SAP Enterprise Architecture in the Era of SAP HANA, Infrastructure, Platforms, Software and Everything-as-a-Service Chuck Kichler (kichler@us.ibm.com)
LEARNING POINTS How to consume the on-premise vs. offpremise SAP applications How to use private, hosted, and public cloud successfully with SAP Hear seven key learningsto make your company successful with SAP non-cloud and cloud applications
We started with client/server R/3 APP APP APP APP I need 200 GB of storage 512 MB of RAM The errors are all in German I need Internet access to download the fixes You have to have a TCP/IP network for your PC (no twin-ax) R/3 R/3 DB DB
And then it exploded! mysap ERP Edition 2004s Applications SAP R/3 up to 4.6C Application BANG! SAP R/3 Enterprise SAP Enterprise Extension Set SAP R/3 Enterprise Core mysap ERP Edition 2003 Additional Components Self Services Self-Service Procurement Internet Sales Strategic Enterprise Mgmt Industry Solutions SAP R/3 Enterprise SAP Enterprise Extension Set SAP R/3 Enterprise Core mysap ERP Edition 2004 Additional Components Self-Service Procurement Internet Sales Self-Services (ESS/MSS) SEM Composite Applications SAP ERP Central Component 5.00 SAP Extension Set SAP 5.0 Core Additional Components Self-Service Procurement Internet Sales Enhanced Self-Services (ESS/MSS) SEM SRM Composite Applications SAP ERP Central Component 6.00 SAP SAP 6.0 Core Switch Framework Enterprise Extensions Industry Extensions SAP Basis SAP Web Application Server SAP NetWeaver PEOPLE INTEGRATION SAP NetWeaver 04 PEOPLE INTEGRATION SAP NetWeaver 04s PEOPLE INTEGRATION Technology Composite Application Framework Multi Channel Access Portal INFORMATION INTEGRATION Bus. Intelligence Master Data Mgmt PROCESS INTEGRATION Integration Broker APPLICATION PLATFORM J2EE DB and OS Abstraction Collaboration Knowledge Mgmt Business Process Mgmt ABAP Life Cycle Mgmt Composite Application Framework Portal Multi Channel Access INFORMATION INTEGRATION Bus. Intelligence Master Data Mgmt PROCESS INTEGRATION Integration Broker APPLICATION PLATFORM J2EE DB and OS Abstraction Collaboration Knowledge Mgmt Business Process Mgmt ABAP Life Cycle Mgmt Composite Application Framework Multi Channel Access Portal INFORMATION INTEGRATION Bus. Intelligence Master Data Mgmt PROCESS INTEGRATION Integration Broker APPLICATION PLATFORM J2EE Collaboration Knowledge Mgmt Business Process Mgmt ABAP DB and OS Abstraction Life Cycle Mgmt
Our SAP world today On-Premise and Cloud On-Premise and Cloud Connectivity Other Ariba Other HCM SRM HCM CRM SAP Portal Manfctr ERP SCM SCM HANA DB2 DB2 Business Objects Corporate Data Center
Our SAP world very soon On-Premise and Cloud and API s API Mashup API API API API Steel API Direct Grainger Amazon Fraud Detection API API Indrct API HCM CRM Stat Analytics API ESB Analytics Manfctr ERP SCM API Application Program Interfaces (API s) are small, standardized, registered, consumable programs. There are 100K s today.
