Microsoft infrastructure architecture considerations: part 2 (remote offices)

Posted on By Mark Wilson

Continuing from my earlier post which sets the scene for a series of posts on the architectural considerations for designing a predominantly-Microsoft IT infrastructure, in this post, I’ll look at some of the considerations for remote offices.

Geographically dispersed organisations face a number of challenges in order to support remote offices including: WAN performance/reliability; provisioning new services/applications/servers; management; remote user support; user experience; data security; space; and cost.

One approach that can help with some (not all) of these concerns is placing a domain controller (DC) in each remote location; but this has been problematic until recently because it increases the overall number of servers (it’s not advisable to co-locate other services on a domain controller because administration can’t be delegated to a local administrator on a domain controller and the number of Domain Admins should be kept to a minimum) and it’s a security risk (physical access to the domain controller computer makes a potential hacker’s job so much simpler). For that reason, Microsoft introduced read only domain controllers (RODCs) in Windows Server 2008.

There are still some considerations as to whether this is the appropriate solution though. Benefits include:

  • Administrative role separation.
  • Faster logon times (improved access to data).
  • Isolated corruption area.
  • Improved security.

whilst other considerations and potential impacts include:

  • The need for a schema update.
  • Careful RODC placement.
  • Impact on directory-enabled applications.
  • Possibility of site topology design changes.

Regardless of whether a remote office DC (either using the RODC capabilities or as a full DC) is deployed, then server sprawl (through the introduction of branch office servers for a variety of purposes) can be combatted with the concept of a branch “appliance” – not in the true sense of a piece of dedicated hardware runnings an operating system and application that is heavily customised to meet the needs of a specific service – but by applying appliance principles to server design and running multiple workloads in a manner that allows for self-management and healing.

The first step is to virtualise the workloads. Hyper-V is built into Windows Server 2008 and the licensing model supports virtualisation at no additional cost. Using the server core installation option, the appliance (physical host) management burden is reduced with a smaller attack surface and reduced patching. Multiple workloads may be consolidated onto a single physical host (increasing utilisation and removing end-of-life hardware) but there are some downsides too:

  • There’s an additional server to manage (the parent/host partition) and child/guest partitions will still require management but tools like System Center Virtual Machine Manager (SCVMM) can assist (particularly when combined with other System Center products).
  • A good business continuity plan is required – the branch office “appliance” becomes a single point of failure and it’s important to minimise the impact of this.
  • IT staff skills need to be updated to manage server core and virtualisation technologies.

So, what about the workloads on the branch office “appliance”? First up is the domain controller role (RODC or full DC) and this can be run as a virtual machine or as an additional role on the host. Which is “best” is entirely down to preference – running the DC alongside Hyper-V on the physical hardware means there is one less virtual machine to manage and operate (multiplied by the number of remote sites) but running it in a VM allows the DC to be “sandboxed”. One important consideration is licensing – if Windows Server 2008 standard edition is in use (which includes one virtual operating system environment, rather than enterprise edition’s four, or datacenter edition’s unlimited virtualisation rights) then running the DC on the host saves a license – and there is still some administrative role separation as the DC and virtualisation host will probably be managed centrally, with a local administrator taking some responsibility for the other workloads (such as file services).

That leads on to a common workload – file services. A local file server offers a good user experience but is often difficult to back up and manage. One solution is to implement DFS-R in a hub and spoke arrangement and to keep the backup responsibility data centre. If the remote file server fails, then replication can be used to restore from a central server. Of course, DFS-R is not always idea for replicating large volumes of data; however the DFS arrangement allows users to view local and remote data as though it were physically stored a single location and there have been a number of improvements in Windows Server 2008 DFS-R (cf. Windows Server 2003 R2). In addition, SMB 2.0 is less “chatty” than previous implementations, allowing for performance benefits when using a Windows Vista client with a Windows Server 2008 server.

Using these methods, it should be possible to avoid remote file server backups and remote DCs should not need to be backed up either (Active Directory is a multi-master replicated database so it has an inherent disaster recovery capability). All that’s required is some method of rebuilding a failed physical server – and the options there will depend on the available bandwidth. My personal preference is to use BITS to ensure that the remote server always holds a copy of the latest build image on a separate disk drive and then to use this to rebuild a failed server with the minimum of administrator intervention or WAN traffic.

In the next post in these series, I’ll take a look at some of the considerations for using network access protection to manage devices that are not compliant with the organisation’s security policies.

