混合式和多重雲端作業的策略性考慮Strategic considerations of hybrid and multicloud operations

最佳做法鼓勵客戶使用 適用于 Azure 的雲端採用架構策略方法來建立單一的集中式雲端採用策略。Best practices encourage customers to create a single centralized cloud adoption strategy by using the Cloud Adoption Framework for Azure Strategy methodology. 如果您還沒有這麼做,請使用 策略和計畫範本 來記錄您的雲端採用策略。If you haven't already, use the strategy and plan template to record your cloud adoption strategy. 本文將介紹一些可能會影響您策略的混合式和多重雲端作業的技術考慮。This article introduces some technical considerations about hybrid and multicloud operations that might affect your strategy.

混合式和多重雲端案例的常見動機Common motivations for a hybrid and multicloud scenario

混合式和多重雲端案例不是一種策略。A hybrid and multicloud scenario isn't a strategy. 它是一種技術方法,具有可加速商務和技術策略的特定架構和工具的相依性。It's a technical approach with dependencies on specific architectures and tools that can accelerate business and technology strategies. 使用混合式和多重雲端案例可能會影響下列常見的策略動機:The following common strategic motivations can be affected by using a hybrid and multicloud scenario:

  • 重大商務活動:回應重要的商務事件是混合式和多重雲端採用的常見驅動程式。Critical business events: Responding to critical business events is a common driver for hybrid and multicloud adoption. 能夠將 多個環境與混合式網路連線,並在各平臺之間移動工作負載 ,可讓技術人員以快速且更有效率的方式回應:The ability to connect multiple environments with hybrid networks and move workloads between platforms allows technology staff to respond rapidly and more effectively to:
    • 從資料中心離開的業務變更。Business changes from a datacenter exit.
    • 合併/取得事件。Merger/acquisition events.
    • 法規合規性的變更。Changes to regulatory compliance.
  • 遷移動機:超越立即和重大事件、遷移和現代化動機,致力於 midterm 技術成本、作業複雜性和企業靈活性的優化。Migration motivations: Looking beyond immediate and critical events, migration and modernization motivations strive for midterm optimization of technology costs, operational complexity, and business agility. 目前的環境與雲端提供者之間的連線能力,允許單向的遷移功能。Connectivity between the current environment and the cloud provider allows for one-way migration capabilities. 使用抽象層(例如容器、Kubernetes 或 Azure Kubernetes Service (AKS) )可簡化遷移程式。Use of abstraction layers, like containers, Kubernetes, or Azure Kubernetes Service (AKS), streamlines the migration process.
  • 創新動機:當您建立解決方案來推動長期的創新時,混合式和多重雲端案例可能會加速開發工作。Innovation motivations: When you build solutions to drive long-term innovation, a hybrid and multicloud scenario might accelerate development efforts. 容器、Kubernetes 和 AKS 可讓開發人員建立比任何一個雲端平臺功能更少的解決方案。Containers, Kubernetes, and AKS allow developers to build solutions with fewer dependencies on the features of any one cloud platform. Azure Stack HCI、Azure Stack Hub 和 Azure Stack Edge 可讓開發人員繼續使用雲端原生解決方案來進行創新,即使是在本機的內部部署資料中心也一樣。Azure Stack HCI, Azure Stack Hub, and Azure Stack Edge allow developers to continue innovating with cloud native solutions, even in the local, on-premises datacenter. 相反地,跨多個雲端的連線能力可讓開發人員在其選擇的平臺上充分利用雲端原生服務,同時整合這些雲端的整個企業環境。Conversely, connectivity across multiple clouds allows developers to maximize the use of cloud native services on their chosen platform while they integrate across those clouds for holistic enterprise environments.

請參閱 常見動機 的詳細清單,以查看先前的動機為何最接近您組織的策略。Review a detailed list of common motivations to see which of the preceding motivations most closely maps to your organization's strategy.

混合式和多重雲端結果Hybrid and multicloud outcomes

在您執行任何雲端策略之前,雲端策略小組應該建立一組清楚的 可測量商務結果來追蹤進度Before you execute on any cloud strategy, the cloud strategy team should establish a clear set of measurable business outcomes to track progress. 混合式和多重雲端案例本身不太可能傳遞任何常見的業務成果。A hybrid and multicloud scenario alone is unlikely to deliver any of the common business outcomes. 但啟用混合式和多重雲端方法通常是必要的里程碑,而且通常會被視為將業務成果解除鎖定所需的關鍵結果。But enabling a hybrid and multicloud approach is often a required milestone and is often tracked as a key result required to unlock business outcomes.

混合式和多重雲端案例也經常用來做為加速下列業務成果的技巧:A hybrid and multicloud scenario is also commonly used as a tactic to accelerate the following business outcomes:

  • 靈活性、全球接觸和客戶成果: 在雲端提供者之間移動的能力,可讓企業更輕鬆地部署至雲端平臺,以充分解決這些業務成果。Agility, global reach, and customer outcomes: The ability to move between cloud providers allows businesses to more easily deploy to the cloud platform that can best address each of these business outcomes.
  • 應用程式創新、資料創新和資料 democratization 結果: 不論選擇的雲端平臺為何,都可讓開發和分析小組管理及使用應用程式和資料,以加速每個結果。Application innovation, data innovation, and data democratization outcomes: Each outcome is accelerated by allowing development and analytics teams to manage and work with applications and data, regardless of the chosen cloud platform.

技術考量Technical considerations

混合式和多重雲端連線能力、容器裝載和超融合式基礎結構可加速您的策略。Hybrid and multicloud connectivity, container hosting, and hyperconverged infrastructure can accelerate your strategy. 但是,您的整體策略和雲端採用方案中應包含下列技術考慮。But the following technical considerations should be included in your overall strategy and cloud adoption plan. 您將如何:How will you:

  • 跨混合式和多重雲端案例維持治理、管理和合規性?Maintain governance, management, and compliance across a hybrid and multicloud scenario?
  • 始終如一地管理身分識別和安全性?Consistently manage identity and security?
  • 要安全地管理和管理資料嗎?Manage and govern data safely?
  • 在分散的環境中安全地傳輸資料?Safely transfer data across distributed environments?
  • 整合不同的環境?Integrate disparate environments?

整合作業考慮Unified operations considerations

由於各種混合和多重雲端決策的結果,可能會有各式各樣的策略性影響。There might be diverse strategic impacts as a result of various hybrid and multicloud decisions. 但是牽涉到混合和多重雲端案例的任何策略都有一個持續的考慮。But there's one constant consideration in any strategy that involves a hybrid and multicloud scenario. 整合作業和單一雲端控制平面的投資,可減少您的混合式和多重雲端專案的障礙。Investments in unified operations and a single cloud control plane will reduce roadblocks to your hybrid and multicloud projects. 下列主要考慮對於整合作業很重要:The following key considerations are important for unified operations:

  • 改善 IT 資產的可見度和控制權: 組織可能需要能夠在單一位置查看所有資源,並且能夠透過這些資源來進行查詢以獲得見解。Improved visibility and control over the IT estate: Organizations might need the ability to see all their resources in a single location and be able to query through them to gain insights.
  • 雲端為基礎的管理: 組織可能想要能夠在不同平臺上使用相同的雲端管理服務來將作業現代化,並在 Azure 外部的位置提供資源。Cloud-based management: Organizations might want the ability to modernize operations across platforms with the same cloud management services on resources in locations that are outside of Azure.
  • 治理: 組織可能會想要確保所有資源之間的一致設定,從一個集中位置。Governance: Organizations might want to ensure consistent configurations across all resources from one central location.
  • DevOps 且彈性的雲端原生應用程式部署: 組織可透過 Gitops) 將,透過範本和應用程式設定來提高應用程式基礎結構的靈活性。DevOps and flexible, cloud-native application deployments: Organizations gain the agility to deploy application infrastructure through templates and application configurations through GitOps.
  • 使用平臺即服務 (PaaS) 提高彈性: 組織也受益于在其選擇的基礎結構上執行 PaaS 服務的能力。Increased flexibility with platform as a service (PaaS): Organizations also benefit from the ability to run PaaS services on their infrastructures of choice.

部署單一企業控制平面可以加速混合式和多重雲端的採用。Deploying a single enterprise control plane can accelerate hybrid and multicloud adoption. 組織可以在採用整合作業的雲端技能建立工作和流程改善的情況之下,開發雲端。Organizations can develop cloud readiness with cloud skill-building efforts and process improvements that assume unified operations. 當您準備其他工作負載以遷移至雲端時,請將創新的雲端實務和技術帶入內部部署環境。Bring innovative cloud practices and technologies to on-premises environments while you prepare other workloads for migration to the cloud. 單一雲端作業管理儀表板可協助您在內部部署、多重雲端和邊緣環境中一致地管理及管理您的作業。A single cloud operations management dashboard can help you to manage and govern your operations consistently across on-premises, multicloud, and edge environments. 針對開發人員,您可以更深入瞭解分散于各環境的資產、跨小組責任,以及更快速、一致且大規模的部署。You gain greater visibility into assets scattered across environments, cross-team accountability, and faster, consistent, and at-scale deployments for developers.

透過整合作業加速混合式和多重雲端的採用Accelerate hybrid and multicloud adoption with unified operations

開始全方位的雲端就緒和技能建立計畫,可加速整個組織的雲端採用和遷移工作。Starting comprehensive cloud readiness and skill-building initiatives can accelerate cloud adoption and migration efforts across your organization. 評估雲端的準備工作,在您的工作負載中實行創新的雲端實務,以維持在內部部署,並採用雲端技術來準備您可能移至雲端的其他工作負載。Assess and advance cloud readiness, implement innovative cloud practices in your workloads that will remain on-premises, and adopt cloud technologies to prepare other workloads that you might move to the cloud. 與您的雲端策略小組合作,建立必要的雲端技能和流程,以準備將工作遷移至混合式和多重雲端環境。Work with your cloud strategy team to build the necessary cloud skills and processes to prepare for your migration effort to a hybrid and multicloud environment.

整合作業如何轉換您組織的雲端採用和遷移工作?How can unified operations transform your organization's cloud adoption and migration effort?

Azure Arc 在混合式、多重雲端和邊緣環境中,透過 Azure 管理和服務來擴充單一企業控制平面。Azure Arc extends a single enterprise control plane with Azure management and services across hybrid, multicloud, and edge environments. Azure Arc 允許跨異類資源環境和基礎結構的一致狀態:Azure Arc allows for a consistent state across heterogeneous resource environments and infrastructures to:

  • 解決資料主權和敏感度。Address data sovereignty and sensitivity. 以最少量的每個平臺變更,在私用和公用雲端中傳遞資料。Deliver data in the private and public cloud with minimal changes per platform.
  • 實務順暢開發。Practice frictionless development. 支援中斷連線和連線的使用案例。Support both disconnected and connected use cases.
  • 將創新的 Azure 服務帶入任何地點。Bring innovative Azure services to any location. 以更快且更一致的方式進行部署,並根據容量達成彈性調整。Deploy faster and more consistently, and achieve elastic scale based on capacity.
  • 讓企業內的開發人員小組能夠大規模地在任何地方建立雲端應用程式。Empower developer teams across the enterprise with the ability to build cloud applications anywhere, at scale. 撰寫程式碼,並將應用程式寄送給容器和 Kubernetes 叢集。Code and ship applications to container and Kubernetes clusters anywhere.
  • 持續加速開發規模。Consistently speed up development, at scale. 使用範本化部署、設定和安全性,並透過原則導向的部署和作業減少錯誤。Use templatized deployment, configuration, and security, and reduce errors with policy-driven deployment and operations.
  • 提升企業 IT 團隊的更高責任。Promote greater accountability for enterprise IT teams. 在資源和位置集中集中可見度、營運和合規性,以從 Azure Arc 延伸統一的企業控制平面。Extend a uniform enterprise control plane from Azure Arc by centralizing visibility, operations, and compliance across resources and locations.
  • 跨內部部署、多重雲端和邊緣環境進行組織、管理和保護。Organize, govern, and secure across on-premises, multicloud, and edge environments. 支援 Windows、Linux、SQL Server 及 Kubernetes。Support Windows, Linux, SQL Server, and Kubernetes.
  • 透過整合作業維護標準化的管理和安全性。Maintain standardized management and security with unified operations. 確保資料工作負載之間的一致性。Ensure consistency across data workloads.