SAP HANA Today: Three Core Use Cases Agile Data Mart (Analytics Application) Enhance Existing Data Mart and Data Warehouse Investments Data Acquisition and Integration from Any Source Real-Time Consolidated Reporting/Analytics SAP on HANA Dramatically Improved Performance Simplified Administration & Streamlined Landscape Unlock Data Across the Enterprise Preserve Investment without Disruption Operational Data Mart / Application Accelerator Flexible Real-Time Analytics/Reporting Accelerated SAP Applications Rapid Deployment Solutions for Quick Deployment
Now add in SAP Business Suite on HANA Today Future CRM SCP Other CRM SCP HANA HANA HANA HANA Business Objects HANA Business Objects Big Problems to be solved: 1. Achieving performance 2. DR & HA w/out slowing performance 3. Requiring VERY BIG memory space Big Problems to be solved: 1. Supportability of multiple applications 2. In-memory Data Management (value, age) 3. Requiring HUGE memory space
Over 75% of Businesses Plan to Use Cloud* Public Cloud 54% are or will use public cloud within the next 12 months Private Cloud 65% are or will use private cloud within the next 12 months Hybrid Cloud 79% are or will use hybrid cloud within the next 12 months Other surveys have similar results *Source: TNS Infratest Online Survey 1Q2012 for SAP with large enterprises US, UK, Germany, Brazil
SAP has split out on-premise and cloud Business Process-as-a-Service (BPaaS) Software-as-a-Service (SaaS) SAP cloud applications SuccessFactors Ariba JAM Travel & Expense Carbon Credits And more Design Platform-as-a-Service (PaaS) Infrastructure-as-a-Service (IaaS) Deploy Consume SAP on-premise applications: Solution Manager CRM PLM SCM And more
All SaaS Is Growing including SAP s SaaS 13 11 9 7 5 3 1 SaaS Apps* 2010 2011 2012 2013 SAP AG SaaS growth SAP Scale $1B cloud revenue run rate 20+M cloud users 6K+ customers 1M companies on Aribanetwork by EOY 2013 SAP Momentum 14x revenue growth 92% SuccessFactors YoY growth 300% BusinessByDesign growth $314B Euros on Ariba network *Source: Forrester, November 2012 Cloud Keys An Era Of New IT Responsiveness And Efficiency
You must be asking yourself: How do we put it together? What is our Enterprise Architecture look like? What are the areas for concern?
You will need an internal & external strategy Corporate Data Center External IaaS / PaaS / SaaS Year 1 Virtual Physical Cloud Year 2 Virtual Physical Cloud Year 3 Virtual Physical Cloud Year 4 Virtual Phys. Cloud Year 5 Virtual Cloud
Start with SAP on-premise applications with limited commitment to cloud Exploration Development & Testing Peak Utilization Test - Hybrid Internal CRM QA CRM DEV SBX SBX QA DEV QA DEV EWM SBX CRM QA CRM DEV Available SBX SBX QA DEV QA DEV External EWM SBX N N+1 DEV DEV QA QA PRD DEV QT1 QA QT2 QT2 PRD HR ESS/MSS Portal ESS/MSS Portal ESS/MSS Portal ESS/MSS Portal ESS/MSS Portal ESS/MSS Portal ESS/MSS Portal Training Development Seasonal Peak Utilization - Internal DEV QA PRD Internal External Before Peak At Peak TRN Master TR1 CRM SBX CRM DEV SBX DEV SBX DEV CRM QA QA QA CRM PRD PRD PRD CRM SBX SBX SBX CRM DEV DEV DEV CRM QA QA QA CRM PRD PRD PRD CRM QA CRM DEV SBX SBX QA DB/CI APP1 APP5 APP6 APP7 CRM QA CRM DEV SBX DB/CI APP1 TRN Image APO SBX APO DEV APO QA APO PRD APO SBX APO DEV APO QA APO PRD DEV QA DEV APP2 APP3 APP4 SBX QA DEV QA DEV APP2 APP3 APP4
Making a production size commitment Heavy on-premise Heavy off-premise SAP Portal Other Ariba Other HCM HANA DB2 SCM DB2 Business Objects Other Other Other Other Other Other Ariba HCM IaaS/PaaS SaaS SAP Portal SCM HANA DB2 DB2 Business Objects Corporate Data Center Real Time Legacy Corporate Hold-overs
Areas of Concern Covered in this session Managing the new enterprise Securing the new enterprise Renovation for Innovation (Social, Mobile, Cloud, Big Data, etc.) Covered in other Sapphire/ASUG sessions Maturation of Cloud for on-premise SAP LVM Landscape Virtualization Manager Other third-party products Maturation of HANA With Business Suite For virtualization / cloud Beyond our scope Reliability of Cloud and API s Shift from CapExto OpEx(cash flow)
Managing the New Enterprise
