision
 
Application module slides
Application module slidesApplication module slides
Application module slides
Joanne Scouler
 
Getting to Walk with DevOps
Getting to Walk with DevOpsGetting to Walk with DevOps
Getting to Walk with DevOps
Eklove Mohan
 
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
CI/CD Pipeline Security: Advanced Continuous Delivery Best Practices: Securit...
Amazon Web Services
 
Chapter 9 Client and application Security
Chapter 9 Client and application SecurityChapter 9 Client and application Security
Chapter 9 Client and application Security
Dr. Ahmed Al Zaidy
 
How to prepare a project for automated deployment?
How to prepare a project for automated deployment?How to prepare a project for automated deployment?
How to prepare a project for automated deployment?
ONE BCG
 
Optimize Your Enterprise Git Webinar
Optimize Your Enterprise Git WebinarOptimize Your Enterprise Git Webinar
Optimize Your Enterprise Git Webinar
CollabNet
 
Deployment module slides
Deployment module slidesDeployment module slides
Deployment module slides
IBM Rational software
 
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019 Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Amazon Web Services
 
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
IBM Systems UKI
 
Command Central Overview
Command Central OverviewCommand Central Overview
Command Central Overview
Software AG
 
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
Rosa Naranjo
 
GWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworksGWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworks
GWAVA
 
Quickstart for continuous integration
Quickstart for continuous integrationQuickstart for continuous integration
Quickstart for continuous integration
Fabricio Epaminondas
 
DevOps explained
DevOps explainedDevOps explained
DevOps explained
Jérôme Kehrli
 
Agile testing for embedded software development
Agile testing for embedded software developmentAgile testing for embedded software development
Agile testing for embedded software development
Tom Stiehm
 
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
DianaGray10
 
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptxS4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
ITAdmin28
 
Datasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrdDatasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrd
MidVision
 
Beginners Guide to High Availability for Postgres
Beginners Guide to High Availability for PostgresBeginners Guide to High Availability for Postgres
Beginners Guide to High Availability for Postgres
EDB
 
Developing apps faster
Developing apps fasterDeveloping apps faster
Developing apps faster
Zend by Rogue Wave Software
 
There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806
Ivanti
 
Beginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for PostgresBeginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for Postgres
EDB
 
Cloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You GoCloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You Go
Kevin Downs
 
SRWE_Module_12.pptx
SRWE_Module_12.pptxSRWE_Module_12.pptx
SRWE_Module_12.pptx
NguyenNM
 
SRWE_Module_14.pptx
SRWE_Module_14.pptxSRWE_Module_14.pptx
SRWE_Module_14.pptx
NguyenNM
 

More Related Content

Similar to 093049ov10.pptx

Chapter 9 Client and application Security
Chapter 9 Client and application SecurityChapter 9 Client and application Security
Chapter 9 Client and application Security
Dr. Ahmed Al Zaidy
 
How to prepare a project for automated deployment?
How to prepare a project for automated deployment?How to prepare a project for automated deployment?
How to prepare a project for automated deployment?
ONE BCG
 
Optimize Your Enterprise Git Webinar
Optimize Your Enterprise Git WebinarOptimize Your Enterprise Git Webinar
Optimize Your Enterprise Git Webinar
CollabNet
 
Deployment module slides
Deployment module slidesDeployment module slides
Deployment module slides
IBM Rational software
 
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019 Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Amazon Web Services
 
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
IBM Systems UKI
 
Command Central Overview
Command Central OverviewCommand Central Overview
Command Central Overview
Software AG
 
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
Rosa Naranjo
 
GWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworksGWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworks
GWAVA
 
Quickstart for continuous integration
Quickstart for continuous integrationQuickstart for continuous integration
Quickstart for continuous integration
Fabricio Epaminondas
 
DevOps explained
DevOps explainedDevOps explained
DevOps explained
Jérôme Kehrli
 
Agile testing for embedded software development
Agile testing for embedded software developmentAgile testing for embedded software development
Agile testing for embedded software development
Tom Stiehm
 
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
DianaGray10
 
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptxS4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
ITAdmin28
 
Datasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrdDatasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrd
MidVision
 
Beginners Guide to High Availability for Postgres
Beginners Guide to High Availability for PostgresBeginners Guide to High Availability for Postgres
Beginners Guide to High Availability for Postgres
EDB
 
Developing apps faster
Developing apps fasterDeveloping apps faster
Developing apps faster
Zend by Rogue Wave Software
 
There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806
Ivanti
 
Beginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for PostgresBeginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for Postgres
EDB
 
Cloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You GoCloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You Go
Kevin Downs
 

Similar to 093049ov10.pptx (20)

Chapter 9 Client and application Security
Chapter 9 Client and application SecurityChapter 9 Client and application Security
Chapter 9 Client and application Security
 
How to prepare a project for automated deployment?
How to prepare a project for automated deployment?How to prepare a project for automated deployment?
How to prepare a project for automated deployment?
 
Optimize Your Enterprise Git Webinar
Optimize Your Enterprise Git WebinarOptimize Your Enterprise Git Webinar
Optimize Your Enterprise Git Webinar
 
Deployment module slides
Deployment module slidesDeployment module slides
Deployment module slides
 
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019 Pragmatic container security - DEM11-R - AWS re:Inforce 2019
Pragmatic container security - DEM11-R - AWS re:Inforce 2019
 
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
Pure Systems Patterns of Expertise - John Kaemmerer and Gerry Kovan, 11th Sep...
 
Command Central Overview
Command Central OverviewCommand Central Overview
Command Central Overview
 
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
IBM Innovate 2014: DRD 1259: CLM Patch Service for Improved Patch Delivery to...
 
GWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworksGWAVACon 2013: Gain Control - ZENworks
GWAVACon 2013: Gain Control - ZENworks
 
Quickstart for continuous integration
Quickstart for continuous integrationQuickstart for continuous integration
Quickstart for continuous integration
 
DevOps explained
DevOps explainedDevOps explained
DevOps explained
 
Agile testing for embedded software development
Agile testing for embedded software developmentAgile testing for embedded software development
Agile testing for embedded software development
 
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
End of Support: Understanding the Impact, Timeline, and Benefits of Upgrading...
 
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptxS4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
S4H_790 IAM - Authorization Concept Guidelines for S4HANA Cloud.pptx
 
Datasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrdDatasheet cruisecontrolpluginforrd
Datasheet cruisecontrolpluginforrd
 
Beginners Guide to High Availability for Postgres
Beginners Guide to High Availability for PostgresBeginners Guide to High Availability for Postgres
Beginners Guide to High Availability for Postgres
 
Developing apps faster
Developing apps fasterDeveloping apps faster
Developing apps faster
 
There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806There's more to third-party patching than SCCM 1806
There's more to third-party patching than SCCM 1806
 
Beginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for PostgresBeginner's Guide to High Availability for Postgres
Beginner's Guide to High Availability for Postgres
 
Cloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You GoCloud Migration - The Earlier You Instrument, The Faster You Go
Cloud Migration - The Earlier You Instrument, The Faster You Go
 

More from NguyenNM

SRWE_Module_12.pptx
SRWE_Module_12.pptxSRWE_Module_12.pptx
SRWE_Module_12.pptx
NguyenNM
 
SRWE_Module_14.pptx
SRWE_Module_14.pptxSRWE_Module_14.pptx
SRWE_Module_14.pptx
NguyenNM
 
readme_vap902.pdf
readme_vap902.pdfreadme_vap902.pdf
readme_vap902.pdf
NguyenNM
 
chuong 1 tts.ppt
chuong 1 tts.pptchuong 1 tts.ppt
chuong 1 tts.ppt
NguyenNM
 
093049ov4.pptx
093049ov4.pptx093049ov4.pptx
093049ov4.pptx
NguyenNM
 
093049ov5.pptx
093049ov5.pptx093049ov5.pptx
093049ov5.pptx
NguyenNM
 
093049ov16.pptx
093049ov16.pptx093049ov16.pptx
093049ov16.pptx
NguyenNM
 

More from NguyenNM (7)

SRWE_Module_12.pptx
SRWE_Module_12.pptxSRWE_Module_12.pptx
SRWE_Module_12.pptx
 
SRWE_Module_14.pptx
SRWE_Module_14.pptxSRWE_Module_14.pptx
SRWE_Module_14.pptx
 
readme_vap902.pdf
readme_vap902.pdfreadme_vap902.pdf
readme_vap902.pdf
 
chuong 1 tts.ppt
chuong 1 tts.pptchuong 1 tts.ppt
chuong 1 tts.ppt
 
093049ov4.pptx
093049ov4.pptx093049ov4.pptx
093049ov4.pptx
 
093049ov5.pptx
093049ov5.pptx093049ov5.pptx
093049ov5.pptx
 
093049ov16.pptx
093049ov16.pptx093049ov16.pptx
093049ov16.pptx
 

Recently uploaded

ikea_woodgreen_petscharity_dog-alogue_digital.pdf
ikea_woodgreen_petscharity_dog-alogue_digital.pdfikea_woodgreen_petscharity_dog-alogue_digital.pdf
ikea_woodgreen_petscharity_dog-alogue_digital.pdf
agatadrynko
 
