Post on 11-Apr-2017
transcript
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
EBS Information Discovery Journey to Cloud
Muhannad Obeidat, Senior Director EBS Applications Development, Oracle muhannad.obeidat@oracle.com September, 2016
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Safe Harbor Statement
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
3
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Agenda
Overview of Compute Cloud
EBS Information Discovery Cloud Footprint
Cloud Image Details - Technical
What’s Next
What’s In It for Me
Additional Resources
1
2
3
4
5
4
6
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Overview of Compute Cloud
5
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Software-as-a-Service
Platform-as-a-Service
Infrastructure-as-a-Service
Data-as-a-Service
Oracle Cloud
6
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Complete Infrastructure for Enterprise Workloads
Oracle Cloud Infrastructure
Compute Elastic Compute
Network Software-Defined
Storage Elastic Storage
7
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Object Storage
Archival Storage
File & DB Backup
Oracle Cloud Storage Services
Bulk Data Transfer Service Cloud NAS
NFS
8
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
VPN Elastic Load Balancer
Oracle Cloud Connect
Oracle Cloud Network Services
Network Bonding
Oracle Cloud Direct Connect
Cloud Exchange
Enterprise Data Center
Branch Office
MPLS Network
Enterprise Data Center
Branch Office
9
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Bare Metal
Elastic Compute
Dedicated Compute
Oracle Cloud Compute Services
Engineered Systems IaaS
Docker Service
Multiple OS
Multiple Hypervisors
Docker Containers
Compute
Bare Metal Elastic Compute
Configure … Deploy … Orchestrate … Operate
10
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Oracle Cloud Marketplace • Public Marketplace
– For Partners, ISVs, Developers to publish artifacts
– Common Service Catalog for discovery with automated deployment to IaaS & PaaS
• Compute Service Catalog
– Common Service Catalog for Oracle Elastic Compute ready Services
• Docker Registry
– Service Catalog for Oracle Docker Service
• PaaS Applications
– Service Catalog for Oracle PaaS Services – Java, DBMS, Application Container
• Private Marketplace
– For Corporate Customers to define their own Private Service Catalogs & Images
11
Compute
Service Catalog
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
EBS Information Discovery Cloud Footprint
12
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
ALM & Service
SCM
ERP HCM
Quoting Order Management iStore Inventory
Installed Base Process Mfg Discrete Mfg Cost Management Quality
Incentive Comp
iRecruitment
Learning Mgmt
Field Service TeleService Depot Repair CMRO EAM
Warehouse Mgmt
Contracts Renewal Command Center
iProcurement Channel Revenue
Financials Advanced Project Planning and Control
Workforce Explorer
13
Oracle E-Business Suite Information Discovery Footprint
Project Procurement
Outsourced Manufacturing
Procurement Command
Center
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
EBS APPLICATIONS EBS INFORMATION DISCOVERY
$
PO
WO
SO
$ PO
EBS DATABASE
Enabling Information Driven Business
Now on OPC
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 15
NEW
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 16
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 17
NEW
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 18
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Taking Advantage of the Cloud
19
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Overview
20
Get App from Marketplace
Choose Instance Details
Instantiate Machine
Startup Services Integrate with
EBS
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
SSH
Shared SSH Keys with EBS – No Private Key Stored on Cloud
Default Deployment Option
Cloud EBS Instances EBS Administrator
EBS Middle Tier
EBS Information Discovery
Customer On-Premise
ORACLE Cloud
21
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
22
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
23
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
24
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
25
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
26
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
27
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
28
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
29
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Create Instance From Cloud Marketplace
30
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
• SSH to machine using OPC user
– OPC user created automatically in instance with proper authorization to access machine
– Shared Public Key with EBS OPC instance
• Run integration steps with EBS
• Startup all services
31
Accessing OPC Machine
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Setup and Integration with EBS
• EBS Integration Process
– DBC file creation and copy
– endeca.conf generation and copy
– Profile option value set
– portal-ext.properties EBS pointers
– autoconfig
– etc…
32
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Cloud Deployment Options
33
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
SSH
Default Option – EBS and ID on OPC
Setup and Integration with EBS
Cloud EBS Instances EBS Administrator
EBS Middle Tier
EBS Information Discovery
Customer On-Premise
ORACLE Cloud
34
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
A Word About Security
• To enable unrestricted communication among some of your instances, create a Security List and add the instances to it
• Security rules allow access between instances outside of security list
• Each Security Rule defines a specific source, a destination, and a protocol-port
– Example, allow SSH access over port 22 from a set of external hosts
35
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
A Word About Security
• A Security Application is a protocol-port mapping that you can use in security rules.