Security in the New Enterprise (1 of 3) You need to develop or adapt your Foundational Security Controls Cloud Security Reference Model Cloud Governance Cloud-specific security governance including directory synchronization and geo locational support Discover, Categorize, Protect Data & Information Assets Strong focus on protection of data at rest or in transit Security Governance, Risk Management & Compliance Security governance including maintaining security policy and audit and compliance measures Problem & Information Security Incident Management Managing and responding to expected and unexpected events Identity and Access Management Strong focus on authentication of users and management of identity Information Systems Acquisition, Development, and Maintenance Management of application and virtual Machine deployment Secure Infrastructure Against Threats and Vulnerabilities Management of vulnerabilities and their associated mitigations with strong focus on network and endpoint protection Physical and Personnel Security Protection for physical assets and locations including networks and data centers, as well as employee security
Security in the New Enterprise (2 of 3) Security Aligns with Each Phase of a Cloud Project Design Deploy Consume Establish a cloud Build cloud services, in Manage and optimize strategy and the enterprise and/or consumption of cloud implementation plan as a cloud services services. to get there. provider. Cloud Security Approach Secure by Design Focus on building security into the fabric of the cloud. Workload Driven Secure cloud resources with innovative features and products. Service Enabled Govern the cloud through ongoing security operations and workflow. Example security capabilities Cloud security roadmap Secure development Network threat protection Server security Database security Application security Virtualization security Endpoint protection Configuration and patch management Identity and access management Secure cloud communications Managed security services
Security in the New Enterprise (3 of 3) Security should be built into the cloud offering Virtual infrastructure Hypervisor-based isolation with customer configurable firewall rules Firewall and IPS/IDS between guest virtual machines (VMs) and Internet Optional virtual private network (VPN) and virtual local area network (VLAN) isolation of account instances Connections are encrypted and are isolated from VMs by design (SSH keys) Customer has root access to guest virtual machines, allowing further hardening of VMs Shared images patched and scanned regularly Management infrastructure Access to the infrastructure is only enabled using Web identity through the user interface portal or APIs Complies with strong corporate security policies Controlled and audited administrative actions and operations Delivery centers Customer data and VMs are kept in the data center where provisioned Physical security identical to hosted clients Cloud Services Management infrastructure Guest VMs and data Your servers, PCs, and mobile Your firewall Provider firewall Optional VPN gateway Strong security and authentication model Private and Shared VLANs Tier 3 or 4 delivery centers
Renovation for Innovation Social Mobile Connected Big Data Cloud Without simplification: Budgets disappear Innovation/transformation becomes more expensive and time consuming Systems of Innovation Systems of Differentiation Systems of Record Adapted From: PACE Layering, Gartner, 2010 NEW Support NEW New Support Support NEW New Support Support Innovate Simplify Year 1 Year 2 Year 3
BEST PRACTICES Plan for cloud inside and outside of your data center Look to leverage of cloud services for on-premise and SaaS capabilities Develop management capabilities for the new enterprise Adapt your security for the new cloud world Renovate and reduce your legacy including SAP to allow for innovation
KEY LEARNINGS Change is not new in SAP, but seems to be accelerating SAP and all applications are becoming cloudified HANA is evolving, spreading, and virtualizing On-premise SAP can run on a cloud, but is not cloud native SaaS is fact for almost all businesses, accept and manage it Your Security needs to be formulated for the new enterprise Look to renovate to lower maintenance costs and allow budge for all this new innovation
THANK YOU FOR PARTICIPATING Please provide feedback on this session by completing a short survey via the event mobile application. SESSION CODE: 2309 For ongoing education on this area of focus, visit www.asug.com