混合式和多重雲端環境的組合是現今企業 IT 環境中最常見的案例。A combination of hybrid and multicloud environments is the most common scenario found across today's enterprise IT landscape. 對於大部分的客戶而言,移至混合式和多重雲端案例都採用市場現實,並且是由音效商務策略所推動。For most customers, moving to a hybrid and multicloud scenario embraces market reality and is motivated by a sound business strategy. 您組織的下一項決策是認可至分散式雲端運算模型,以提升雲端採用和遷移工作的速度。The next decision for your organization is to commit to a distributed cloud computing model that can increase the speed of your cloud adoption and migration efforts.

利用創新的雲端實務和技術,起始跨小組工作以增加您的雲端就緒程度,是實現單一企業控制平面的第一步。Initiating a cross-team effort to increase your cloud readiness with innovative cloud practices and technologies is the first step toward implementing a single enterprise control plane. 您可以始終如一地保護和監視資源、將治理和安全性標準化,以及管理您在內部部署、多重雲端和邊緣環境中的操作程式。You can consistently protect and monitor resources, standardize governance and security, and manage your operational processes in on-premises, multicloud, and edge environments. 如果您打算在未來12個月或更長時間內設計混合式策略,請考慮使用混合式和多重雲端環境來管理您的整體數位資產。Consider a hybrid and multicloud environment to manage your overall digital estate if you're planning a hybrid strategy by design for the next 12 months or longer.

與您的 雲端策略小組 合作,在混合式、多重雲端和邊緣環境中建立必要的技能層級和流程,以在 IT 團隊內促進更高的責任、讓開發人員團隊可提供協助,並將 Azure 服務延伸到任何基礎結構。Work with your cloud strategy team to build the necessary skill levels and processes to prepare the move to an enterprise control plane across a hybrid, multicloud, and edge environment that encourages greater accountability within IT teams, empowers developer teams, and extends Azure services to any infrastructure, anywhere.

整合作業動機Unified operations motivations

不同的 動機 可能會引導客戶採用混合式和多重雲端的方法。Various motivations might steer customers to adopt a hybrid and multicloud approach. 採用正確的雲端策略取決於記錄與這些動機相關聯的分類。Adopting the right cloud strategy depends on documenting what classification most these motivations are associated with. 它們是否與重要的商務活動、遷移或創新相關?Are they related to critical business events, migration, or innovation?

客戶可能會有符合特定法規要求和資料當地語系化法則的數位資產,其會限制必須位於哪個地理位置。Customers might have a digital estate that's bound by specific regulatory requirements and data localization laws that constrain in which geographic location it must reside. 特定產業可能需要低延遲和高連線能力,才能有效率地運作,例如金融服務。A particular industry might require low latency and high connectivity for efficient operational capacity, such as financial services. 低延遲和高連線能力是其他產業(例如媒體、醫療保健、教育和政府)的常見需求。Low-latency and high-connectivity are common requirements for other industries like media, healthcare, education, and government.

例如,跨國組織可能會有全域散發的舊版資料中心,而其過時的基礎結構與全公司的遷移工作不相容。A multinational organization, for example, might have globally distributed, legacy datacenters, with an aging infrastructure that's not compatible with a companywide migration effort. 或者,可能會有公司有更大的雲端資產在數個雲端環境中 sprawled,而 IT 作業的可見度和控制是一項挑戰。Or, there might be corporations with even larger cloud estates that are sprawled across several cloud environments, where visibility and control of IT operations is challenging.

多重雲端控制平面的整體優點是什麼?What are the overall benefits of a multicloud control plane?

統一治理和合規性Uniform governance and compliance

Azure Arc 提供:Azure Arc provides:

  • 您所有資源的儀表板視圖,可供您用來捕捉和追蹤精確的 IT 資產清查。A dashboard view of all your resources to capture and track an accurate inventory of IT assets. 資源包括 Windows、Linux、SQL server 和 Kubernetes 容器。Resources include Windows, Linux, SQL servers, and Kubernetes containers.
  • 藉由建立統一的治理架構並對所有工作負載套用一組標準的原則,降低組織的風險。A reduced risk in your organization by establishing a unified governance framework and applying a standard set of policies for all workloads.
  • 針對伺服器和應用程式擁有者,請參閱伺服器的合規性狀態、從 Azure 入口網站取得必要補救步驟的能力,以及從中央 IT 部門移除管理額外負荷,以進行追蹤並確保符合合規性標準。For server and application owners, a view of the compliance status of servers, an ability to take necessary remediation steps from the Azure portal, and removal of management overhead from central IT departments for tracking and ensuring adherence to compliance standards.

