You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/virtual-machines/workloads/sap/automation-plan-deployment.md
+22-21Lines changed: 22 additions & 21 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -18,9 +18,29 @@ For generic SAP on Azure design considerations please visit [Introduction to an
18
18
> [!NOTE]
19
19
> The Terraform deployment uses Terraform templates provided by Microsoft from the [SAP on Azure Deployment Automation Framework repository](https://github.com/Azure/sap-automation/). The templates use parameter files with your system-specific information to perform the deployment.
20
20
21
+
## Workload partitioning
22
+
23
+
Most SAP configurations have multiple [workload zones](automation-deployment-framework.md#deployment-components) for different application tiers. For example, you might have different workload zones for development, quality assurance, and production.
24
+
25
+
You'll be creating or granting access to the following services in each workload zone:
26
+
27
+
* Azure Virtual Networks, for virtual networks, subnets and network security groups.
28
+
* Azure Key Vault, for system credentials and the deployment Service Principal.
29
+
* Azure Storage accounts, for Boot Diagnostics and Cloud Witness.
30
+
* Shared storage for the SAP Systems either Azure Files or Azure NetApp Files.
31
+
32
+
Before you design your workload zone layout, consider the following questions:
33
+
34
+
* How many workload zones does your scenario require?
35
+
* In which regions do you need to deploy workloads?
36
+
* What's your [deployment scenario](#supported-deployment-scenarios)?
37
+
38
+
For more information, see [how to configure a workload zone deployment for automation](automation-deploy-workload-zone.md).
39
+
40
+
21
41
## Credentials management
22
42
23
-
The automation framework uses [Service Principals](#service-principal-creation) for infrastructure deployment. You can use different deployment credentials (service principals) for each [workload zone](#workload-zone-structure). The framework stores these credentials in the [deployer's](automation-deployment-framework.md#deployment-components) key vault in Azure Key Vault. Then, the framework retrieves these credentials dynamically during the deployment process.
43
+
The automation framework uses [Service Principals](#service-principal-creation) for infrastructure deployment. You can use different deployment credentials (service principals) for each [workload zone](#workload-partitioning). The framework stores these credentials in the [deployer's](automation-deployment-framework.md#deployment-components) key vault in Azure Key Vault. Then, the framework retrieves these credentials dynamically during the deployment process.
24
44
25
45
The automation framework also defines the credentials for the default virtual machine (VM) accounts, as provided at the time of the VM creation. These credentials include:
26
46
@@ -152,25 +172,6 @@ For more information, see the [in-depth explanation of how to configure the depl
152
172
153
173
The SAP library provides storage for SAP installation media, Bill of Material (BOM) files, and Terraform state files. The configuration file defines the region and environment name for the SAP library. For parameter information and examples, see [how to configure the SAP library for automation](automation-configure-control-plane.md).
154
174
155
-
## Workload zone structure
156
-
157
-
Most SAP configurations have multiple [workload zones](automation-deployment-framework.md#deployment-components) for different application tiers. For example, you might have different workload zones for development, quality assurance, and production.
158
-
159
-
You'll be creating or granting access to the following services in each workload zone:
160
-
161
-
* Azure Virtual Networks, for virtual networks, subnets and network security groups.
162
-
* Azure Key Vault, for system credentials and the deployment Service Principal.
163
-
* Azure Storage accounts, for Boot Diagnostics and Cloud Witness.
164
-
* Shared storage for the SAP Systems either Azure Files or Azure NetApp Files.
165
-
166
-
Before you design your workload zone layout, consider the following questions:
167
-
168
-
* How many workload zones does your scenario require?
169
-
* In which regions do you need to deploy workloads?
170
-
* What's your [deployment scenario](#supported-deployment-scenarios)?
171
-
172
-
For more information, see [how to configure a workload zone deployment for automation](automation-deploy-workload-zone.md).
173
-
174
175
## SAP system setup
175
176
176
177
The SAP system contains all Azure components required to host the SAP application.
@@ -199,7 +200,7 @@ When planning a deployment, it's important to consider the overall flow. There a
199
200
1. Creating shared storage for Terraform state files
200
201
1. Creating shared storage for SAP installation media
201
202
202
-
1. Deploy the workload zone. This step deploys the [workload zone components](#workload-zone-structure), such as the virtual network and key vaults.
203
+
1. Deploy the workload zone. This step deploys the [workload zone components](#workload-partitioning), such as the virtual network and key vaults.
203
204
204
205
1. Deploy the system. This step includes the [infrastructure for the SAP system](#sap-system-setup) deployment and the SAP configuration [configuration and SAP installation](automation-run-ansible.md).
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments