Azure for SAP Workloads Reference Architecture

 



SAP NetWeaver with AnyDB on Azure VMs

This reference architecture consists of a set of proven practices for running SAP NetWeaver in a Windows environment on Azure with high availability and is always deployed with specific VM sizes that can changed to accommodate your organization's needs accordingly.

High level architecture




Architectural components

The architecture exhibits the following infrastructure and key software components:
  • Virtual network- The Azure Virtual network can securely connect all the Azure resources to each other as well as an on-premises environment via virtual gateway provisioned as a part of ExpressRoute or Site-to-Site connection. An ideal VDC design allows the virtual gateway to reside in the virtual network that also serves as the hub of a hub-spoke hierarchy containing multiple, peered virtual networks. The spokes represents the individual virtual networks hosting the SAP applications and database tiers.

  • Subnets- Every virtual network is divided into separate subnets hosting application (SAP NetWeaver) as well as database tiers with the additional subnets hosting infrastructure services such as Active Directory domain controllers and serving the role of the network perimeter while all these generally resides in the hub virtual network.

  • Virtual Machines- Azure VMs hosts the application and database tiers components grouped as SAP NetWeaver which runs SAP Central Services as well as SAP application servers; and AnyDB which runs as the source database like the Microsoft SQL Server, Oracle, or IBM DB2.

  • Jumpbox- It is also known as the Bastion Host which can easily run the hardened operating system instance that administrators can use to connect to the other VMs and also Windows or Linux. You can readily use a Windows jumpbox tools like HANA Cockpit or HANA Studio. 

  • Active Directory Domain Controllers- They can offer authentication as well as authorization services for Windows and Linux operating systems.

  • Load Balancers- They can be used to distribute traffic to Azure VMs in the application and database tiers. 

  • Availability Sets- Azure VMs serving the same role can be grouped into distinct availability sets with at least two VMs per availability set in the highly available configurations. On the contrary, the individual VMs serving the same role can also be deployed into the distinct availability zones, in multi-zone deployments.

  • Network Interface Cards (NICs)- They can attach VMs to a virtual network.

  • Network Security Groups (NSGs)- They restricts incoming, outgoing, and intra-subnet traffic in a virtual network.

  • Virtual Gateway- It can allow you to extend your on-premises network to the Azure virtual network and it is generally recommended to use ExpressRoute service for cross-premises connectivity of SAP deployments in Azure, but alternately, a Site-to-Site VPN or Virtual WAN can also do the job.

  • Disks- Azure VM disks offers persistent storage for SAP workloads. 

  • Azure Storage- It can provide a wide range of storage services and can also be used b Cloud Witness to implement quorum for Windows Server Failover Clustering.

  • SAP Web Dispatcher Pool- Its component can be used as a load balancer for SAP traffic among the SAP application servers and to achieve its high availability, Azure load balancer can also be used to implement the parallel Web Dispatcher setup. Web Dispatcher uses a round-robin configuration for HTTP(S) traffic distribution among all the available load dispatchers in the load balanced backend pool. 

  • SAP Central Services Cluster- It can be a potential Single Point of Failure (SPOF) whenever it is deployed to a single VM and if you want to implement a high availability solution, you can easily deploy multiple Central Services instances while configuring them as the members of a failover cluster with a shared disk or a file share providing highly available storage accessible by all the cluster nodes. 

Comments

Popular posts from this blog

Deployment (Part 3)

Deployment (Part 1)

Design Planning (Part 3)