Embed Size (px)
Citation preview
Copyright © 2016 Accenture All rights reserved. 1
Dominic Delmolino (@ddelmoli), Accenture Federal ServicesNatalie Bradley, Accenture Federal Services
June 20, 2016
DevOps as a Pathway to Cloud
Copyright © 2016 Accenture All rights reserved. 2
GETTING PAST THE EASY STUFF
Many of our clients have successfully launched their journey to AWS
New development and prototypes use cloud-native capabilities and agile devops practices
Migrating the large, legacy landscape has been more difficult
Copyright © 2016 Accenture All rights reserved. 3
THE EXISTING LANDSCAPE
Independent centers and program offices with unique contractors
Potentially independent QA/SAT environments with their own staff
Independent Security scanning
Production operations with its own set of contractors and environments
Copyright © 2016 Accenture All rights reserved. 4
CHALLENGES WE DON’T WANT ON AWS
Long cycle times and multiple unique environments limit ability to quickly deploy software
Standards are difficult to enforce and verify, leading to snowflake architectures
Security & Operations get overwhelmed with variations
Can we avoid these issues when we go
to AWS?
Copyright © 2016 Accenture All rights reserved. 5
LIFTING AND SHIFTING JUST KEEPS THE ISSUES
Copyright © 2016 Accenture All rights reserved. 6
TOTAL TRANSFORMATION WILL TAKE TOO LONG
Copyright © 2016 Accenture All rights reserved. 7
Sprint
CAN DEVOPS HELP?
Between Lift-and-Shift and Total Transformation, there is a hybrid approach that can be enabled and enhanced with DevOps principles
Plan
Develop
Integrate
Deliver
OperateDeploy
Small Items Frequently
Reduce Software Defects
Fully Describe Features
Copyright © 2016 Accenture All rights reserved. 8
QUICK OVERVIEW OF DEV(SEC)OPS
Validate
Run
Build
Working from common sources of truth, development, security and operations work together throughout the software lifecycle
Common Shared Secure Source
Code
Common Shared Secure Platform
and Vendor Software
Common Shared Baseline System
Images
Applications are continuously assembled, verified, scanned and deployed into representative testing
environments on a regular basis
Copyright © 2016 Accenture All rights reserved. 9
COMMON QUESTIONS ABOUT DEVOPS
• Will I have to re-tool my development environment?
• Will I have to re-train my staff?• Will I have to re-write my
application?• Will my team’s requirements be met?
Will DevOps really be all that useful for migration to AWS?
Copyright © 2016 Accenture All rights reserved. 10
USEFUL ENTERPRISE SERVICES
• Enabling, not controlling• Reliable, not low priority• Secure, not an exception• Commitment, not a science
experiment
DevOps Services are part of a production system. The end users are the developers, security professionals and operations personnel who use
these services to do their jobs.
Copyright © 2016 Accenture All rights reserved. 11
USING DEVOPS FOR CLOUD MIGRATION
TL;DR – If you are trying to modernise your development practices, or go cloud native without Continuous Integration / Continuous Deployment you are doing it wrong.
– Fintan Ryan, Redmonk, June 2016http://redmonk.com/fryan/2016/06/15/ci-the-cloud-native-on-ramp-and-the-dominance-of-jenkins/
• Repeatable deployments mean easier cloud scaling• Reliable deployments mean better security• Rapid deployments increase the pace of innovation
Copyright © 2016 Accenture All rights reserved. 12
SO HOW DOES ACCENTURE DO IT?
Sprint
Plan
Develop
Integrate
Deliver
OperateDeploy
Small Items Frequently
Reduce Software Defects
Fully Describe Features
• Accenture DevOps Enablement Services for IT (DOES-IT) are based on the open source Accenture DevOps Platform (ADOP)
• DOES-IT deploys well-known DevOps tools (GitHub, Jenkins, Nexus/Artifactory, Selenium) on AWS in a secure, enterprise configuration
Copyright © 2016 Accenture All rights reserved. 13
WHAT DOES IT LOOK LIKE?
Copyright © 2016 Accenture All rights reserved. 14
BUT CAN EVERYONE USE IT?
Fit for you• Can I just use the source code hosting? Yes.
• Can I just get my libraries from you? Yes.• Can I deploy to my current infrastructure? Yes.• Can I deploy to AWS? Yes.• Will you help me use the services? Yes.
How do I get started?
