Société Générale knows that containers and the cloud are the future of the IT industry and have been using Docker EE for over a year and a half. In this talk, we will share how Docker EE fits into our global strategy and our architecture for integrating the platform to our existing IT systems. We will go over tradeoffs of how we operationalized the platform to provide a highly available CAAS to our global enterprise. Finally, we will share how we are onboarding development teams and deploying their applications to production.
Automating Google Workspace (GWS) & more with Apps Script
Integrating Docker EE into Société Générale's Existing Enterprise IT Systems
1. Integrating Docker EE into
Société Générale's Existing
Enterprise IT Systems
Stéphan Dechoux
Thomas
Boussardon
Société Générale
2. Integrating Docker EE into Société Générale's
Existing Enterprise IT Systems
Stéphan
DechouxDevOps Architect
Thomas
BoussardonMiddleware
specialistSociété Générale
3. Agenda
! Société Générale quick introduction
! Context of the project
! Platform power up(s)
! Sum up
! Questions ?
5. Some figures of our IT …
Ø If we stack all our datacenters equipment, what will
be the height of this tower ?
8x
Hint : Think in Eiffel
Tower size instead of
meter
6. Some figures of our IT …
Ø Storage
Ø Network
Ø CPU Power
We can store more than 200 years
of HD videos
Our global fiber network can
cover the « Tour de France » race
Our grid computing can forecast
weather faster than « Meteo-
France »
8. Context of the Project
!All type of Application: legacy, soa, API REST, monolithic, distributed …
!Mutualized infrastructure, worldwide, secure
!Integrate existing services and layers of infrastructure
!Hybrid: Private / Public Cloud
!Ready for API, Open Banking, Blockchain
!Improve User Experience (PaaS and APaaS)
11. Level 0 – Existing services
Continous
Delivery/Integrati
on Source control Artifact repository
6 1510 30
Persistent storage Data lake
Service registry
KV store
Secrets
management
19. Level 2 – Persistence
!Stateful containers are a real thing …
Jenkins Master ELK stack Batches
6 1510 30
20. Level 2 - Storage
!Integrate with existing storage
Enterprise
Plugins
NFS
CIFS
Dedicated
NAS
Existing
shares
6 1510 30
21. Level 2 - Monitoring
!Need a new way to monitor containers
!Introspect what is happening in the
container
!Provide dashboard to track activity,
alerting
!Send metrics and logs to data lakes
Monitoring/Alertin
g
Ne
w
6 1510 30
22. Platform
Level 3
! Micro services
! Parallel run
! Monitoring+
Here we
are !
6 1510 30
NowStart Months
23. Level 3
Continous
Delivery/Integrati
on Source control Artifact repository
EE
UCP
Engine
DTR
Monitoring/Alertin
g Persistent storage
Service registry
KV store
Ne
w
Data lakes
Lvl 2
Dynamic L7 load
balancer
Ne
w
Secrets
management
Ne
w
6 1510 30
24. Level 3
!X-platform services
!Store/generate secrets, certificates
!Service registry and discovery for micro-services
!K/V store for container’s configuration
!Dynamic load-balancer / Parallel run
Dynamic L7 load
balancer
Ne
w
Service registry
KV store
Ne
w
Secrets
management
Ne
w
6 1510 30
25. Level 3 - Typical Worker
Consul agent
DNSMasqSysdig agent
Netapp plugin
CIFS plugin
SyslogFabio
HRM
Docker EE
Worker
Persistent storage
Data lakes
VM
Service registry
KV store
Secrets
management
Monitoring/Alerti
ng
Apps
Apps
6 1510 30
26. Level 3 - Secure deployment
!Scan images for vulnerabilities (Docker EE - DSS)
!Scan Dockerfile and compose file to respect
best practices (Linter in house development)
!Manually promote images to PROD DTR (Ops)
!Jenkins pipeline provided to dev to deploy in
PROD
6 1510 30
28. Level 4 – On going
Software
Defined
Network
Software
Defined
Storage
Bare Metal
Servers
Dedicated
nodes for
specific
needs
Security
Policies
Enforcement
Advanced
configuratio
n
management
Public cloud
hybridation
6 1510 30
32. Sum up: Just a few thoughts…
Ø Clearly define priorities before each step
Ø Select with care your candidates
Ø Never forget to discuss with all teams
33. Sum up: Achievements!!
Ø Create enthusiasm for new technologies and
new offers
Ø 10 applications in Prod / 50 in Dev / 400
developers
Ø Easy integration with our actual infrastructure
Ø Secure and rapid deployment in Production