一致的部署、變更控制,以及隨處 DevOpsConsistent deployments, change control, and DevOps everywhere

您可以使用 Azure Arc 採用內部部署的雲端實務。With Azure Arc, you can adopt cloud practices on-premises. 您可以使用一致的方法,在任何基礎結構上,透過 Kubernetes 叢集的熟悉工具和作法來部署應用程式。You can deploy applications by using a consistent approach with familiar tools and practices across your Kubernetes clusters, on any infrastructure. 使用宣告式設定管理系統(例如 Gitops) 將)將變更控制標準化。Standardize change control with declarative configuration management systems like GitOps. 輕鬆採用 DevOps 技術,例如基礎結構即程式碼 (IaC) ,並讓開發人員能夠以自助方式存取豐富的工具。Easily adopt DevOps techniques like infrastructure as code (IaC), and empower developers with self-service access to a rich selection of tools.

隨處部署及管理 Azure 資料服務Deploy and manage Azure data services anywhere

啟用 Azure Arc 的資料服務可讓您彈性地在內部部署或雲端中部署完全受控的 Azure 服務。Azure Arc-enabled data services provide you with the flexibility to deploy fully managed Azure services on-premises or in the cloud. 您可以在任何地方擴充雲端優勢,以提供擴充性、快速部署和隨時掌握最新的雲端創新,同時遵守法規需求。You can extend cloud benefits everywhere to provide scalability, fast deployment, and always up-to-date cloud innovation, while you adhere to regulatory requirements. 在內部部署環境或用戶端區域中部署和管理資料服務,並減少延遲。Deploy and manage data services within on-premises environments or in customer regions, and reduce latency. 存取內部部署資料工作負載的最新 Azure 特性和功能。Access the latest Azure features and capabilities for on-premises data workloads. 加入我們的公開預覽,以在任何基礎結構上部署 sql (SQL 受控實例) 和于 postgresql 超大規模。Join our public preview to deploy evergreen SQL (SQL Managed Instance) and PostgreSQL hyperscale on any infrastructure. 您也可以從自動更新、修補程式和升級獲益,不需要應用程式停機。You can also benefit from automatic updates, patches, and upgrades with no application downtime.

IT 部門的多重雲端控制平面有哪些優點?What are the benefits of a multicloud control plane for IT departments?

對於 IT 系統管理員而言,Azure Arc 整合了一致性和統一的儀表板,讓您能夠一致地查看客戶環境之間的數千部伺服器。For IT administrators, Azure Arc brings consistency and a unified dashboard with a consistent view into thousands of servers across customer environments. 您可以使用內部部署的現有工具,順暢地與資源互動,而不會干擾現有的管理工具。Use existing tools on-premises to seamlessly interact with resources, without interfering with existing management tools.

庫存管理與資源組織Inventory management and resource organization

控制組織、小組和個人層級的資源。Control resources at organizational, team, and personal levels. 將它們帶入單一系統,以透過 Azure 範圍(例如管理群組、訂用帳戶和資源群組)進行組織和清查。Bring them into a single system to organize and inventory through Azure scopes like management groups, subscriptions, and resource groups. 建立、套用及強制執行標準化和自訂標記,以追蹤資源。Create, apply, and enforce standardized and custom tags to keep track of resources. 使用 Azure Resource Graph 建立強大的查詢並搜尋通用群組合。Build powerful queries and search global portfolios by using Azure Resource Graph.

擴充內部部署的雲端實務Extend cloud practices on-premises

輕鬆採用 DevOps 技術,例如 IaC。Easily adopt DevOps techniques like IaC. 讓開發人員能夠以自助方式存取各種不同的工具和集中式 IT 治理和指引。Empower developers with self-service access to a variety of tools and centralized IT governance and guidance. 使用宣告式設定管理系統(例如 Gitops) 將)將變更控制標準化。Standardize change control with declarative configuration management systems like GitOps.