Microsoft infrastructure architecture considerations: part 1 (introduction)

Posted on By Mark Wilson

Last week, I highlighted the MCS Talks: Enterprise Architecture series of webcasts that Microsoft is running to share the field experience of Microsoft Consulting Services (MCS) in designing and architecting Microsoft-based infrastructure solutions – and yesterday’s post picked up on a key message about software as a service/software plus services from the infrastructure futures section of session 1: infrastructure architecture.

Over the coming days and weeks, I’ll highlight some of the key messages from the rest of the first session, looking at some of the architectural considerations around:

  • Remote offices.
  • Controlling network access.
  • Virtualisation.
  • Security.
  • High availability.
  • Data centre consolidation.

Whilst much of the information will be from the MCS Talks, I’ll also include some additional information where relevant, but, before diving into the details, it’s worth noting that products rarely solve problems. Sure enough, buying a software tool may fix one problem, but it generally adds to the complexity of the infrastructure and in that way does not get to the root issue. Infrastrcture optimisation (even a self assessment) can help to move IT conversations to a business level as well as allowing the individual tasks that are required to reach meet the overall objectives to be prioritised.

Even though the overall strategy needs to be based on business considerations, there are still architectural considerations to take into account when designing the technical solution and, even though this series of blog posts refers to Microsoft products, there is no reason (architecturally) why alternatives should not be considered.

Core Configurator – download it whist you can…

Posted on By Mark Wilson

A few months ago, I wrote a post on customising Windows Server 2008 Server Core and Michael Armstrong tipped me off about a cool utility, written by former MVP Guy Teverovsky, called Core Configurator. I say former MVP, because Guy has given up that award to join Microsoft in Israel – and I’m not surprised, after his employer claimed it was their intellectual property (even though he developed it in his spare time) and asked him to remove it from the web.

Anyway, Core Configurator is intended to provide a GUI (strange as it may seem on server core) to aid in the initial setup tasks for a server core machine including:

  • Product activation.
  • Display configuration.
  • Date and time configuration.
  • Remote Desktop configuration.
  • Local user account management.
  • Firewall configuration
  • WinRM configuration
  • Networking.
  • Computer name and domain/workgroup membership.
  • Installation of server core features/roles.
  • Shutdown.
  • Reboot.

Because the tool has been removed from the web, it’s now pretty hard to get hold of, so download it while you can (there is another download location but this version has a slightly different filename and I cannot vouch for the file contents – i.e. I have not tested it). Once it’s gone, it’s gone – so don’t ask me where to get it if these links stop working.

Reviewing documents? Forget about review sheets and use the features in Word instead!

Posted on By Mark Wilson

A few weeks back, I was taking part in a document review process where the prescribed format of the review involved recording all the document comments on a separate sheet and then sending them back for consideration. Describing where the change/comment applied (e.g. section 1.1, paragraph 4, it states “blah blah blah” but really it should be “something entirely different”; section 2, last paragraph, extraneous apostrophe in PC’s; etc.) is a very labour intensive process for all the reviewers involved – it’s far easier to work through a work document and add comments/tracked changes as required.

Today, I was on the receiving end of some comments on one of my designs and I had the opposite problem – several documents with comments embedded to wade through (and one on a review sheet for good measure… grrr).

The obvious issue with receiving several documents with embedded comments/changes is how to merge all of the separate review comments into one place – and it turns out that’s easily done using Word 2007’s built-in tools for combining and comparing documents (Word 2003 has similar functionality on the Tools menu – Compare and Merge Documents…).

Compare and combine tools in Microsoft Word 2007

Once I had all the review comments merged into a single document (which only took a few seconds), I could track changes, make my edits (the review pane is useful here to jump between comments) and send it back for final sign-off. A few minutes later I had confirmation that the changes were approved, following which I accepted the changes in the document, removed hidden metadata (using the document inspector) and published the document.

It’s all quite straightforward really – the trouble is that most of us still use our office applications in the same way that we did 15 years ago… and, dare I say it, aside from knowledge workers using word processing software on a PC instead of relying on secretarial staff, the basic process probably hasn’t changed much since the days of the typing pool…

Software as a Service – or Software plus Services?

Posted on By Mark Wilson

There’s a lot of media buzz right now about cloud computing – which encompasses both “web 2.0” and Software as a Service (SaaS). Whilst it’s undeniable that web services are becoming increasingly more important, I’ll stand by my comments from a couple of years ago that the “webtop” will not be in mainstream use any time soon and those who are writing about the the death of Microsoft Windows and Office are more than a little premature.

Even so, I was interested to hear Microsoft’s Kevin Sangwell explain the differences between SaaS and the Microsoft idea of software plus services (S+S) during the recent MCS Talks session on infrastructure architecture.

I’ve heard Microsoft executives talk about software plus services but Kevin’s explanation cut’s through the marketing to look at what S+S really means in the context of traditional (on premise) computing and SaaS:

Kevin made the point that there is actually a continuum between on premise and SaaS solutions:

Software delivery continuum and software services taxonomy

  • We all understand the traditional software element – where software is installed an operated in-house (or possibly using a managed service provider).
  • Building block services are about using web services to provide an API to build applications “in the cloud” – so Amazon’s simple storage service (S3) is an example. This gives developers something to hook into and onto which to deliver a solution – for example, Jungle Disk uses the Amazon S3 platform to provide online storage and backup services.
  • Attached services provide self-contained functionality – for example anti-spam filtering of e-mail as it enters (or exits) an organisation.
  • Finished services are those that operate entirely as a web service – with salesforce.com being one, often quoted, example – Google Apps would be another (not that Microsoft are ever likely to promote that one…).

S+S is about creating a real-world hybrid – not just traditional or cloud computing but a combination of software and services – for example an organisation may use a hosted Exchange Server service but they probably still use Microsoft Outlook (or equivalent software) on a PC.

So, would moving IT services off to the cloud make all the associated IT challenges disappear? Almost certainly not! All this would lead to is a disjointed service and lots of unhappy business users. SaaS and S+S do not usually remove IT challenges altogether but they replace them with new ones – typically around service delivery (e.g. managing service level agreements, integrating various operational teams, etc.) and service support (e.g. presenting a coherent service desk with appropriate escalation between multiple service providers and the ability to assess whether a problem relates to internal IT or the hosted service) but also in relation to security (e.g. identity lifecycle management and information rights management).

Kevin has written an article for The [MSDN] Architecture Journal on the implications of software plus services consumption for enterprise IT and, for those who are interested in learning more about S+S, it’s worth a read.

Incorrect side-by-side configuration caused by missing runtime libraries

Posted on By Mark Wilson

Just before the weekend, I was trying to run an application on a 64-bit installation of Windows Server 2008 and was presented with a strange error:

This application has failed to start because its side-by-side configuration is incorrect. Please see the application event log for more details.

I know that side-by-side is something to do with avoiding DLL hell (by not dumping all the DLLs in the same folder with the consequences of one application overwriting another’s libraries) but I didn’t have a clue how to fix it and the application event log didn’t help much:

Log Name: Application
Source: SideBySide
Date: 15/08/2008 18:00:10
Event ID: 33
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: computername.domainname.tld
Description:
Activation context generation failed for “C:\foldername\applicationname.exe”. Dependent Assembly Microsoft.VC90.CRT,processorArchitecture=”x86″,publicKeyToken=”1fc8b3b9a1e18e3b”,type=”win32″,version=”9.0.21022.8″ could not be found. Please use sxstrace.exe for detailed diagnosis.

Thankfully, Junfeng Zhang wrote a comprehensive blog post about diagnosing side by side failures. It’s a bit too developery for me but I did at least manage to follow the instructions to produce myself a sxstrace:

=================
Begin Activation Context Generation.
Input Parameter:
        Flags = 0
        ProcessorArchitecture = AMD64
        CultureFallBacks = en-US;en
        ManifestPath = C:\foldername\applicationname.exe
        AssemblyDirectory = C:\foldername\
        Application Config File =
-----------------
INFO: Parsing Manifest File C:\foldername\applicationname.exe.
        INFO: Manifest Definition Identity is (null).
        INFO: Reference: Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
INFO: Resolving reference Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
        INFO: Resolving reference for ProcessorArchitecture x86.
                INFO: Resolving reference for culture Neutral.
                        INFO: Applying Binding Policy.
                                INFO: No publisher policy found.
                                INFO: No binding policy redirect found.
                        INFO: Begin assembly probing.
                                INFO: Did not find the assembly in WinSxS.
                                INFO: Attempt to probe manifest at C:\Windows\assembly\GAC_32\Microsoft.VC90.CRT\9.0.21022.8__1fc8b3b9a1e18e3b\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT.MANIFEST.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT\Microsoft.VC90.CRT.MANIFEST.
                                INFO: Did not find manifest for culture Neutral.
                        INFO: End assembly probing.
        ERROR: Cannot resolve reference Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
ERROR: Activation Context generation failed.
End Activation Context Generation.

=================
Begin Activation Context Generation.
Input Parameter:
        Flags = 0
        ProcessorArchitecture = Wow32
        CultureFallBacks = en-US;en
        ManifestPath = C:\foldername\applicationname.exe
        AssemblyDirectory = C:\foldername\
        Application Config File =
-----------------
INFO: Parsing Manifest File C:\foldername\applicationname.exe.
        INFO: Manifest Definition Identity is (null).
        INFO: Reference: Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"
INFO: Resolving reference Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
        INFO: Resolving reference for ProcessorArchitecture WOW64.
                INFO: Resolving reference for culture Neutral.
                        INFO: Applying Binding Policy.
                                INFO: No publisher policy found.
                                INFO: No binding policy redirect found.
                        INFO: Begin assembly probing.
                                INFO: Did not find the assembly in WinSxS.
                                INFO: Attempt to probe manifest at C:\Windows\assembly\GAC_32\Microsoft.VC90.CRT\9.0.21022.8__1fc8b3b9a1e18e3b\Microsoft.VC90.CRT.DLL.
                                INFO: Did not find manifest for culture Neutral.
                        INFO: End assembly probing.
        INFO: Resolving reference for ProcessorArchitecture x86.
                INFO: Resolving reference for culture Neutral.
                        INFO: Applying Binding Policy.
                                INFO: No publisher policy found.
                                INFO: No binding policy redirect found.
                        INFO: Begin assembly probing.
                                INFO: Did not find the assembly in WinSxS.
                                INFO: Attempt to probe manifest at C:\Windows\assembly\GAC_32\Microsoft.VC90.CRT\9.0.21022.8__1fc8b3b9a1e18e3b\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT.MANIFEST.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT\Microsoft.VC90.CRT.DLL.
                                INFO: Attempt to probe manifest at C:\foldername\Microsoft.VC90.CRT\Microsoft.VC90.CRT.MANIFEST.
                                INFO: Did not find manifest for culture Neutral.
                        INFO: End assembly probing.
        ERROR: Cannot resolve reference Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8".
ERROR: Activation Context generation failed.
End Activation Context Generation.

I don’t understand most of that trace but I can see that it’s trying to find a bunch of resources named Microsoft.VC90.CRT.* and a search of my system suggests they are missing. Microsoft VC sounds like Visual C++ and v9 would be Visual Studio 2008. Checking back at the original developer’s website, I saw that he suggested to someone else experiencing problems that they might need the Microsoft Visual C++ 2008 redistributable package. I thought that the whole point of having the Microsoft .NET Framework on my PC was so that .NET applications would run, regardless of the language they were developed in (if there are any developers reading this, please feel free to leave a comment on this because I’m out of my depth at this point) but I downloaded the latest x64 version and installed it on my system.

No change (same error).

I realised that I was using the latest (SP1) version (v9.0.30729.17) and perhaps I needed the original one (v9.0.21022) as that’s the version number in the systrace log. So I removed the SP1 version and installed the original redistributable package instead.

Still no change.

I had the C++ source code, so I considered recompiling the application but I found that there was no compiler on my system (unlike for C#) and so I needed to install one of the Visual Studio Express Editions and would take a while. So I thought about other options.

It turned out that, even though I was running on 64-bit Windows, I needed to install a 32-bit redistributable. Don’t ask me why (that’s another developer question – the references to GAC_32 and Win32 in the sxstrace probably provide a clue) but it worked – and it didn’t matter whether I used the original or the SP1 version of the Microsoft Visual C++ 2008 redistributable package (so I used SP1).

Now the application runs as expected. It’s got me thinking though… I really should learn something about .NET development!

Setting up a digital photography workflow: preferences for Adobe Bridge, Camera Raw and Photoshop CS3

Posted on By Mark Wilson

A couple of weeks back, I wrote about Adobe Photoshop CS3 from a photographer’s perspective and in this post I’ll outline some of the application preferences for Bridge (CS3), Camera Raw (4.x) and Photoshop (CS3) that may be useful when setting up a digital photography workflow (with thanks to David Tunnicliffe, who originally provided me with the bulk of this information):

  • In general (at an operating system level):
    • Add some memory (noting that each PC or Mac will have a limit in the maximum amount of memory it can support and that 32-bit operating systems can only access approximately 3.2GB).
    • Resist the temptation to compress hard disk drives – disks are relatively inexpensive and the available storage capacity is increasing rapidly.
  • Bridge (CS3: my installation is at v2.0.0.975; some extra information here relating to features introduced at v2.1):
    • General: adjust the background colour – dark grey will generally provide a non-distractive background; if Bridge is to be used for importing images when a camera is connected, select the appropriate checkbox under Behavior; remove items from the Favorites list that will not be used (e.g. Start Meeting).
    • Thumbnails: enable Adobe Camera Raw for JPEG and TIFF file handling; 400MB is the default maximum file size for the creation of thumbnails and should be more than enough for most photographers (unless they scan images at very high resolutions); high quality thumbnails can be useful; however conversion on preview is an intensive operation and should be avoided.
    • Playback: few photographers will be interested in media playback options (new in v2.1 – not present in v2.0).
    • Metadata: select/deselect as required – few photographers will need audio, video, or DICOM; GPS is becoming more relevant with the advent of location-based services.
    • Labels: edit the description to match the colour coding system in use – together with ratings, these can be useful for sorting.
    • Keywords: Can be used to build a hierarchy of keywords (new in v2.1 – not present in v2.0).
    • File type associations: edit if required to change the application that is associated with a given file type. Generally, these may be left at their defaults/
    • Cache: Clear the cache if problems are experienced with thumbnails (new in v2.1 – not present in v2.0).
    • Inspector: not really relevant unless using Adobe VersionCue to manage workflow.
    • Startup Scripts: these can be disabled if not used but I have left them at the default settings (removing scripts will accelerate application load times).
    • Advanced: this is the place to clear the cache if there are issues with thumbnail display; international settings for language and keyboard are also set here; software rendering should be avoided if there is suitable graphics hardware available to do the work instead.
    • Adobe Stock Photos: probably of limited use to people who would like to sell their work! In fact, the service was discontinued in April 2008 and can be uninstalled from Bridge.
    • Meetings: Only relevant with Adobe Acrobat Connect.
  • Camera Raw (my installation has been updated to v4.5.0.175; the version originally shipped with my copy of Photoshop CS3 was v4.0):
    • Preferences (available in other Photoshop applications whilst loaded): save image settings in sidecar (.XMP) files; apply sharpening to preview images only; Camera Raw cache defaults to 1GB and can be purged if issues are experienced; JPEG and TIFF handling selected (not available in v4.0).
    • Main interface: ensure Preview is selected.
    • Workflow options (link at the bottom of the ACR window): Adobe RGB (1998) is probably the best colour space for most photographers (Sean T. McHugh explains more about the comparison between sRGB and Adobe RGB 1998); use 16-bits per channel; use size and resolution to upscale (for better results than applying interpolation in Photoshop).
  • Photoshop (CS3: v10.0):
    • General: Color picker should be set to Adobe; Image interpolation should be selected according to purpose but bicubic smoother is probably the most useful for photographers.
    • Interface: Select remember palette locations.
    • File handling: select the prefer Adobe Camera Raw for filetype options if you want to open JPEG or RAW files in Adobe Camera Raw (recommended); increase the length of the recent file list if required; disable version cue if not required.
    • Performance: Photoshop is memory hungry but don’t let it take more than 70% of the available RAM (that is the default) – use the ideal range as a guide; adjust scratch disk settings if you have multiple disks available; enable 3D acceleration if supported by the GPU; increase the number of history states if possible.
    • Transparency and Gamut: ensure opacity is set to 100% (default setting).
    • Units and rulers: minimum print resolution for new documents should be 300ppi (72ppi is fine for screen).
    • Plug-ins: this is only relevant if you have plug-ins for an old version of Photoshop or in a strange location.
    • Cursors; Guides, Grid, Slices and Count; Type: Nothing to change.

Of course, this is just scraping the surface – these applications alone are probably not the complete workflow and each of them offers far more functionality than most photographers will require. If you’re using the CS3 applications for graphic design work, then you’ll probably have a totally different setup.

In case the UK Government’s record on IT wasn’t already bad enough…

Posted on By Mark Wilson

I’m not sure how I missed this one, but the UK Government‘s latest public relations stunt is the Prime Minister’s blog. Yes, that’s right – since Monday, Gordon Brown has been blogging at Number10.gov.uk (for those outside the UK, number 10 Downing Street is the traditional London home and office for the Prime Minister of the day – and in case you hadn’t noticed, Tony Blair got out while the going was reasonably good and left the former Chancellor as a caretaker PM until the next election… [sorry, nearly broke my own golden rule for no politics on this blog there]).

