aws vs. azure: 5 things you need to know

31
AWS vs. Azure: 5 Differences You Need To Know September 28th, 2016 Ron Harnik - [email protected]

Upload: scalr

Post on 13-Apr-2017

887 views

Category:

Technology


4 download

TRANSCRIPT

Page 1: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure: 5 Differences You Need To KnowSeptember 28th, 2016Ron Harnik - [email protected]

Page 2: Aws vs. Azure: 5 Things You Need To Know

Why Listen to Us?

• 8 years of multi-cloud experience• AWS, Azure, Google, VMware, OpenStack

• Working with enterprises from the Fortune 5000 to the Fortune 5

• Seats on the advisory boards of the major cloud providers

Page 3: Aws vs. Azure: 5 Things You Need To Know

Market Overview•There’s often no “Adoption Strategy”,

multi-cloud tends to happen•Right now most shops are AWS. Some

are AWS + Azure•Microsoft is gaining ground fast through

discounts

Page 4: Aws vs. Azure: 5 Things You Need To Know

Market OverviewMagic Quadrant for Cloud Infrastructure as a Service, Worldwide

Page 5: Aws vs. Azure: 5 Things You Need To Know

What Analysts Are Saying

Page 6: Aws vs. Azure: 5 Things You Need To Know

What are analysts saying?•AWS - The Good

•More compute capacity in use than competitors combined

•Large ecosystem of vendors, partners and OS tools

•Richest array of IaaS and PaaS capabilities

•AWS expertise is easy to find in/outside of Amazon

•Remains agile and consistent with releases of new services

Page 7: Aws vs. Azure: 5 Things You Need To Know

What are analysts saying?•AWS - The Bad

•Easy to get started, hard to master•Engagements needed for optimal use•Complex pricing, 3rd party cost

management tool often needed•Tiered-support and not a

relationship/size-of-spend based model

•Best-practices are quickly outdated by new services

•The problem of “too much choice”

Page 8: Aws vs. Azure: 5 Things You Need To Know

What are analysts saying?•Azure - The Good

•Rapidly rolling out new services•Interoperates with on-prem Microsoft

offerings•Becoming less reliant on Windows,

support for Linux and other OS improving fast

•Customers with Microsoft Enterprise Agreement obtain competitive pricing

•“Good enough” to base vendor decision on more than technical factors

Page 9: Aws vs. Azure: 5 Things You Need To Know

What are analysts saying?•Azure - The Bad

•Not all features are at the level of completeness, ease of use, or API enablement required by the enterprise

•Documentation can’t keep up with releases

•Support is not always able to solve complex challenges

•Limited number of Azure experts •Vendors report challenges around API

and secure authentication

Page 10: Aws vs. Azure: 5 Things You Need To Know

What Customers Are Saying

Page 11: Aws vs. Azure: 5 Things You Need To Know

What are customers saying?• AWS is ahead in richness of features,

better fit for complex use-cases•AWS velocity and quality of services is

hard to beat•At a basic level, Azure IaaS meets the

needs of the enterprise•Azure Stack (2017) is shaping up to be a

powerful offering•Azure support - not always useful at low

levels, but you’re more likely to be put in touch with engineering

Page 12: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Side by Side

AWS Azure

EC2 Virtual Machines

EBS Blob Storage

S3 Azure Storage

EMR HDInsight

AWS GovCloud Azure Government

VPC Virtual Network

Route 53 Traffic Manager

Direct Connect ExressRoute

Redshift SQL Data Warehouse (Preview)

Directory Service Azure AD

Page 13: Aws vs. Azure: 5 Things You Need To Know

Security

Page 14: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Security• AWS Security Groups

•Can secure EC2, RDS, ELB•When SGs are applied to primary ENI

by default•Whitelist - Only “Allow” rules•Multiple SGs per Instance•All rules are stateful

Page 15: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Security• Azure Network Security Groups

•Can secure VMs and Subnets•Applied to primary NIC on servers, or

all VMs in subnet•Both “Allow” and “Deny” rules•One NSG per VM/Subnet•All rules are stateful

Page 16: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Security• Important Difference

•In AWS - SG sprawl can easily happen, as multiple SGs can be applied to each instance.

•In Azure - A change to a NSG will mostly likely affect multiple VMs

Page 17: Aws vs. Azure: 5 Things You Need To Know

Pricing

Page 18: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Pricing• AWS Pricing

•On Demand•Billed by the hour

•Reserved•Reserve Instances for 1-3 years•Up to 75% discount (when paying

up front for 3 years)•Standard or Scheduled

•Spot•Bid for instances, when cost goes

over bid instance is terminated

Page 19: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Pricing• Azure Pricing

•On Demand•Billed per minute•Standard or Basic

•12 Month pre-pay•Reserve VMs at a 5% discount,

minimum $6000

Page 20: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Pricing• AWS Support Plans

Page 21: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Pricing• Azure Support Plans

Support Plans

Included Developer Standard Professional Direct

Premier

Best for Billing and Subscription Support; Online Self-Help

Non-production environment

Limited business critical dependence on Azure

Substantial dependence on Azure

Business critical, strategic dependence on Azure

Monthly Price

Included $29 $300 $1000

Page 22: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - PricingAWS pricing is more complex, more pitfalls and hidden charges

AWS isn’t “eager” to be the lowest cost bidder in competitive situations

Azure pricing is simpler and more straightforward, discounts are common when competing with AWS

Page 23: Aws vs. Azure: 5 Things You Need To Know

Legal

Page 24: Aws vs. Azure: 5 Things You Need To Know

AWS makes you promise not to assert any intellectual property (IP) claims against them.

If you are an IP-based company, beware.

The AWS agreement is click-through, so you may be exposed already.

IP Non-Assert Clause

Source: http://www.iam-media.com/blog/detail.aspx?g=16404f83-82a0-4a0f-bc79-38ba53ceaf2d

Page 25: Aws vs. Azure: 5 Things You Need To Know

Access and Permissions

Page 26: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Access•AWS IAM

•Create IAM Group•Add users•Create Policy

•Copy and edit existing Policy•IAM Policy generator•Write your own JSON Policy

Page 27: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - AccessAWS -

1.Policy - What resources can be accessed, what actions can be performed

2.Groups - Who is the policy applied toPolicy dictates WHAT and WHERE

Azure - 3.Associate Users with Roles4.Roles grant hierarchical permissions to

resourcesRoles dictate WHO, WHAT and WHERE

Page 28: Aws vs. Azure: 5 Things You Need To Know

AWS vs. Azure - Access•Azure RBAC

• Azure RBAC - Who can do what, and where can they do it?

Page 29: Aws vs. Azure: 5 Things You Need To Know

Enterprise Scopes

Page 30: Aws vs. Azure: 5 Things You Need To Know

Self Service

• To achieve governance over the enterprise cloud, Scalr employs the Cloud Policy Engine

Scalr Policies

ffsdfFinancial

PolicyLifecycle

PolicyIntegration

PolicyAccess PolicyWorkload Placement

Cloud Policy Engine

Page 31: Aws vs. Azure: 5 Things You Need To Know

Thank you!