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s DholeraTata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
Avirahi City Dholera
 
Lundin Gold Corporate Presentation - June 2024
Lundin Gold Corporate Presentation - June 2024Lundin Gold Corporate Presentation - June 2024
Lundin Gold Corporate Presentation - June 2024
Adnet Communications
 
Mastering B2B Payments Webinar from BlueSnap
Mastering B2B Payments Webinar from BlueSnapMastering B2B Payments Webinar from BlueSnap
Mastering B2B Payments Webinar from BlueSnap
Norma Mushkat Gaffin
 
Best Forex Brokers Comparison in INDIA 2024
Best Forex Brokers Comparison in INDIA 2024Best Forex Brokers Comparison in INDIA 2024
Best Forex Brokers Comparison in INDIA 2024
Top Forex Brokers Review
 
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
Lviv Startup Club
 
Part 2 Deep Dive: Navigating the 2024 Slowdown
Part 2 Deep Dive: Navigating the 2024 SlowdownPart 2 Deep Dive: Navigating the 2024 Slowdown
Part 2 Deep Dive: Navigating the 2024 Slowdown
jeffkluth1
 
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel ChartSatta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
➒➌➎➏➑➐➋➑➐➐Dpboss Matka Guessing Satta Matka Kalyan Chart Indian Matka
 
Zodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
Zodiac Signs and Food Preferences_ What Your Sign Says About Your TasteZodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
Zodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
my Pandit
 
Understanding User Needs and Satisfying Them
Understanding User Needs and Satisfying ThemUnderstanding User Needs and Satisfying Them
Understanding User Needs and Satisfying Them
Aggregage
 
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
ABHILASH DUTTA
 
LA HUG - Video Testimonials with Chynna Morgan - June 2024
LA HUG - Video Testimonials with Chynna Morgan - June 2024LA HUG - Video Testimonials with Chynna Morgan - June 2024
LA HUG - Video Testimonials with Chynna Morgan - June 2024
Lital Barkan
 
Income Tax exemption for Start up : Section 80 IAC
Income Tax exemption for Start up : Section 80 IACIncome Tax exemption for Start up : Section 80 IAC
Income Tax exemption for Start up : Section 80 IAC
CA Dr. Prithvi Ranjan Parhi
 
Training my puppy and implementation in this story
Training my puppy and implementation in this storyTraining my puppy and implementation in this story
Training my puppy and implementation in this story
WilliamRodrigues148
 
Building Your Employer Brand with Social Media
Building Your Employer Brand with Social MediaBuilding Your Employer Brand with Social Media
Building Your Employer Brand with Social Media
LuanWise
 
Recruiting in the Digital Age: A Social Media Masterclass
Recruiting in the Digital Age: A Social Media MasterclassRecruiting in the Digital Age: A Social Media Masterclass
Recruiting in the Digital Age: A Social Media Masterclass
LuanWise
 
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdfModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
fisherameliaisabella
 
3 Simple Steps To Buy Verified Payoneer Account In 2024
3 Simple Steps To Buy Verified Payoneer Account In 20243 Simple Steps To Buy Verified Payoneer Account In 2024
3 Simple Steps To Buy Verified Payoneer Account In 2024
SEOSMMEARTH
 
ikea_woodgreen_petscharity_cat-alogue_digital.pdf
ikea_woodgreen_petscharity_cat-alogue_digital.pdfikea_woodgreen_petscharity_cat-alogue_digital.pdf
ikea_woodgreen_petscharity_cat-alogue_digital.pdf
agatadrynko
 
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta MatkaDpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
➒➌➎➏➑➐➋➑➐➐Dpboss Matka Guessing Satta Matka Kalyan Chart Indian Matka
 

Recently uploaded (20)

ikea_woodgreen_petscharity_dog-alogue_digital.pdf
ikea_woodgreen_petscharity_dog-alogue_digital.pdfikea_woodgreen_petscharity_dog-alogue_digital.pdf
ikea_woodgreen_petscharity_dog-alogue_digital.pdf
 
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s DholeraTata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
Tata Group Dials Taiwan for Its Chipmaking Ambition in Gujarat’s Dholera
 
Lundin Gold Corporate Presentation - June 2024
Lundin Gold Corporate Presentation - June 2024Lundin Gold Corporate Presentation - June 2024
Lundin Gold Corporate Presentation - June 2024
 
Mastering B2B Payments Webinar from BlueSnap
Mastering B2B Payments Webinar from BlueSnapMastering B2B Payments Webinar from BlueSnap
Mastering B2B Payments Webinar from BlueSnap
 
Best Forex Brokers Comparison in INDIA 2024
Best Forex Brokers Comparison in INDIA 2024Best Forex Brokers Comparison in INDIA 2024
Best Forex Brokers Comparison in INDIA 2024
 
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
Evgen Osmak: Methods of key project parameters estimation: from the shaman-in...
 
