Cloud RFI Questions
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
View only
 
 
ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
#QuestionAnswerNotes
2
1What is the development environment in use for software development for this project?Primarily Microsoft Windows Servers.  MS-SQL Server, C#.NET, ASP.NET, IIS, Microsoft Orchestrator, SCOM, Microsft FIM, AD, ADFS
3
2Do you anticipate any changes in development tools in the near future?No, with some potential Linux in the future
4
3How do you currently license Microsoft operating systems, SQL etc. ?Through CDWG/REMC EES Agreement
5
4How do you intend to license software for a cloud solution?Most cost effective way - likely continue what we have in place
6
5We understand that there are five active sets of servers, plus the QA and ST sets. We want to confirm that the QA and ST sets currently reside at KRESA along with your active set. Is this correct?Yes, this is correct.  QA, ST and all "Centralized" systems are at KRESA.
7
6After moving to the cloud will you continue to need five sets of production servers or some other number of sets?We won't need five "hubs", but would like to keep QA and ST environments separately.  All servers can scale to multiples, so we can have multiple web, DB and ETL servers.
8
7Are their requirements for the production servers to be at separate physical locations?Not at this point.  Political concern has been raised of having everything in one place.
9
8If yes to #5, how many physically locations are desired?N/A
10
9Are there backup and DR requirements that need to be considered or is that covered in another way?Yes.  Currently backup and DR are handled by each hub host.  We would like one consolidated strategy.
11
10Is a map available that shows the locations and reach of the current MiSEN fiber network?https://www.merit.edu/wp-content/uploads/2016/10/map-large-10-10-16.png
12
11Does the MiSEN network currently peer with any carrier networks such as AT&T, Charter, Comcast, etc. or Michigan Internet Exchanges (such as DET-IX)?No peering currently with any networks.
13
12Are multiple diverse connections from the MiSEN network to the cloud desired for redundancy?Potentially.  We are looking for recommendations for the best architecture to make this work well for Michigan districts.
14
13If yes to #12, how many separate connections?Looking for recommendations, but assuming at least two.
15
14Do you have any details on the total bandwidth required from user networks to a set of servers or for all servers combinedUnfortunately we do not have good bandwidth usage metrics at present.
16
15How many total sites/districts would be connecting to workloads in the cloud?There are 900 districts in the state, and it is estimated that eventually all districts will utilize the solution.
17
16Do these sites/districts connect directly to the cloud workloads or is there a central network hop they have to make first?Many districts utilize ISDs for networks and often for SIS hosting, so to the degree the 53 ISDs serve as a portal, that would be the first hop.  Additionally, with SISs being hosted at ISDs, that reduces the number of locations connecting.
18
17What sort of bandwidth do each of these sites have (range is fine to have generalized understanding)?Most districts have min of about 5Mb up to 50Mb or more of Internet.  WAN Connections for districts may be up to 10Gb where they exist.  ISDs on MISEN have 10Gb connections.  Data hub host locations have 100Gb connections on the MISEN Network.
19
18What cloud providers are currently being utilized today?The MiDataHub solution has a few servers hosting in Microsoft Azure at present.
20
19What are the workloads (IaaS, SaaS, PaaS)?Currently we are using Iaas for hosting of our central cockpit website and PaaS for database as a service for the central cockpit database.  4 resources on Azure.  App Service, SQL Server, SQL Database, App Service plan
21
20How is Disaster recovery handled today?DR is handled by each data hub host, according to their standard procedures.  As such, no centralized DR process is in place.  Since all 5 hosted sites are on VMware, most use VEEAM backup.
22
21What does development/devops look like today within the entire organization?Agile development process, with weekly status meetings to update and plan implementation.  Octopus Deploy is used to automate deployment of code updates across systems.  Initial deployment to QA for broad testing.  Subsequent deployment to ST for more refined testing prior to production deployment to all hubs.  Microsoft SCOM used for monitoring.
23
22What hypervisor’s are used at the existing 5 data hubs?VMware at all 5 hubs
24
23Please provide more detail around the statement “Ideally, we would like to have our traffic ride over MiSEN direct to our desired cloud provider.” Are there any existing direct connects to a cloud provider?The SEN was designed to support the data hubs with secure, reliable connection. We would prefer a direct link from SEN to the cloud provider. No existing direct connections are in place.
25
24What platform will the statewide applications be developed on?Primarily Microsoft Windows Servers. MS-SQL Server, C#.NET, ASP.NET, IIS, Microsoft Orchestrator, SCOM, Microsft FIM, AD, ADFS.  Potentially some Linux in the future.
26
25What platform will the statewide common database be built on?Microsoft SQL Server, with API access developed in C#.NET
27