隨處都能輕鬆地執行 Azure 安全性Easily implement Azure security anywhere

存取 Azure 安全性中心的統一基礎結構安全性管理系統。Access Azure Security Center's system of unified infrastructure security management. 不論是在 Azure、多重雲端或內部部署環境中,都能利用跨雲端混合式工作負載的 advanced 威脅防護來加強安全性狀態。Strengthen your security posture with advanced threat protection across hybrid workloads in the cloud, no matter whether in Azure, multicloud, or on-premises environments. 使用 Azure 角色型存取控制來集中存取及管理所有資源 (RBAC) 。Centrally access and manage all resources with Azure role-based access control (RBAC). 集中管理和強制執行原則合規性,並使用 Azure 原則簡化審核報告。Centrally manage and enforce policy compliance, and simplify audit reporting with Azure Policy.

隨處治理和設定資源Governance and configuration of resources anywhere

建立、套用和強制執行原則,以 Kubernetes 應用程式、資料和基礎結構,以標準化活動。Standardize activities by creating, applying, and enforcing policies to Kubernetes applications, data, and infrastructure anywhere. 使用 Azure 原則跨所有資源設定護欄。Set guardrails across all resources with Azure Policy. 使用繼承功能,確保單一伺服器、叢集或資料服務的一致設定,或大規模設定。Ensure consistent configurations to a single server, cluster, or data service, or at scale by using inheritance capabilities. 標準化跨系統和不同資源類型的 RBAC。Standardize RBAC across systems and different types of resources. 自動將事件修復並委派給服務小組,而不需要 IT 介入。Automate and delegate remediation of incidents to service teams without IT intervention. 使用 Azure 原則強制執行執行時間一致性和審核資源。Enforce runtime conformance and audit resources with Azure Policy.

跨平臺的整合工具和體驗Unified tools and experiences across platforms

在過去的團隊中建立共用的應用程式和基礎結構生命週期,並以位置、技能和作業描述為依據。Create a shared application and infrastructure lifecycle within teams traditionally siloed by location, skill, and job description. 透過 Azure 入口網站和 Azure API 管理,在資料中心、邊緣位置和多重雲端環境中統一且一致的資源觀點來簡化工作。Simplify work with a unified, consistent view of resources across datacenters, edge locations, and multicloud environments through the Azure portal and Azure API Management. 連接及存取 Windows 和 Linux 虛擬機器、實體伺服器,以及 Kubernetes 生態系統內的任何 Kubernetes 散發。Connect and gain access to Windows and Linux virtual machines, physical servers, and any Kubernetes distribution within the Kubernetes ecosystem. 使用已啟用 Azure Arc 的資料服務,將 Azure 資料服務帶到內部部署、多重雲端和邊緣環境。Bring Azure data services to on-premises, multicloud, and edge environments with Azure Arc-enabled data services. 以清楚的考慮分隔,為小組成員建立明確的角色和責任,而不會失去可見度和存取權。Establish clear roles and responsibilities for team members with clear separation of concerns, without losing visibility and access.

整合式 DevOps 與管理功能Integrated DevOps and management capabilities

選取另一個啟用 Azure Arc 的服務、Azure 開發,以及開發人員工具專屬的操作工具。Select another Azure Arc-enabled service, Azure development, and operational tools that are developer tooling-agnostic. 存取統一的企業儀表板,透過 GitHub、Azure 監視器、資訊安全中心、Azure 更新整合等,授與您跨環境一致的觀點。Access a unified enterprise dashboard that grants you a consistent view across environments via GitHub, Azure Monitor, Security Center, Azure Update integration, and more. 部署一般範本以將設定自動化,並部署 IaC 以進行安全且可重複的生產部署。Deploy common templates to automate configurations, and deploy IaC to make safe and repeatable production deployments. 利用 Azure Active Directory、企業身分識別服務和 Azure Resource Manager,管理所有使用者和資源的端對端身分識別和存取。Manage end-to-end identity and access across all users and resources with Azure Active Directory, enterprise identity service, and Azure Resource Manager.

下一步Next steps

如需雲端採用旅程的詳細指引,請參閱下列文章:For more guidance for your cloud adoption journey, see the following articles: