CONFIDENTIAL Designator
1
Partner Day Part 1
Red Hat Enterprise Linux 8
Alfred BachPartner Enablement Manager
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
AGENDA
Red Hat Enterprise Linux 8 Partner Day
● Value of Red Hat Subscriptions● Competition● RHEL 8 Overview● Red Hat Insights
● Installation
○ Composer
○ Upgrade
● Server Management with Cockpit
● Storage / Network / Virtualization
● CoreOS
● Universal Base Image
● Security and Compliance
○ Session Recording
● Upcoming Trainings
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
We take this massive innovation happening in open communities and deliver it in a safe, secure, reliable way so enterprises can consume it in their traditional infrastructure.JIM WHITEHURSTPresident & CEO, Red Hat
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
A RED HAT SUBSCRIPTIONDELIVERS CONTINUOUS VALUE EVERY DAY
access.redhat.com/subscription-value
CUSTOMER PORTAL KNOWLEDGE SECURITY
SUPPORT
CERTIFICATIONS
LIFE CYCLE ASSURANCE
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
RED HAT CUSTOMER PORTAL
Your one place for subscription resources—from product documentation and upgrades to intelligent tools, security updates, and technical support.
PRODUCT DOCUMENTATION
TOOLS AND SOLUTIONS
SECURITY UPDATES
access.redhat.com
SUPPORT SERVICES
SUBSCRIPTION MANAGEMENT
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
KNOWLEDGEBASE
We’ve published thousands of solutions in our community-driven knowledgebase so you can learn from others, resolve issues yourself, and proactively manage your systems.
EXPERTISERed Hat Certified Engineers
GUIDANCE60,000+ technical solutions
EXPERIENCE1,000,000+ resolved issues
access.redhat.com/search/#/knowledgebase
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
PRODUCT SECURITY
Red Hat’s stable code is backed by a dedicated team of engineers who monitor, identify, and address risks to protect you and your customers’ data from meaningful security concerns.
access.redhat.com/security/
SECURITY TOOLS VULNERABILITYRESPONSES CVE DATABASE
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
SUPPORT
If you need to open a support case, it will be routed to a product specialist. Resolutions enable future updates to our products, making you an active participant in improving open source technology.
access.redhat.com/support
SUPPORT CASESGet answers quickly
LIVE CHATWith support engineers
CALL OR EMAILWith a support expert
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
CERTIFICATIONS
Red HatⓇ engineers collaborate with a large ecosystem of partners to ensure your third-party solutions are tested, supported, and certified to perform with Red Hat technologies.
access.redhat.com/ecosystem
CERTIFIEDHARDWARE
CERTIFIEDSOFTWARE
CERTIFIEDCLOUD PROVIDERS
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
ASSURANCES
Red Hat's Quality Assurance team works closely with our product development teams and provides the final engineering check before our open source products are released to customers and partners.
ACCEPTANCE FUNCTIONALITY REGRESSION INTEGRATION PERFORMANCE TESTING
red.ht/open-source-assurance-agreement
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
LIFE CYCLE
Red Hat subscriptions are not tied to a specific version, but cover the entire life cycle of the product. Our longer life cycles mean more choice, flexibility, and ease of planning.