Part 2 Deep Dive: Navigating the 2024 Slowdown
Part 2 Deep Dive: Navigating the 2024 SlowdownPart 2 Deep Dive: Navigating the 2024 Slowdown
Part 2 Deep Dive: Navigating the 2024 Slowdown
 
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel ChartSatta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
Satta Matka Dpboss Matka Guessing Kalyan Chart Indian Matka Kalyan panel Chart
 
Zodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
Zodiac Signs and Food Preferences_ What Your Sign Says About Your TasteZodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
Zodiac Signs and Food Preferences_ What Your Sign Says About Your Taste
 
Understanding User Needs and Satisfying Them
Understanding User Needs and Satisfying ThemUnderstanding User Needs and Satisfying Them
Understanding User Needs and Satisfying Them
 
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
The Evolution and Impact of OTT Platforms: A Deep Dive into the Future of Ent...
 
LA HUG - Video Testimonials with Chynna Morgan - June 2024
LA HUG - Video Testimonials with Chynna Morgan - June 2024LA HUG - Video Testimonials with Chynna Morgan - June 2024
LA HUG - Video Testimonials with Chynna Morgan - June 2024
 
Income Tax exemption for Start up : Section 80 IAC
Income Tax exemption for Start up : Section 80 IACIncome Tax exemption for Start up : Section 80 IAC
Income Tax exemption for Start up : Section 80 IAC
 
Training my puppy and implementation in this story
Training my puppy and implementation in this storyTraining my puppy and implementation in this story
Training my puppy and implementation in this story
 
Building Your Employer Brand with Social Media
Building Your Employer Brand with Social MediaBuilding Your Employer Brand with Social Media
Building Your Employer Brand with Social Media
 
Recruiting in the Digital Age: A Social Media Masterclass
Recruiting in the Digital Age: A Social Media MasterclassRecruiting in the Digital Age: A Social Media Masterclass
Recruiting in the Digital Age: A Social Media Masterclass
 
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdfModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
ModelingMarketingStrategiesMKS.CollumbiaUniversitypdf
 
3 Simple Steps To Buy Verified Payoneer Account In 2024
3 Simple Steps To Buy Verified Payoneer Account In 20243 Simple Steps To Buy Verified Payoneer Account In 2024
3 Simple Steps To Buy Verified Payoneer Account In 2024
 
ikea_woodgreen_petscharity_cat-alogue_digital.pdf
ikea_woodgreen_petscharity_cat-alogue_digital.pdfikea_woodgreen_petscharity_cat-alogue_digital.pdf
ikea_woodgreen_petscharity_cat-alogue_digital.pdf
 
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta MatkaDpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
Dpboss Matka Guessing Satta Matta Matka Kalyan Chart Satta Matka
 

