Book Image

Hybrid Cloud for Architects

By : Alok Shrivastwa
Book Image

Hybrid Cloud for Architects

By: Alok Shrivastwa

Overview of this book

Hybrid cloud is currently the buzz word in the cloud world. Organizations are planning to adopt hybrid cloud strategy due to its advantages such as untested workloads, cloud-bursting, cloud service brokering and so on. This book will help you understand the dynamics, design principles, and deployment strategies of a Hybrid Cloud. You will start by understanding the concepts of hybrid cloud and the problems it solves as compared to a stand-alone public and private cloud. You will be delving into the different architecture and design of hybrid cloud. The book will then cover advanced concepts such as building a deployment pipeline, containerization strategy, and data storage mechanism. Next up, you will be able to deploy an external CMP to run a Hybrid cloud and integrate it with your OpenStack and AWS environments. You will also understand the strategy for designing a Hybrid Cloud using containerization and work with pre-built solutions like vCloud Air, VMware for AWS, and Azure Stack. Finally, the book will cover security and monitoring related best practices that will help you secure your cloud infrastructure. By the end of the book, you will be in a position to build a hybrid cloud strategy for your organization.

Related Content you might be interested in

Current Title:

Small book image
Hybrid Cloud for Architects
Alok Shrivastwa
Feb, 2018 | 290 pages
Small book image
Achieving Digital Transformation Using Hybrid Cloud
Praveen Rajagopalan | Ishu Verma | Vikas Grover
Jul, 2023 | 234 pages
Small book image
Hybrid Cloud for Developers
Manoj Hirway
Apr, 2018 | 280 pages
Small book image
OpenStack for Architects
Ben Silverman | Michael Solberg
May, 2018 | 256 pages
Table of Contents (19 chapters)
Title Page
Title Page
Copyright and Credits
Copyright and Credits
Software Hardware List
Software Hardware List
Packt Upsell
Packt Upsell
Contributors
Contributors
Preface
Preface
Free Chapter
1
Introducing Hybrid Cloud
Introducing Hybrid Cloud
The cloud's demographics
Choosing different cloud combinations
Summary
2
Hybrid Cloud – Why Does It Matter?
Hybrid Cloud – Why Does It Matter?
What does the world say? 
Pure-play public cloud strategy 
Hybrid cloud case study
Summary – maximizing benefits
3
Hybrid Cloud Building Blocks
Hybrid Cloud Building Blocks
The story of a web application 
Use cases of a hybrid cloud 
Decoupling the tiers
Services to enable a hybrid cloud 
Public cloud services for hybrid deployment
Summary – setting up hybrid cloud
4
Architecting the Underpinning Services
Architecting the Underpinning Services
Networking
Domain Name System (DNS)
Identity and Access Management (IAM) 
Application components
Choosing the right components
Conclusion 
5
Hybrid Cloud Deployment – Architecture and Preparation
Hybrid Cloud Deployment – Architecture and Preparation
Getting started with the public cloud – AWS
Setting up a public cloud – AWS
Setting up the private cloud 
Summary
6
Building a Traditional CMP-Based Hybrid Cloud
Building a Traditional CMP-Based Hybrid Cloud
Supporting applications use case
Isolated/distributed application use case
Creating cloud images
In conclusion – architecting with a CMP
Summary
7
Building a Containerized Hybrid Cloud
Building a Containerized Hybrid Cloud
Evolving to containers
Container orchestration engine 
Federation using Kubernetes
Summary 
8
Using PreBuilt Hybrid Cloud Solutions
Using PreBuilt Hybrid Cloud Solutions
Azure Stack 
OpenStack Omni 
vCloud Air
Using the different hybrid cloud solutions 
Summary
9
DevOps in the Hybrid Cloud
DevOps in the Hybrid Cloud
The development cycle and DevOps 
IaaC with Terraform 
Configuration management using Ansible
Summary
10
Monitoring the Hybrid Cloud
Monitoring the Hybrid Cloud
The traditional concepts in monitoring
Monitoring the hybrid cloud
Summary
11
Security in a Hybrid Cloud
Security in a Hybrid Cloud
Components of security
Compliance standards and controls
Security controls consideration in hybrid cloud
Security – best practices
Summary
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Index
Index

Identity and Access Management (IAM) 

The next underpinning service used is the Identity and Access Management Service. Traditionally, this meant having a common directory which the applications can query to authenticate end users. 

The IAM is normally a team effort between the system that can store and authenticate the users (the directory), and also provide the ability for us to tag the users and the application in some way. The application uses the tags in order to control the permissions for the user. The ability to fine-tune the authorization is called Role Based Access Control (RBAC). 

So, it can safely be assumed that the authentication is dependent on the directory. The authorization on the other hand is dependent on the application, which use the tags that are associated to the user or that the user is associated to. 

Note

In the case of Active Directory, the user is added to the "tag", in this case called the "Security Group" and in the application, we would define whether the user...

Previous Section
End of Section 4
Next Section