Given this administration’s record on matters of an IT nature, I would hope they had better things to do (of course, the PM is not churning this stuff out himself). With Twitter, Flickr, and YouTube feeds (as well as the Brightcove-based Number 10 TV) he wouldn’t have much time left to run the country [on second thoughts, maybe that is what he is doing… it would explain a lot about the state of the nation…].

Of course the site is, at worst, a thinly veiled PR exercise and, at best, an attempt to engage an increasingly disillusioned electorate in discussion with the Government of the day. After all, the standard response to most e-petitions seems to be a condescending e-mail from the appropriate department which can usually be paraphrased as “yeah, yeah, we heard you but we’re still going to carry on regardless”.

Still, at least they’re using WordPress as their CMS (albeit without any kind of acknowledgement)!

Windows 7 blog launched

Posted on By Mark Wilson

After a year of speculation about what will, or won’t, be included in the next version of Windows, it looks like Microsoft might be getting ready to tell us a bit more. Yesterday they launched a new blog called Engineering Windows 7 (thanks to Dave Saxon for alerting me). As the title suggests, it’s all about putting together the next version of Windows and is probably worth keeping an eye on.

So, you want to be an infrastructure architect?

Posted on By Mark Wilson

Over the years I’ve had various jobs which have been basically the same role but with different job titles. Officially, I’ve been a Consultant, Senior Consultant, Project Manager, Senior Technical Consultant, Senior Customer Solution Architect (which would have been a Principal Consultant in the same organisation a few years earlier but management swapped the “architect” word for a drop in implied seniority) but if you ask me what I am, I tend to say I’m an infrastructure architect.

Issue 15 of The [MSDN] Architecture Journal included an article about becoming an architect in a systems integrator. I read this with interest, as that’s basically what I do for a living (believe me, I enjoy writing about technology but it will be a long while before I can give up my day job)!

The Architecture Journal tends to have an application focus (which is only natural – after all, it is produced by developer-focused group in a software company) and I don’t know much about application development but I do know how to put together IT solutions using common off the shelf (COTS) applications. I tend to work mostly with Microsoft products but I’ve made it my business to learn about the alternatives (which is why I’m a VMware Certified Professional and an Red Hat Certified Technician). Even so, I’m stuck at a crossroads. I’m passionate about technology – I really like to use it to solve problems – but I work for a managed services company (an outsourcer in common parlance) where we deliver solutions in the form of services and bespoke technology solutions are not encouraged. It seems that, if I want to progress in my current organisation, I’m under more and more pressure to leave my technical acumen behind and concentrate on the some of the other architect’s competencies.

Architect competencies

I’m passionate about technology – I really like to use it to solve problems

I understand that IT architecture is about far more than just technology. That’s why I gained a project management qualification (since lapsed, but the skills are still there) and, over the years, I’ve developed some of the softer skills too – some which can be learnt (like listening and communications skills) – others of which only come with experience. I think it’s important to be able to dive into the technology when required (which, incidentally, I find helps to earn the respect of your team and then assists with the leadership part of the architect’s role) but just as important to be able to rise up and take a holistic view of the overall solution. I know that I’m not alone in my belief that many of the architects joining our company are too detached from technology to truly understand what it can do to address customers’ business problems.

Architect roles
OK, so I’m a solutions architect who can still geek out when the need arises. I’m still a way off becoming an enterprise architect – but do I really need to leave behind my technical skills (after having already dumped specialist knowledge in favour of breadth)? Surely there is a role for senior technologists? Or have I hit a glass ceiling, at just 36 years of age?

I’m hoping not – and that’s why I’m interested in the series of webcasts that Microsoft Consulting Services are running over the next few months – MCS Talks: Enterprise Architecture. Session 1 looked at infrastructure architecture (a recorded version of the first session is available) and future sessions will examine:

  • Core infrastructure.
  • Messaging.
  • Security and PKI.
  • Identify and access management.
  • Desktop deployment.
  • Configuration management.
  • Operations management.
  • SharePoint.
  • Application virtualisation.

As should be expected, being delivered by Microsoft consultants, the sessions are Microsoft product-heavy (even the session titles give that much away); however the intention of the series is to connect business challenges with technology solutions and the Microsoft products mentioned could be replaced with alternatives from an other vendors. More details on the series can be found on the MCS Talks blog.

This might not appeal to true enterprise architects but for those of us who work in the solution or technical architecture space, this looks like it may well be worth an hour or so of our time each fortnight for the rest of the year. At the very least it should help to increase breadth of knowledge around Microsoft infrastructure products.

And, of course, I’ll be spouting forth with my own edited highlights on this blog.