26Are there any current or projected bandwidth usage statistics that can be provided that focus on the traffic between the cloud solution and the data hubs and/or participating districts?Unfortunately not.  We don't have a good feel for current bandwidth usage, and expect that it will not go up in a linear manner as more districts come on board.  Expanding the data use to a larger number of systems per district will amplify bandwidth usage.
28
27Are there any preferences or requirements on whether the cloud infrastructure is dedicated or multi-tenant?Multi-tenant is acceptable. We don't have a need to physically have our own hardware, as long as there is guaranteed separation from other tenants in terms of security and performance.
29
28Are there any compliance requirements for the data that will be maintained in the cloud?All data must be encrypted at rest and in-transit.  All work must comply with FERPA.
30
29Are there any requirements for the ability seamlessly migrate workloads between on-premise/data hubs and the off-premise cloud environment?Possibly during the migration, but the goal is to get to 100% cloud implementation
31
30Have you explored solutions in use by other states or districts that is viewed as an ideal solution? If yes, please provide detail.Only to a minor degree.  We are aware that a number of states use cloud solutions for their Ed-Fi implementations for scalability.  This is especially needed to handle the ups and downs of usage.  Summer can significantly scale down.  Peak times, like start of school, need to scale up. 
32
31Can you provide forecasted growth details as they relate to compute capacity, storage, and network bandwidth that would be needed in the cloud?Currently 246 districts are live, representing 28% of districts and 31% of students (about 470,000 students worth of data).  Full scale will be about 900 districts and 1.5M students.  Expected timeframe to get to 100% adoption is 9/30/2020.
33
32Can you provide an estimated timeline for each of the 5 phases of the cloud migration?We don't have a set timeframe for all 5 phases.  For response purposes, Phase 1 ADFS by 6/30/2018, Phase 2 Cockpit Web Servers by 9/30/2018, Phase 3 Services by 3/30/2019, Phase 4 Databases and Web Server by 9/30/2019, Phase 5 Orchestration by 12/31/2019.
34
33What are we looking for in a partner, as opposed to the cloud provider?We are looking for a partner to provide exertise in helping us to build things the right way. Expertise in best practices as well as expertise with educational institutions.
35
34What do we expect our staff to do compared to the partner and cloud provider?MiDataHub staff would monitor the day to day usage, and be the first level to respond to an incident. Partners and cloud providers would be expected to provide support in cases that we can't address an issue. At the end of the day, we need someone we can rely on to make it work if it doesn't.
36
35How do you currently meet the FERPA requirement for data encryption while data is in motion?
a. Is with via SSL and other protocols that are used by the application itself?
b. Point-to-point encrypted with VPN tunnels in firewalls
When data is in motion between the hub and the general internet, traffic is either via SSL or SFTP, with the exception of some SMTP email traffic that doesn't have FERPA data. For internal communication, the VPN Tunnel between the firewalls is encrypted.Added 4/8/2018
37
36Does data need to be encrypted as it travel over your internal LANs and over the MiSEN ring?
a. We assume it does but wanted to verify your interpretation of FERPA.
Similar to the answer in 35 above, data needs to be encrypted appropriately over LANS and the MiSEN ring. If traffic on MiSEN is limited to SSL and SFTP to districts, no additional encryption is needed. Traffic between servers in the cloud solution would need to be encrypted.Added 4/8/2018
38
37How do you currently meet the FERPA  requirement for data encryption while data is a rest?
a. Server OS based disk encryption?
b. SQL database encryption
c. Hardware disk encryption?
SAN Disk encrption, SQL Table Data Encryption (TDE)Added 4/8/2018
39
38Can you provide a copy of the actual Microsoft license agreement you are currently under for licensing Windows Server OS and SQL?
There are many subtly different licenses offered by Microsoft and we want to be sure we know exactly what you have today and properly access the impact on hosting licensing.
Microsoft SQL Server Enterprise Core Edition License & Software Assurance
Mfg. Part#: 7JQ-00341 UNSPSC: 43232304 Electronic distribution - NO MEDIA Contract: REMC Software 2015 (Software 2015)

Microsoft System Center Datacenter Edition - license & software assurance
Mfg. Part#: T6L-00237 UNSPSC: 43232901 Electronic distribution - NO MEDIA Contract: MARKET

Microsoft SQL Server Standard Core Edition License & Software Assurance
Mfg. Part#: 7NQ-00302 UNSPSC: 43232304 Electronic distribution - NO MEDIA Contract: REMC Software 2015 (Software 2015)

Microsoft MSDN Platforms - license & software assurance- 1 user
Mfg. Part#: 3VU-00043 UNSPSC: 43232506 Electronic distribution - NO MEDIA Contract: REMC Software 2015 (Software 2015)

Power BI Pro - subscription license (12 months) - 1 user
Mfg. Part#: NK5-00001-12MO UNSPSC: 43232307 Electronic distribution - NO MEDIA Contract: REMC Software 2015 (Software 2015)

Microsoft Core Infrastructure Server Suite Datacenter - license & software
Mfg. Part#: FUD-00936 UNSPSC: 43233004 Electronic distribution - NO MEDIA Contract: REMC Software 2015 (Software 2015)
Added 4/8/2018
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...
 
 
 
Sheet1
 
 
Main menu