093049ov10.pptx

  • 1. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintaining Cloud Systems 1 • Patch Cloud Systems • Design and Implement Automation and Orchestration for Maintenance
  • 2. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Scope of Components to be Patched 2 The components you should look to patch are: • Hypervisors • Virtual machinesOperating systems • Virtual appliances • Networking components • Applications • Storage components • Clusters
  • 3. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Production vs. Development vs. QA Patching 3 Development QA Patching/Test Production
  • 4. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Rolling Updates 4 • A rolling update is a patching strategy that staggers deployment across multiple phases. • This helps reduce downtime and issues from the update. • Instead of updating all of the servers or tiers at the same time, the update is installed on one server or subset of servers at a time. • This can be for any group of cloud components, not just servers or VMs. • Yu want to consider peak usage times for the organization and schedule any updates when they will have the least impact.
  • 5. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Blue/Green Deployment Patching 5 Users Router New Version Old Version
  • 6. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Hotfixes 6 • Designed to fix serious or critical flaws or security vulnerabilities. • Designed to be deployed quickly to solve a specific issue.
  • 7. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Failover Cluster Patching 7 • You may want only the critical security patches to address severe vulnerabilities. • You may instead plan regular outages to perform patching. • Or you may want to stay as up to date as possible and schedule downtime to install all patches. • Cluster-Aware Updating (CAU) is a feature in Windows 2012 and later that updates all servers in a failover cluster so that it does not impact the availability of the cluster.
  • 8. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Patching Order of Operations 8 Here are the steps to help you create your own process: Step 1: Do an inventory of all components in your environment, documenting the type of each component, version, IP addresses, physical location, and function. Step 2: Try to standardize components of the same type to all use the same version of their software/firmware/etc. Step 3: Inventory the security controls you have in place (routers, firewalls, IDSes, anti- malware, etc.) and their configurations (i.e., firewall rules, etc.). Step 4: You will compare any reported vulnerabilities against your inventory and security control list. Step 5: Once you know the vulnerabilities that apply to your environment, you need to assess each one for how critical the vulnerability itself is, and how critical the systems it affects are. Step 6: You will deploy patches without disrupting uptime or production. Step 7: Finally, monitor your patch systems for any issues and be prepared to rollback patches in the event they create problems in your environment.
  • 9. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Patching Dependency Considerations 9 • Some software packages have dependencies on specific versions of other software packages. • This can create a problem if you update one software package and another software package requires the previous version. • It will throw an error or not function properly, forcing you to rollback the update. • As part of your inventory, you will determine if you have any software dependencies, and if they require specific versions of other software.
  • 10. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Guidelines for Patching Cloud Systems 10 • Review all of the different types of components that need to be patched. • If you can, use a test environment to test patches before applying them to your production environment. • At the very least, use pilot systems to test patches on them first. • Consider peak usage times for the organization and schedule any updates when they will have the least impact. • Consider following a patching order of operations to ensure you roll out updates in the least disrupting and most comprehensive manner. • Investigate possible dependencies among your systems that could be broken by patching.
  • 11. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Activity: Creating a Patching SOP 11 • Rudison Technologies does not currently have a plan for patching systems and applications in their on-premises or cloud environments. • They want to keep systems up to date without impacting the production environment with downtime from applying patches or from patches affecting production systems in unexpected ways. • You will need to create the high-level steps that form the procedure for patching. • You will also research automation options that will help with the patching process.
  • 12. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Platform Automation and Orchestration Options 12 • Automation and orchestration can aid your patch maintenance efforts by allowing you to automate the installation of patches, creating test environments, rebooting patched systems, etc.
  • 13. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Types of Updates 13 • Physical Hardware Checks • Backup and Restore • Software Updates and Licensing • Event Logs and Services • Disk Management • Anti-Virus • Security • Active Directory • Microsoft Exchange Mail System • Network Performance • Miscellaneous
  • 14. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintenance Activities to Automate 14 Here are some maintenance activities you might consider automating: • Snapshot VMs • Cloning VMs • Patching systems • Restart/Shutdown VMs • Maintenance Mode • Enabling/ Disabling alerts • Clearing logs and archiving logs • Compressing drives • Removing inactive accounts • Removing stale DNS entries • Removing orphaned resources • Removing outdated rules from firewall • Removing outdated rules from security • Resource reclamation • Maintain ACLs for the target object
  • 15. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Automation Workflows 15 • In addition to using automation and orchestration, there are also automation workflows you can employ. • Automation workflows are either managed or unmanaged automation solutions that have prebuilt automation workflows related to the cloud. • Many CSPs offer their own versions of these tailored to work with their environment. • AWS has the Amazon Simple Workflow Service (SWF) • Microsoft Azure has Azure Automation
  • 16. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Maintenance Schedules 16 Automation scripts run on regular basis on different schedules
  • 17. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Guidelines for Designing and Implementing Maintenance Automation and Orchestration 17 • Consider using automation and orchestration to aid your maintenance efforts. • Consider all your maintenance tasks and which ones would be best to automate. • Consider using automation workflow either through your CSP or a third party tool to aid your automation efforts. • Schedule your maintenance tasks to ensure they are performed on a regular basis.
  • 18. Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Activity: Designing Maintenance Automation and Orchestration 18 • As part of cloud maintenance the Executive Steering Committee wants to ensure there are processes in place to help perform maintenance and ensure it is done correctly. • The Executive Steering Committee has asked you to evaluate different processes and tasks that Rudison may want to consider automating. • Common administrative tasks that are performed are creating new user accounts, scaling VMs up or down, provisioning and de-provisioning VMs, patching VMs and applications, backing up data, and managing user accounts. • You will also need to consider what automation tools you would use.
  • 19. Reflective Questions Copyright (c) 2019 CompTIA Properties, LLC. All Rights Reserved. | CompTIA.org Reflective Questions 1. How have your IT teams patched systems in the organizations you've worked for? 2. In the current IT environment, what maintenance activities would be good choices for automation? 19