The IBM Presentation Template

All the Benefits Without The Disruption – Moving VMware Workloads to the Cloud

Simon Kofkin-Hansen, CTO & Inventor of IBM Cloud for VMware Solutions, Distinguished Engineer Cloud Automation

Hybrid Cloud A real world look at multicloud

Private Public Clouds Dedicated Movement 73% priority Clouds & SaaS Clouds between clouds concern of enterprise customers using multiple 94% clouds Connectivity 82% priority between clouds concern

Traditional IT Consistency 67% priority of enterprise customers using more than of management concern 67% one public cloud provider

20% of workload has transition – why is this?

x86 Bare Metal VM VMs Containers Servers Integration with existing or new Integration existing or new Integration with existing or new Bare Metal Servers Virtual Machines on VMware Kubernetes based Container vSphere or Red Hat Enterprise platforms Linux KVM.

Network Security How do I integrate all these technologies How do I ensure that my applications and together across my hybrid, multi-cloud estate? workloads are secured with a consistent security policy?

• IBM Cloud was first to market #1 operator of VMware workloads in world delivering and operating VMware workloads in the public cloud #1 VMware SISO partner

• A decade-long partnership led to a #1 VMware NSX customer and business partner new offering in 2016 #2 VMware vSAN customer and business partner • IBM Cloud was named the 2017 & 2019 VMware Partner of the Year

• IBM & VMware has established a Joint Innovation Lab to further advance technologies and experiences on the IBM Cloud

4 +

~2000 50+ 40% cost IBM Cloud customers running savings over 5 VMware workloads Datacenters years with IBM support VMware

Source: IBM Cloud

5 The best cloud for VMware solutions The most secure, enterprise-grade VMware cloud at global scale VMware Expertise at Security Leadership Enterprise Grade Global Scale

 Highest level key management  Hardened design from requirements based on most security  World’s largest operator of VMware encryption & compliance conscious global enterprises workloads

 Prevent accidental IT configuration  Operational consistency across on-prem & IBM Cloud  100,000+ VMs migrated to the cloud changes or malicious insider threats without re-platforming or re-  Run mission-critical VMW workloads on HA infrastructure factoring  Comply with data sovereignty  Run SAP workloads on SAP-certified servers with automated regulations across 35 WW VMware DCs landscapes  Deep expertise in highly regulated industry verticals  Enforce compliance requirements and  Right-size infrastructure, optimize performance and reduce ensure audit readiness TCO including no internal data bandwidth charges across  Offload management of day-2 IBM Private Network operations  Ensure integrity of backup & DR sites when recovering from cyber attacks  Modernize VMW workloads with Red Hat OpenShift & PaaS  Accelerate your journey to cloud by across VMs & containers leveraging IBM Services to help transform your IT  Seamless integration and management providing automation-deployed solutions

 Multiple consumption models both managed and unmanaged Use Cases

Economics Data Center Extension Disaster Recovery Innovation @ Speed

Expand Consolidate Migrate Primary Secondary Maintain

Footprint expansion/ On- Application specific New DR Application modernization demand capacity Virtual Desktops & Next-gen app Data center wide Replace existing DR Published Apps build out

Infrastructure refresh Test/Dev Complement existing DR Hybrid applications

7 VMworld U.S. - August 2019 announcements 1 2 3 Infra Advancements Easier day-2 operations Workload Protection & Compliance Readiness • Cascade Lake server for VMware & • vRealize operations (vROPS) & • Integration of Caveonix and Fortinet vSphere 6.7u2 vRealize Log Insight (vRLI) within IBM Cloud Secure Virtualization (Hytrust and Intel) • vSan testing SAP HANA done by VMW on IBM Cloud

4 5 6 Horizon 7 VMware Mission Pricing & Promotions Critical workloads • Improved HCX pricing model • Reference architecture (no automation) • Smaller node sizes 12 – 16/18 to • 90-day single-node trial for migration using vCS for virtual desktop workloads complement current offering of 28 up to 20 VMs with Veeam & Zerto compute nodes • Workload Protection & Compliance Readiness promotion with infra and partner consulting services VMworld Europe - November 2019 announcements 1 2 3 IBM-Cloud-managed shared SAP Open Shift on VMware & dedicated • Early Access Preview for Rapid build of production SAP landscapes for bare metal • Beta for Multi-tenant leveraging VMware vCD and VMware with Vnomic • Open Shift integration with VMware for in Dallas / Frankfurt with GA Feb/Apr 2020 • Onapsis SAP security scan ref architecture customers who want to consume Openshift to • IBM-managed up to hypervisor with on- transform and modernize their VMware apps demand or reserved consumption options • Veeam & Zerto(April) for backup/DR • IBM Resiliency managed DRaaS

4 5 6 VMware Mission Critical Security GSI Partnership workloads • Expand reach through channel & enable VMW platform reselling & add-on services : • Resilient stretched vSAN clusters within • Integration of Hyper Protect Crypto Agreement with HCL reached Multi-Zone Regions for HA Services into HyTrust as part of Workload Protection & Compliance for highest level • Accelerate SAP on IBM Cloud • HA vCenter Server Appliance of cloud security for encrypted keys IBM Cloud is the right public cloud for VMware solutions The most secure, enterprise-grade cloud at global scale

Heritage App Containers in Red SAP Netweaver & Hardened design Trusted by the most Heritage App IBM Cloud Catalog based on enterprise security conscious Hat OpenShift S/4HANA requirements enterprises

VM VM VM VM VM VM IBM Kubernetes Object Hybrid Service Storage Connectivity

Deep VMware VMware SDDC Machine Learning IBM Watson expertise at global scale Client On-Premises VMware IBM Cloud HCX