access.redhat.com/support/policy/update_policies/
NO LOCK IN FLEXIBILITY REDUCED COSTS
CONFIDENTIAL PUBLIC
THE RHEL ENEMY LISTIN ORDER OF REVENUE IMPACT
COMPETITOR IMPACT
Oracle Linux #1 competitor in terms of revenue impact
CentOS #1 competitor by frequency of encounter both on-prem and in the cloud
SUSEOpportunity: SAP Threat of SLES-ES in EMEA
Amazon Linux Occasional losses, many battles lost before we got to the party
Ubuntu Lots of awareness, often first-mover advantage in the cloud
CONFIDENTIAL PUBLIC
ORACLE LINUXTECHNOLOGY & OFFERING
● Oracle Linux is built from Red Hat Enterprise Linux source code we publish● Releases of new versions & patches come within hours of Red Hat● Ships with 2 kernels--ours (RHCK) & theirs (UEK)● Oracle Linux support plan offers support for Red Hat Enterprise Linux● Premium Oracle Linux support comes with Ksplice, Spacewalk, & OpenStack● Priced by the server● No extended update support (EUS) ● Has a version of extended life cycle support (ELS) ● 50% to 90% less than Red Hat Enterprise Linux
CONFIDENTIAL PUBLICORACLE’S RHEL TAKEOVER TACTICSCONVERT/MIGRATE EXISTING RHEL SYSTEMS TO ORACLE LINUX SYSTEMS WITH NO
REINSTALLATION
1. Customer downloads ‘up2date’ script from Oracle2. Customer runs the script which:
a. Removes some RHEL packages b. Removes all Red Hat trademarksc. Adds Oracle Linux packages
3. Reboot 4. System now identifies as Oracle Linux while 60% of the
remaining binaries are the original RHEL install
CONFIDENTIAL PUBLIC
A “MIGRATION” TO ORACLE LINUXTOTAL RHEL SUBSCRIPTIONS REQUIRED = 6
No RHEL subscription
requiredSubscriptions are required for all RHEL installs,
as well as systems that have partial installs
RHEL systems that have been “converted” to OL but still contain RHEL binaries
still require paid subscriptionsIF there are other active RHEL subs
Clean installs of Oracle Linux
Active RHEL subscriptions
OL
OL
OL
OL
OL
OL
CONFIDENTIAL PUBLIC
CONVERT TO RHELCONVERTING SYSTEMS FROM ORACLE LINUX AND CENTOS TO RED HAT
ENTERPRISE LINUX
ORACLE LINUX
convert2rhel
CENTOS RHEL RHEL
CONFIDENTIAL PUBLICCONVERT TO RHEL JOURNEY
DISCOVERY SESSION1-2 days
CONVERSION PILOT1-8 weeks
MIGRATION AT SCALEOngoing
OUTCOMES
CUSTOMER PARTICIPANTS
RED HAT PARTICIPANTS
• High-level architecture• High-level migration approach
• Budget sponsor• OS lead• Application owners• Change managers
• Architect• Migration consultant• Services manager
OUTCOMES
CUSTOMER PARTICIPANTS
RED HAT PARTICIPANTS
• Migration approach defined& tested• Customer-led migration validated
• OS lead• Migration team
• Architect• Migration consultant• Services manager
OUTCOMES
CUSTOMER PARTICIPANTS
RED HAT PARTICIPANTS
• Conversion factory operational & working at scale
• Ongoing support & maintenance by customer’s operations team
• Red Hat Customer Experience & Engagement - customer support as needed
CONFIDENTIAL PUBLIC
CentOSCUSTOMER MOTIVATIONS
● CentOS viewed as free RHEL ● RHEL seen as too hard to consume, manage, & track● CentOS is “good enough”● No requirements for certifications
CONFIDENTIAL PUBLIC
CentOS LINUXTECHNOLOGY & OFFERING
● CentOS Linux is built from RHEL source code we publish● Releases of new versions & patches come within hours of Red Hat
release● Forum support for free● Paid support available via Rogue Wave● No EUS, ELS, kpatch, or certifications
CONFIDENTIAL PUBLIC
● SUSE Linux is the #2 paid Linux for on-prem & private cloud● New private owner later this year● Minor releases can rebase kernels ● Generating $300M annually ● SLES-ES support plan offers support for RHEL (No EUS)● Competitively priced ● Live (kernel) patching service available as an add-on
SUSE ENTERPRISE LINUX SERVER (SLES)TECHNOLOGY & OFFERING
CONFIDENTIAL PUBLIC
● Convince SAP customers that SUSE has a stronger partnership with SAP than Red Hat
● Present SUSE Live Patching Service as a better kernel patching solution than kpatch (because it is)
● Promote their own emerging tech including Cloud Foundry ● Offer RHEL customers lower price for support of their RHEL
environments
SUSE ENTERPRISE LINUX SERVER (SLES)MOTIVATIONS & TACTICS
CONFIDENTIAL PUBLIC
● SAP: The World’s Largest Provider of Enterprise Application Software (over $28B in Revenue for 2018)*
● Anecdotal evidence indicates that a substantial portion of it’s over $300M in annual revenue comes from fees as a premier platform for SAP applications.
● SAP, after years of keeping Red Hat at arm’s length is now actively partnering with us - Oracle is a mutual enemy
● Red Hat’s “RHEL for SAP Solution” SKU is an effective tool for SUSE takeout ● The number 1 application we are in contention for is HANA● SUSE knows we are coming for the SAP business and is swinging back
SUSE & THE SAP CONNECTIONYOUR MOTIVATIONS & TACTICS
CONFIDENTIAL PUBLIC
● Amazon Linux is free
● Red Hat Enterprise Linux is seen as expensive & too hard to
consume, manage, & track
● Amazon Linux is “good enough”
● No requirements for certifications
AMAZON LINUXCUSTOMER MOTIVATIONS
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
28
RED HAT ENTERPRISE LINUX 8
To deliver business advantages today,
organizations are shifting IT from
traditional infrastructure operations
and are focusing on service delivery.
CONFIDENTIAL Designator
CONFIDENTIAL PUBLIC
29
RED HAT ENTERPRISE LINUX 8
Build your future on a stable, high-performing
platform that can scale to meet the needs of
your organization today and tomorrow.
CONFIDENTIAL Designator
CONFIDENTIAL PUBLICRED HAT ENTERPRISE LINUX 8
30
At a glance
KERNEL VERSION 4.18+
SYSTEM COMPILER GCC 8.2, LLVM 6.0
HARDWARE ARCHITECTURES
Intel/AMD 64-bit, IBM Power LE, IBM z Systems, ARM 64-bit
DEFAULT FILE SYSTEM XFS
PACKAGE MANAGEMENT Yum v4
TIME SYNCHRONIZATION Chrony
NETWORKING NetworkManager
CONFIDENTIAL PUBLIC
Predictable updates
RED HAT ENTERPRISE LINUX 8
31
6 monthsMinor updates
3 yearsMajor releases
2 phasesSupport life cycle
CONFIDENTIAL PUBLIC
Application streams
RED HAT ENTERPRISE LINUX 8
32
PostgreSQL 9.6 stream
Red Hat® Enterprise Linux® 8
PostgreSQL 10 stream
PostgreSQL 12 stream
Time of support
Red Hat Enterprise Linux 7
More choiceOffers versions of the open source tools and frameworks developers need
Newer versionsProvides access to newer versions as they stabilize
Simpler accessMaintains standard locations for tools and libraries
CONFIDENTIAL PUBLIC
Simplified access to software
RED HAT ENTERPRISE LINUX 8
33
Red Hat Enterprise Linux 7 repositories
server
optionalsupplementaryextras rhscl dotnet devtools
Red Hat Enterprise Linux 8 repositories
baseos
appstream supplementary codeready-builder
CONFIDENTIAL PUBLIC
The newest yum package manager: version 4
34
New technologyMaintains the same experience while adding new tools
Better dependency managementOffers faster resolution and easier minimization of what's installed
Stable APIProvides new application programming interface (API) for extending yum that will progress into the future
RED HAT ENTERPRISE LINUX 8
Repository
rpm
rpm
rpm
rpm
rpm
rpm
metadata
rpm rpmrpm
system
yum
CONFIDENTIAL PUBLIC
Create images for all your environments with image builder
35
Single sourceLets you create gold images for any environment from the same blueprint increasing stability and consistency
Any footprintSupports public cloud, private cloud, enterprise hypervisors, and bare metal
Simple interfaceProvides web-based view within the web console for selecting packages and creating blueprints
Blueprint
Bare metal
Hypervisors
Public clouds
Private clouds
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Speed automation creation with system roles
36
Common automationManage multiple versions of Red Hat Enterprise Linux from a single role
Reduced reworkImport provided roles to eliminate task creation in playbooks
Easy switching of providersChange between default and optional tools quickly and safely
timesync
RED HAT ENTERPRISE LINUX 8
dbserver
SELinux
network
webserver
CONFIDENTIAL PUBLIC
Optimized experiences for mission-critical databases
37
● Red Hat Enterprise Linux is the reference platform for SQL Server on Linux
● Benchmark-breaking performance
● Fast deployment and portability via containers
● Red Hat Enterprise Linux is 1 of only 2 certified Linux distributions
● More than 20 years of Red Hat and SAP joint engineering collaboration
● Exceptional performance and scalability —the largest SAP install in the world runs on Red Hat Enterprise Linux
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Containers are Linux
40
Namespaces
CPU Memory Storage Network
Cgroups
Seccomp
SELinuxRu
n
Build
CONTAINERSApplication dependencies
Application binaries
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Powering the adoption of containerized workloads
41
Red Hat Enterprise Linux(Podman/Buildah/Skopeo)
TRADITIONAL DEVELOPMENT
Find Run Build Share
CLOUD-NATIVE
Integrate Deploy
Quay Red Hat OpenShift®
(Kubernetes)
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Manage containers with Podman
42
Fast and lightweightNo daemons required
Advanced namespace isolationRootless operations for container run and build
Open standards compliantCreates and maintains any standard Open Containers Initiative (OCI) -compliant containers and pods
Podman
RunC
Kernel
Images
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Create images with Buildah
43
More controlScriptable tooling for fine-grained image control, and maximum control starting from base or scratch images
Minimization of imagesElimination of unneeded dependencies by using host-based tools
From base, multilayer From scratch, single layer
RED HAT ENTERPRISE LINUX 8
Java runtime and dependencies, and
application
OS update layer
Java™ runtime layer
Application layer
Base Red Hat Enterprise Linux
CONFIDENTIAL PUBLIC
Inspect and transport images with Skopeo
44
Inspect images remotelyExamine image metadata without needing to download
Publish and transfer imagesCopy images from registries to hosts or directly between registries
Sign and verify imagesSupports GPG key signing on publish
Image registry Image registry
Image repositoryMetadata signature
Host
SKOPEO
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Configuring systemwide cryptographic policies
45
Central configurationSet acceptable algorithms from a single tool
Improved consistencyCovers multiple cryptographic providers and consumers like TLS, kerberos, and Java
Built-in policiesIncluding legacy systems requiring 64-bit security and FIPS allowed or approved algorithms
RED HAT ENTERPRISE LINUX 8
Default
LegacyClient
Future
Encryption algorithm OpenSSL
httpdSecured
communications
CONFIDENTIAL PUBLIC
Recording user terminal sessions
46
RED HAT ENTERPRISE LINUX 8
Audit activitiesCreate a record of actions taken for review against security policies
Create visual guidesBuild run books and training materials with demonstrations
Record and play backLogged via standard channels with multiple playback options
CONFIDENTIAL PUBLIC
A highly secure platform
47
Latest protocol supportIncluding TLS 1.3 via OpenSSL 1.1.1
Hardened codeIncluding PIE and RELRO binaries and code analysis in our pipelines
Integrated identity managementAs a stand-alone provider or trusted member of an Active Directory, with expanded integrations to tools like the web console
Updated toolsIncluding the LUKS v2 on-disk format for encryption
RED HAT ENTERPRISE LINUX 8
Security policy, process, and procedures
DESIGN BUILD
RUN
MANAGE
ADAPT
CONFIDENTIAL PUBLIC
Remote single-system views in the web console
48
Browser-based interfaceOffers remotely accessible user interface using host security mechanisms
Consolidated viewProvides single view of tasks to speed understanding and completion
Standard management toolsUses system tools to change state, not a separate workflow
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
In-place upgrades for your systems
49
Reduced migrationsAnalyze systems to determine if upgrading in place can avoid a costly migration
Easy rollback optionsCombine with bootable LVM snapshots for safety
Improved frameworkGet better analysis and a simplified process with a more extensible framework
RED HAT ENTERPRISE LINUX 8
Upgrade framework
Applications
7 8
CONFIDENTIAL PUBLIC
RUN LEAPP
CREATE BOOTABLE LVM SNAPSHOT
Can I upgrade this host?
50
RED HAT ENTERPRISE LINUX 8
PICK CANDIDATE
SERVER
ANALYZE CHECK OUTPUT
REBOOT TO FINISH UPGRADE
UPGRADECOMPLETE
CONFIDENTIAL PUBLIC
Detect and fix issues with Red Hat Insights
52
Proactive adviceIdentification of issues before they become problems
Continuous assessmentReal-world results to help find new risks
Simpler remediationsTailored results at the host level
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL PUBLIC
Gain operating intelligence
53
Analyze Identify Prioritize Resolve
RED HAT ENTERPRISE LINUX 8
CONFIDENTIAL Designator
linkedin.com/company/red-hat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHat
Red Hat is the world’s leading provider of
enterprise open source software solutions.
Award-winning support, training, and consulting
services make
Red Hat a trusted adviser to the Fortune 500.
Thank you
55