530 likes | 889 Views
Managing the Oracle Database Lifecycle with Oracle Enterprise Manager 12 c. Scott McNeil Principal Product Director Oracle. David Wolf Principal Product Manager Oracle. Challenge: Controlling Configuration Drift. 80%.
E N D
Managing the Oracle Database Lifecycle withOracle Enterprise Manager 12c • Scott McNeil • Principal Product Director Oracle David Wolf Principal Product Manager Oracle
Challenge: Controlling Configuration Drift 80% “Experienced unplanned downtime due to configuration drift, which resulted as changes were made.” Source: Managing the Rapid Rise in Database Growth: 2011 IOUG Survey on Database Manageability
Challenge: Patch Management “Number of DBAs who said keeping databases at current patch levels was their top challenge.” 45% Source: Managing the Rapid Rise in Database Growth: 2011 IOUG Survey on Database Manageability
Challenge: Change Management “Number of DBAs who said they avoid making changes to production databases because of negatively impacting performance.” 50% Source: Managing the Rapid Rise in Database Growth: 2011 IOUG Survey on Database Manageability
Oracle Enterprise Manager 12c Extending Database Self-Management Leadership Performance Management Real-Time ADDM Compare Period ADDM ASH Analytics Engineered Systems Consolidation Planner Exadata Management Lifecycle Management Configuration, Change and Compliance Mgt Mass DB Patching & Upgrade Automation Database Cloud Services Database-as-a-Service Metering and Chargeback
Database Lifecycle Management Discovery and Initial Provisioning Discover Assets and Provision Software on them Ongoing Change Management End to End Management of patches, upgrades, and schema changes Continuous Configuration and Compliance Management Track inventory, configuration drifts and compliance
Database Lifecycle Management Discovery and Initial Provisioning Discover Assets and Provision Software on them Ongoing Change Management End to End Management of patches, upgrades, and schema changes Continuous Configuration and Compliance Management Track inventory, configuration drifts and compliance
Discover What’s Out ThereAgentless Discovery • Auto-discovery of servers, virtual servers and services using IP scan (NMAP, agent-less) • Integrated workflow for agent deployment and target discovery on selected auto-discovered hosts • Promote the targets from “Unmanaged” to “Managed”
Mass Agent DeploymentIntegration with Target Discovery • Agent push is fully integrated with target discovery • ‘Add host’ not ‘push agent’ • Promoting a host from unmanaged to managed integrates seamlessly with agent push workflow • Multi-platform agent push in a single deployment session • Approved patches can be pushed to the agent during initial deployment • Sudo/Powerbroker integrated for locked accounts • Recommendations provided in cause of failure • Agent cloning also supported • Simpler manual deployment • Generate agent zip or RPM from EM and deploy
Software ProvisioningFramework Enhancements • Separation of Designer and Operator Roles • Designer can modify Deployment Procedures • Operators can only execute Deployment Procedures • Input lock-down for end operators • Enforces standard deployments, minimizes errors • Fine grained privileges • Integration with new Credential Model • Extensibility • User-defined Deployment Procedures • For custom software deployments • EMCLI and web services interfaces for integration with other tools • Integration with Self Update • Update Deployment Procedures out-of-major-release cycles • Improved diagnosability • Integration with Incident framework • ‘Debug’ mode • Better error messages
Software Library Distributed and Scalable Across Data Centers • Single console for entity types like components, directives, assemblies, etc. • Integrated with Self Update • Enhanced support for Storage types • File System • Shared between OMS • Agent served file system • Referenced locations – http, nfs, read-only agent file system – ideal for multi-location data centers • Support attachments and notes for software library entities • Attach Readme to patch component • Improved search e.g., search by vendor and version • Fine grained privileges for entities
Provisioning Profiles Standardization and Simplification • Enables gold image cloning • Standard image with specific patches, configuration, tuning • Create and store reference image in software library • Flexibility to include binaries, configuration, data • Use profiles to provision new components • Different instance level properties than gold image like directory paths, host names, ports, storage
Database ProvisioningProvisioning Designer to Operator Workflow Select Reference DB Host Create Profile DB Host Provisioning Designer Use Profile to populate Procedure Inputs DB Profile Lock down inputs and save Procedure Publish to Operator Best Practice Procedure Locked Procedure
Database ProvisioningProvisioning Profiles and Lockdowns Capturing Provisioning Profiles Locked values shown in read only mode
Database Lifecycle Management Discovery and Initial Provisioning Discover Assets and Provision Software on them Ongoing Change Management End to End Management of patches, upgrades, and schema changes Continuous Configuration and Compliance Management Track inventory, configuration drifts and compliance
Automating PatchingFully Integrated with My Oracle Support Analyze Patch Test Stage Report Provision • Proactive advisories, recommendations, and analysis • One-off patches, patch set updates, and critical patch updates • Zero downtime patching for RAC • Integrated patch management & deployment automation • Patch intelligence and community • Streamlined conflicts and merge patch process Stage
Patch ManagementSimplified, Integrated, and Flexible • Step 1: Select Patches and Targets • Step 2: Choose options for Deployment (Deployment Procedures are auto picked) • (In-Place, Out-of-Place, Rolling, Non-Rolling) • Step 3: Run Validations – Comprehensive Analysis for Patch conflicts and Target level sanity • Step 4: Review -> Pre Deploy -> Deploy • Pre-Deploy or Prepare ahead of Downtime for cases like Cloning and Patching cloned Oracle Homes
Out-of-Place PatchingMinimum Downtime Patching for Single Instance Databases Multiple Databases running from an Oracle Home 1 DB(1) DB(2) HOST ORACLE HOME >Clone Oracle Home >Patch Cloned Oracle Home (No Downtime) 2 DB(1) DB(2) DB(1) DB(2) HOST ORACLE HOME ORACLE HOME A PATCH Switch instances to newly cloned Oracle Home 3 Apply SQLs (as needed) to the instances DB(1) DB(2) HOST ORACLE HOME ORACLE HOME A
Patch ManagementUser Profiles Tailored for Data Centers • Maintains Cloud Control infrastructure • Creates users and assigns appropriate roles and privileges Site Administrator • Senior DBA (Designer Role) • Identifies Patches for the patch cycle • Creates Patch Plan Templates • Provides Template access to Operators Patching Designer • Junior DBA / Application DBA (Operator Role) • Creates Patch Plans from Templates • Executes/Schedules patch rollouts on the designated targets Patching Operator
Database Upgrade Overview • NEW in EM12c: Mass Upgrade of Oracle Databases • Supports Single Instance Database in first release • RAC (Upcoming) • Upgrade from 10.2.0.x,11.1.0.x -> 11.2.0.x • Upgrade Software & Instances combined or separate • Integrated with My Oracle Support Upgrade Planner
Database UpgradeUpgrade Wizard • Plan • Detect new DB versions in My Oracle Support • Suggest best upgrade path for patch compatibility • In-context reference to Upgrade documentation • Analyze • Check DB for upgradeability (space, version, etc.) • Support upgrade from 10.2.0.4+ to 11.2 • Deploy • Mass deploy binaries to targets and create out-of-place copies • Upgrade process can be paused/resumed • Switch • Switch instances to new installations • Easy switchback if needed
Automated Change Management Reduce Time and Effort of Database Change Management • Change Automation • Automated process for capturing and propagating planned database schema changes from development to production environments • Eliminates manual error-prone processes • Accelerate application upgrades by tracking impact of upgrades on customizations • Reduce downtime and speeds up recovery by ensure compliance of production environments with established standards
Syncing Application EnvironmentsOracle Change Management Production Reporting 1001100101000 010111010011 10100110101 1100001110110101010100 01011101000010010101011 10100110110010100101001 Test 1100001110110101010100 01011101000010010101011 10100110110010100101001 1100001110110101010100 01011101000010010101011 10100110110010100101001 1100001110110101010100 01011101000010010101011 10100110110010100101001 1100001110100 010111010011 10100110101 Development Training Stage Disaster Recovery • Promoting and tracking changes from testing to production databases • Transferring schema & other database changes to DR, training, & reporting environments • NEW in EM12c: Change plans—allow users to specify, group, & package object metadata changes to multiple targets • Create change plans from ad-hoc changes & comparison-based differences • Role-based workflow: developers create and submit change plans via SQL Developer, DBAs review and apply change plans
Schema Change Detection & AutomationCapture & Compare Application Baselines / Workflows Baseline 1 Baseline 2 HR 1100001110100 010111010011 10100110101 Baseline 3 Order Entry EMP DEPT • Capture information on all schema objects for an application: • Tables, Views, Indexes • Procedures, Packages, Triggers • Users, init.ora • Capture & Compare scope: • Database, Schema, Objects • Compare Modes • Baselines to Baselines • Baselines to Database • Database to Database 1100001110100 010111010011 10100110101 ORDERS SALES CRM 1100001110100 010111010011 10100110101 PRODUCT PRICE
Database Change ManagementData Comparison Data comparison fills a critical gap to allow: • Application vendors to compare seed data • Application customers to compare configuration data between different sites • DBA’s to determine how seed data customizations will be affected by application upgrades Database A Database B
Surren Partabh CTO Core Technologies British Telecom “British Telecom uses Oracle Enterprise Manager to provide database-as-a-service and middleware-as cloud service offerings. We can now deploy a database in 20 minutes whereas in the past it would have taken us a couple of weeks. The business reaps the benefit in decreased costs of hardware, being agile and being able to deliver services quickly to market. BT are excited about the new features in Oracle Enterprise Manager 12c such as customer self-service, templated provisioning, agentless discovery, metering and chargeback—which we expect to further help cut costs." Source: BT Deploys Oracle Database as a Service, cutting provisioning time from weeks to minuteshttp://streaming.oracle.com/ebn/podcasts/media/10957726_BT_110911.mp3
Database Lifecycle Management Discovery and Initial Provisioning Discover Assets and Provision Software on them Ongoing Change Management End to End Management of patches, upgrades, and schema changes Continuous Configuration and Compliance Management Track inventory, configuration drifts and compliance
Configuration ManagementComprehensive, Integrated, Automated INTEGRATED EXTENSIBLE Real-Time Config Change Detection Discovery and Asset Tracking Comparison, History, and Reporting Configuration Compliance Configuration Management Hosts and OS ApplicationServers Databases Applications CLOUD READY APPS/SYSTEMCENTRIC
Configuration Management Inventory Search and Reporting Save Search Definition Use Existing Relationships And Properties Build Search criteria for Ad-hoc Search
Configuration Management Inventory Reporting Population trend Version Distribution Configuration Details
Configuration Management Topology Viewer • Represent relationships visually • Manage at system level, rather than component level • Understand dependencies and analyze impacts • Support relationships: • Out-of-box systems • ‘Depends On’ • ‘Used By’ • Create custom view to add new targets to predefined systems Database Topology name Host Listener
Configuration Comparison Maintain Consistency and Prevent Drift Ignore obvious differences to prevent noise • Configuration comparison and alerts for drift detection • Compare configurations to “gold” standards • Compare across Database lifecycles, dev, test, production using ad-hoc or scheduler • Compare using custom or out-of-box templates • Ability to ignore certain differences • Useful in comparing multi-component systems: • Oracle Database • Oracle Exadata • Weblogic Managed Servers • Fusion Applications • 1-1 and 1-n comparisons Notify on Difference Use pre-existing template Apply constraints on configuration value
? ? ? Oracle Exadata Comparisons = = = ? ? ? = = = Baseline Gold Image Current ? DB ? = = Storage Cell To Storage Cell DB DB RAC RAC
Rules Compliance Enforcement Compliance Standards Compliance Manager, Security Auditors • Multiple hierarchies • Compliance FrameworkConceptual “folders” that map configuration standards to real-world structure of compliance frameworks (PCI, COBIT, HIPAA, CIS, etc) • Compliance StandardCollection of rules that gets associated to multiple targets • Compliance RuleChecks/Tests that are performed against specific target types • Rich set of compliance reporting for Administrators and Security Auditors • Self-Update features: • Notify new content availability – Assist in downloading new content Compliance Frameworks DBAs, Admins, IT Managers
Configuration Management Compliance Rules • Checks / tests that are performed against the environment, e.g.: is a parameter value set properly as per best practice guidelines? • Rich set of out-of-box rules mapped to out-of-box standards and frameworks • For Exadata configuration, CIS, PCI, etc • Is a change that happened authorized by a change request? • Target-type specific, not target-specific • Three types • Repository Rule • Evaluated against repository data • Repository browser to aid in rule creation • Real-time Rule • Detection of real time activities (file actions, schema actions, process actions) • Detection of “unauthorized” changes through automated correlation against Change Management Systems • Weblogic Rule • BEA Guardian health checks integrated in Enterprise Manager
Configuration Management Compliance Reporting Framework Standard Rule
Integrated Management Synergies • Discover • Hosts & Applications • Dependencies and Relationships • Inventory • Collect • Deep configuration data • Parsed Configuration Files • Patches installed • Patch Advisories via MOS • Upgrade Advisories from MOS • Configuration Policy Violations Advise • Real-Time Monitoring – Who/When • Compliance Score • Best Practices • Oracle Recommendations • Regulatory ( PCI,Cobit) • Report • Inventory &Trend • Automatic Change Reconciliation • Authorization vs. Unauthorized • Topology guided Impact Analysis • Config Comparison for Drift Analysis • To Gold & Baseline • 1 to 1, 1 to N • Target and System • DB Change Management • Data Comparison • Change Plans • Patch Conflict and PreReq Analysis Audit Analyze Core Act • Change/Patch Plans • Mass deployment • Schema Synchronization • Settings, Drift & Policy Actions • Configuration Changes
Comprehensive Database Lifecycle Management Only with Oracle Enterprise Manager 12c • Comprehensive management solutionfor configuration, patching, provisioning, and change automation • Automated discovery capabilities to know what’s out there • Integrated console for simplified management • Rich out-of-box policy templates to enforce compliance • Application centricity topology views and relationships for better visibility
Business-DrivenIT Management Oracle Enterprise Manager 12cResource CenterAccess Videos, Webcasts, White Papers, and More Oracle.com/goto/enterprisemanager