IBM Cloud Services Analytics IBM Object Machine IBM Kubernetes Client on-premises IBM Cloud Watson Storage Learning Service

Microservices Microservices Heritage app Heritage app Heritage app often written as migrated to IBM utilizing IBM monolithic Cloud Cloud services Heritage app refactored with containers

ICP Red Hat Hosted Open Shift IBM Cloud Private Red Hat (hosted) Open Shift Red Hat IBM Kubernetes Open Shift Service

NSX Linux O/S Cloud Hosted Cloud Enabled Cloud Enabled Cloud Native Lift & shift VMware VMs via Lift & transform VMs by Without re-architecting the app, containerize Rearchitect apps at your own VMware HCX into public cloud extending them into public stateless components leaving stateful pace or build net-new apps in for immediate speed and scale cloud services components untouched cloud leveraging microservices, benefits containers, & DevOps tooling

Journey to modernizing VMs in the IBM Cloud 11 Note Open Shift Roadmap 4Q19 & Intgr with NSX-T 1Q20 IBM Cloud Hyper Protect Crypto Services & HyTrust KeyControl Secure VMware Workloads and Protect Business-Critical Data on IBM Cloud Geo-location-aware governance, data-decryption, and compliance readiness

1 HyTrust CloudControl® Secure governance over VMware infrastructure Virtualization Application Admin User  Authenticate vAdmin access  Apply compliance standards  Control privileged actions  Run on trusted Intel TXT servers  Ensure real-time visibility 1 Applications 4 2 3 CloudControl HyTrust BoundaryControls With Data Geo-Fencing using Intel TXT and TPM VIRTUAL DataControl IBM Cloud  Control how ‘tagged’ VMs are  Limit data decryption to trusted MACHINES managed hosts and geographies Hyper Protect  Limit VM placement to trusted  Restrict where VMs can be run Crypto Services HSM hosts and geographies

VIRTUALIZATION EncryptedData and VMs LAYER vSphere / vCenter / NSX 3 HyTrust DataControl® Encryption of VMs & data 2 PHYSICAL  Automatically protect any VM  Zero-downtime deployment LAYER Intel® TXT  Transparent key management  HW based AES-NI acceleration

4 STORAGE IBM® Hyper Protect Crypto Services LAYER Hardware Security Module

 First FIPS 140-2 Level 4 HSM  Keep Your Own Key (KYOK)  Multi-Tenant KMS  Integrates with HyTrust SDN is a key component to enable an agile and efficient Software Defined Data Center Environment

Equivalent capabilities are required for optimal IT responsiveness and agility

Network Compute and storage

Compute, storage, and network

NSX-T provides a network hypervisor-like function NSX-T virtualizing network communication construct and segments utilizing the existing IP network without replacing existing network hardware

NSX capabilities • Multi-platform support – ESXi and KVM • Software based network virtualization • Multi-workload support – VMs, Containers and Bare Metal

• Software-based overlay • Provides Network Function Virtualisation such as Load Balancer and VPN capabilities • Distributed routing • Distributed firewalls • Includes Security features such as Gateway Firewall, Distributed Firewall and Identity Firewall capabilities • API-driven automation

Problems solved with IBM Cloud • Reduction in delivery times to bring applications to market faster. “We’ve seen a massive reduction in the time it • A new route to the cloud to modernize legacy takes to set-up and host applications with a 40 applications. percent saving in set-up costs from start to • High availability within Australia and all over deployment of an application.” Asia Pacific. -Dave Curran, CIO, Westpac • Low cost and scalable disaster recovery solution. • Major step forward in multi-cloud strategy.

Business challenge Customer experience is a key competitive differentiator for airlines, and increasingly depends on digital channels. How could American meet its customers’ appetite for instant information and services?

Transformation Working with IBM to migrate some of their key legacy customer-facing applications to HCX on IBM® Cloud™, while simultaneously transforming them to a cloud-native based microservices architecture, is enabling the world's largest airline to innovate faster in response to changing customer “IBM was pivotal in helping us work in a different way. needs. I think we even surprised ourselves on how fast we could put the app into customers' hands.” —Jason Hobbs, Senior Manager, Application Development, American Airlines

16 VMware Solutions Portfolio on IBM Cloud

Security IBM Cloud DR, Backup, HA Secure App extension Virtualization Disaster Storage Containers Recovery Gateway and IBM Cloud Load Balancing Objects Storage Firewall Backup IBM Cloud File Monitoring and Storage Compliance DaaS VMware Mission Critical IBM Key Protect with Hyper Protect HA vSAN VMware on IBM Cloud Storage Crypto Services

Workload migration – VMware Hybrid Cloud Extension (HCX)

VMware Software Defined Data Center stack

IBM Cloud Bare Metal infrastructure Top 10 reasons to run VMware workloads on IBM Cloud

1. Native root access & visibility from 6. Secure private network backbone and app down to bare metal geographic reach

2. Flexible hardware configs & 7. Migration made easy licensing options

3. Multiple storage tiers 8. Deep VMW expertise at a global scale

4. Design is secure to the core & helps 9. Modernize apps to accelerate compliance readiness innovation

5. Minimize unexpected downtime and 10.Leverage & optimize investment in data loss IBM middleware Interested in knowing more? Sign Up for our Roundtable Session on 3 Dec @ IBM Booth Come & Visit IBM booth

Build, migrate or modernize applications with IBM Cloud

Explore insights and have in-depth conversation on -Application modernization-Cloud native development-High-performance computing and storage

Aju Murjani Gajun Ganendran Sales Leader, IBM Cloud CTO, IBM Cloud Platform, Platform, AP AP