• Examples:
– Instances in security-list-a can send traffic to instances in security-list-b over any protocol as defined by security-rule-a
– Instances in security-list-a can receive HTTPS traffic from any host on the public internet as defined by security-rule-b
36
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Configuring Access to EBS Information Discovery
• Create Security List, For-EBS-Info-Discovery-services
• Add your instance to security list above
• Create Security Application, tcp_7006, to allow http access on port 7006
37
For-EBS-Info-Discovery Services
Policy Inbound: deny
Outbound: permit
Security application: tcp_7006
Security rule b
Security application: tcp_7002
Security rule c
Security IP List
/oracle/public/internet
Security IP List
/oracle/public/internet
Security application: http access
Security rule f
Endeca Node
For-EBS Services
Policy Inbound: deny
Outbound: permit
EBS Node
EBS Node
Security rule d DB access
Security rule e 7004 access
Security application: tcp_7005
Security rule a
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 38
Information Discovery in the Cloud with EBS On Premise
Hybrid Deployment – VPN Connectivity
EBS on Premise EBS
Information Discovery
VPN Connectivity
ORACLE Cloud Customer
Datacenter
Roadmap
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 39
Oracle Compute Instance
Oracle PaaS Instance
Oracle Compute Instance
Oracle Compute Instance
Corente Gateway
GRE Tunnel
User Instance
User Instance
User Instance
Corente Gateway
Admin who will access App Net Manager
Oracle Cloud Platform On-premise data center
Secure VPN Tunnel
Oracle Corente Site-to-Site VPN architecture
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 40
Hybrid Deployment – VPN Connectivity
Information Discovery Cloud Instance
Oracle Compute Instance
Corente Gateway
EBS
User Instance
Corente Gateway
Oracle Cloud Platform On-premise data center
Secure VPN Tunnel
B can reach A with address 172.16.0.2
SECURE CONNECTION
OPC IP 10.196.246.78
VPN IP (gre1) 172.16.0.2
IP 10.0.2.2
A can reach B with address 10.0.2.2
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. | 41
Information Discovery in the Cloud with EBS On Premise
Hybrid Deployment – SSH Tunnel – Proof of Concept
EBS on Premise EBS
Information Discovery
SSH Tunnel
ORACLE Cloud Customer
Datacenter
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
• What is an SSH Tunnel
– Port forwarding via SSH (SSH tunneling) creates a secure connection between a local computer and a remote machine through which services can be relayed.
– Because the connection is encrypted, SSH tunneling is useful for transmitting information that uses an unencrypted protocol
42
Hybrid Deployment – SSH Tunnel For Proof of Concept
EBS Information Discovery
On-Premises EBS DB Server
1521 1521 SSH Tunnel
Local Port
Remote Port
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Hybrid Deployment – SSH Tunnel For Proof of Concept
• Local port forwarding
– ssh -o ServerAliveInterval=100 -f -N -L :[local_port]:[opc_machine]:[remote_port] opc@[opc_machine]
• Remote port forwarding
– ssh -o ServerAliveInterval=100 -f -N –R :[remote_port]:localhost:[local_port] opc@[opc_machine]
• Description – Run port in background and enable gateway mode
– Utilize ssh public/private combinations
– Execute from intranet machine(s)
– Keeps connection live by sending packets to avoid network timeouts
43
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Image Creation Insight
44
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Image Content
• VM built using VirtualBox
• Local testing on Mac and Windows
• Server testing on OVM (non-cloud based)
• Follow OPC Custom Image creation process to prepare image file
• Test OPC init and machine setup on Cloud
45
Hypervisor
Host Operating System
Infrastructure
EBS Information Discovery
Oracle Linux 6U7
OPC INT
Oracle VM Template
WLS Dependencies
QuickInstall
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Cloud vs Local Image Virtualization
• OPC runs on type 1 hypervisor
Hypervisor
Infrastructure
Info Discovery
Oracle Linux 6U7
OPC INT
Oracle VM Template
WLS Dependencies
QuickInstall
Hypervisor
Host OS
Infrastructure
Info Discovery
Oracle Linux 6U7
OPC INT
Oracle VM Template
WLS Dependencies
QuickInstall
Type 2 hypervisor KVM, Virtual Box
Type 1 hypervisor Vmware, Xen Project, Hyper -V
46
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Overview of Creation Process
47
Bare OS Linux VM
Install Dependencies &
Resize Run QuickInstall
OPC Init Scripts OPC User Setup VM Cleanup
RAW Image Creation
Image Image Catalog (Object Store)
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Bare OS and Dependencies
• Public OEL Template for 6 (latest update)
– Bare OS VM Template from OSDC
– Under 350MB
• Install all dependencies – WLS dependencies
– cURL, wget, gcc, etc…
• Add Partitions for QI
– Create 35GB partition for /u01
48
Enterprise Linux 6
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Run QuickInstall
• Run QuickInstall
– All Steps without EBS integration
– No known EBS integration points
– No post install steps
– Data domains samples not shipped with image
ICX Application
n Application
HCM Application
ICX server connection
HCM server
connection
N server connection
n Data Domain
ICX Data Domain
HCM Data Domain
ICX Graph
n Graph
HCM Graph
EBS Endeca Server
EBS Integration
Server
EBS Studio
49
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
OPC Init
• First time boot
– OracleVmTemplate
– Update host info
– Cleanup of WLS connection filters
• Every boot
– opc_init package through init.d
– Setup opc user SSH Keys
50
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
• Create OPC user
– Grant access to login to machine
– Disable root access
• Setup opc init package – Grabs ssh public key from cloud
instance metadata service
51
Creating OPC User
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
VM Cleanup and Image Creation
• Cleanup
– Shutdown all running services
– Remove all log files
– Update all versions of tokenized files
– Disable root user access
– Set image up for first time boot on next startup
• Image Creation – Convert VirtualBox image to RAW
52
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Packer – Automation for Virtual Box
53
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
What’s Next
54
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
What’s Next
55
Integration Automation
Clustering Support
MLS Deployment Option
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
• Add support for EBS Information Discovery instance
• Control deployment architecture from central Provisioning instance
• Consistent with EBS middle tier provisioning
56
Chef for Instantiation
Bootstrap EBSID node
Bootstrap EBS node
SSH Chef
Provisioning Chef Server and Workstation
E-Business Node
EBS Information Discovery Node
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
• Automate integration steps
• Enable Endeca and run autoConfig
• Generates endeca.conf and dbc file (includes copy)
• Execute RBAC scripts and update profile options
• Update Endeca tier configurations
• Updates EidConfig.properties file
• Start services
• Starts XE DB and the listener
• Starts both the admin and managed servers
• Run Post Setup
• JNDI Configuration & Data domain profile creation.
• Clover credentials setup in FND Vault
57
Chef for Integration with EBS
Bootstrap EBSID node
Bootstrap EBS node
SSH Chef
Provisioning Chef Server and Workstation
E-Business Node
EBS Information Discovery Node
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Additional Resources
58
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
Additional Resources – Information Discovery on Cloud
• MOS Note
– Oracle E-Business Suite Information Discovery on Oracle Cloud
• Oracle By Example
– Creating a New Oracle E-Business Suite Information Discovery 12.1 V6 Installation in Oracle Cloud
– Creating a New Oracle E-Business Suite Information Discovery 12.2 V6 Installation in Oracle Cloud
59