Copyright © 2016 Accenture All rights reserved. 15
CommonEnterpriseLibraries
“Copper” ProjectDeveloper
Workstation
SourceCode
Production DevOps Enterprise Services – Multi-AZ
DevOps Puppet ManifestSource Code RHEL6
/data/1 DevOpsPuppetManifest
DevOpsPuppetManifest
DevOpsPuppetManifest
Jenkins(Master Build Server)
Artifactory(Master Maven Repository)
Nagios(Master Monitoring Servers - Dev, Test, Prod))
ELK(Master Log Analysis Server)
ProjectSource Code
GitHub Enterprise(Source Code Repository)
Test DevOps Enterprise Services
Development DevOps Enterprise Services
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
RHEL6/data/1
LEVEL 1 (COPPER)
Copyright © 2016 Accenture All rights reserved. 16
CommonEnterpriseLibraries
“Silver” ProjectDeveloper
Workstation
SourceCode
Development Server Monitoring
Data
Libraries
Libraries“Silver” Project
Application
“Silver” ProjectBuild Server
“Silver” ProjectMaven Repository
Production DevOps Enterprise Services – Multi-AZ
DevOps Puppet ManifestSource Code RHEL6
/data/1 DevOpsPuppetManifest
DevOpsPuppetManifest
DevOpsPuppetManifest
Jenkins(Master Build Server)
Artifactory(Master Maven Repository)
Nagios(Master Monitoring Servers - Dev, Test, Prod))
ELK(Master Log Analysis Server)
ProjectSource Code
GitHub Enterprise(Source Code Repository)
Test DevOps Enterprise Services
Development DevOps Enterprise Services
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
RHEL6/data/1
LEVEL 2 (SILVER)
Copyright © 2016 Accenture All rights reserved. 17
“Gold” ProjectDeveloper
Workstation
SourceCode
Development Server Monitoring
Data
Production DevOps Enterprise Services – Multi-AZ
DevOps Puppet ManifestSource Code RHEL6
/data/1 DevOpsPuppetManifest
DevOpsPuppetManifest
DevOpsPuppetManifest
Jenkins(Master Build Server)
Artifactory(Master Maven Repository)
Nagios(Master Monitoring Servers - Dev, Test, Prod))
ELK(Master Log Analysis Server)
ProjectSource Code
GitHub Enterprise(Source Code Repository)
Test DevOps Enterprise Services
Development DevOps Enterprise Services
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
RHEL6/data/1
CommonEnterpriseLibrariesJenkins
(Build Server)
Artifactory(Maven Repository)
Libraries
“Gold” Project Development VPC
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1 DevOps
PuppetManifest
LEVEL 3 (GOLD)
Copyright © 2016 Accenture All rights reserved. 18
“Platinum” ProjectDeveloper
Workstation
SourceCode
Server Monitoring Data
“Platinum” Project Test VPC
ELK(Project Test Log Analysis Server)
“Platinum” Project Production VPC
ELK(Project Prod Log Analysis Server)
Production DevOps Enterprise Services – Multi-AZ
DevOps Puppet ManifestSource Code RHEL6
/data/1 DevOpsPuppetManifest
DevOpsPuppetManifest
DevOpsPuppetManifest
Jenkins(Master Build Server)
Artifactory(Master Maven Repository)
Nagios(Master Monitoring Servers - Dev, Test, Prod))
ELK(Master Log Analysis Server)
ProjectSource Code
GitHub Enterprise(Source Code Repository)
Test DevOps Enterprise Services
Development DevOps Enterprise Services
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
RHEL6/data/1
CommonEnterpriseLibrariesJenkins
(Build Server)
Artifactory(Maven Repository)
Libraries
“Platinum” Project Development VPC
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1 DevOps
PuppetManifest
DevOpsPuppetManifest
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
LEVEL 4 (PLATINUM)
Copyright © 2016 Accenture All rights reserved. 19
BENEFITS SECURITY AND COST SHARING
“Gold” ProjectDeveloper
Workstation
SourceCode
Production DevOps Enterprise Services – Multi-AZ
DevOps Puppet ManifestSource Code RHEL6
/data/1 DevOpsPuppetManifest
DevOpsPuppetManifest
DevOpsPuppetManifest
Jenkins(Master Build Server)
Artifactory(Master Maven Repository)
Nagios(Master Monitoring Servers - Dev, Test, Prod))
ELK(Master Log Analysis Server)
ProjectSource Code
GitHub Enterprise(Source Code Repository)
RHEL6/data/1
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
RHEL6/data/1
CommonEnterpriseLibrariesJenkins
(Build Server)
Artifactory(Maven Repository)
Libraries
“Gold” Project Development VPC
DevOpsPuppetManifest
RHEL6/data/1
RHEL6/data/1
DevOpsPuppetManifest
• You can provision private, “as-big-as-you-need” build servers
• You can control your build artifacts
• You can leverage common AMIs for build servers and artifact repositories
Copyright © 2016 Accenture All rights reserved. 20
BENEFITS MIGRATION AT YOUR FASTEST PACE
Month 1 Month X Month Y
Copyright © 2016 Accenture All rights reserved. 21
LESSON LEARNED: BUILD A COMMUNITY – OR ELSE…
• Sharing and promoting best practices from early adopters
• Demonstrating commitment• Providing safe ways to ask
questions• Addressing multiple levels of
experience and maturity• Building community of
experience
Copyright © 2016 Accenture All rights reserved. 22
THE RESULT
Copyright © 2016 Accenture All rights reserved. 23
Thank you! [email protected] (@ddelmoli)[email protected]
