RSS

Tag Archives: IaaS

Don’t be Jimbo

24 Jul

Jimbo had a small IT firm for which he provided backup, security, and hosting for two clients.  He also purchased Office 365 licenses for a handful of users directly from the Microsoft Office 365 website and would bill them accordingly.  Jimbo also had an application he tried to develop to help end users better communicate with one another. It was similar to SharePoint, but more seamless and had better integration with third-party applications.  He had a SPLA, and had one person who submitted their usage report to their reseller.  Unfortunately, that person got sick and passed away.  Jimbo was sad and so was the rest of the staff.

To put his mind at ease, he spent every waking hour improving his application.  He thought it was going to be the next best thing.  I experienced the application firsthand myself, and found it to be a powerful tool.  I even asked to invest in it, but without any money, (Mrs. SPLA Man spent it all at Target), I had nothing to invest with.

Fast forward a year later.  Jimbo is still working on improving the application, and he's still hosting.  One day, Jimbo received an email from Microsoft.  It was titled “Self-Audit”, Jimbo was getting audited.  One thing left unmentioned, Jimbo is the nicest guy on the planet. He replied to Microsoft and in the end, provided them with everything.  All his server information, customer name, and reporting history.  It was an auditor’s dream.

Several weeks later, Microsoft provided Jimbo with the findings.  He owed $450,000 in unreported licensing fees.  Why so high?  No usage was being reported since the lady who reported SPLA passed away.  When she was reporting, she reported the wrong thing.  Instead of licensing Windows Datacenter, she reported Standard.  Instead of reporting physical processors and/or cores, she reported per VM.  Everything was a mess.  Jimbo, who neglected his hosting practice for months to focus on his application, was left feeling very uncertain about his future.  He did not have the funds to pay for licenses.

It’s unfortunate, but Jimbo had to shut down his hosting business.  The application he built?  Stopped.  He tried to sell it, and last I heard very few were interested.

Why such a depressing story and was it true?  Yes, the story is true (although slightly embellished).  Why share it?  I am telling you the story because there are too many organizations doing the same thing.  They have one person who manages the licenses, one person who was in contact with the reseller, and one person who knew what they were reporting.  What happens if that person leaves?  Too many organizations are also buying Office 365, but not getting the best discount.

Licensing is challenging, and in the case of Jimbo, his love wasn’t reporting usage, it was developing an application.  He should have had allocated resources to help manage his SPLA, so he could focus on what he knows best, the technology.

I am always asked why I created splalicensing.com and what's so different about SPLA Man than other blogs.  I think the main difference is honesty.  I am your licensing Siri or Alexa.  I am SPLAlexa. (that was bad).  Don’t be Jimbo.

Thanks for reading,

SPLA Man/SPLAlexa

 

 

 

 

 

 

 

 
Leave a comment

Posted by on July 24, 2017 in Compliance

 

Tags: , , , , , , , , , , , , , , , , , ,

VDI Under SPLA? Maybe it’s possible after all – Multitenant Hosting Rights for Windows 10

12 Jul

Good news for those who have customers who want you to host Windows 10 in your shared cloud environment –  they might now have that as an option.  Microsoft recently announced “Multitenant Hosting Rights for Windows 10.  You can read the announcement here 

We also created a new website called MSCloudlicensing to help SPLA and CSP partners understand the different program options and use rights available to them. The new website is www.mscloudlicensing.com it’s designed to be a collaborative platform that includes a forum to ask and answer licensing questions, document library, and licensing articles.  Check it out, it’s free.

What is it?

Allows customers who purchased qualified Windows 10 licenses the ability transfer those licenses over to a Qualified Multi-Tenant Hoster shared datacenter environment.

Why is this important?

For years SPLA partners have asked for VDI in SPLA.  Although this is not technically VDI in SPLA, is does provide an avenue to implement a virtual desktop session from your shared server environment.  At the end of the day, it gives your end customers deployment options.

Can I still license Windows Desktop in SPLA?

No.  Windows desktop licenses were removed last year.  You can read/download the lease agreement that outlines the details here

What are the requirements?

To no surprise, the SPLA partner must be CSP Tier 1 authorized.  They must also sign the Qualified Multitenant Hoster addendum and have an active SPLA with Microsoft.  To get the QMH (another Microsoft acronym) you can contact info@splalicensing.com or your Microsoft Reseller.

What happens if I offer dedicated environments?  Do I still need the addendum?

No.  If it is 100% dedicated (isolated hardware) you can always transfer end customer  licenses over to your datacenter environment.  Whenever it is shared – VM or hardware, you must consider SPLA or in this case the QMH addendum)

When is it available?

Program will be available August 1, 2017 for VL and September 6, 2017 to transact in CSP.

Can I bundle my customers Office solution they purchased as well as Windows 10 to offer a complete VDI experience?

Yes.  This is a great way to bundle different desktop applications.

Conclusion 

If you provide IaaS to your customers, this is definitely something you should consider.  Any time you can offer your customers the ability to leverage existing investments the better.  Azure is not going away.  In fact, you don’t have to be QMTH authorized to leverage Azure as your datacenter provider.  Please review the announcement, there will be a lot more information on this in the coming days.  I will also write out several scenarios to make this more simple.  As always, you can email me at info@splalciensing.com

Thanks for reading,

SPLA Man

 

 

 
2 Comments

Posted by on July 12, 2017 in Office 365

 

Tags: , , , , , , , , , , , , , , , , , ,

IaaS Gotchas…

31 Jan

In this post I will highlight new (and not so new) compliance gotchas as it pertains to providing infrastructure as a service.

Let’s start with a common example and go from there.  You provide the infrastructure such as Windows/SQL, your customer provides the applications.  Sound familiar?  You license Windows Datacenter, SQL Enterprise in a shared (aka public cloud) environment under SPLA. You have no idea or really care what applications your customer’s are installing right?  You just provide the support of the infrastructure.  That’s not your concern.  It’s their application, why should you care?  Ahhh…but maybe you should.

Have you ever wondered how they’re accessing the applications?  Are all applications web-based?  I will answer that question for you…no.  So how are they accessing the applications?  Do they use Citrix?  Do they remote into the application somehow?  There’s that word…remote.

If you enable the Remote Desktop Services role within Windows Server – you guessed it…you need to report RDS licenses.  The number of IaaS providers who just report Windows and SQL is astronomical. The number of IaaS providers now reporting RDS is also rapidly growing.  Did they wake up one day and decide they should start reporting RDS?  Unfortunately no.  They were audited.  Shoot me over an email and I will forward the guide that explains RDS and when it applies. Remember when you license RDS, you need to license each user that HAS access to RDS – not who does access.

Let me provide an example of how easily you could be underreporting RDS.   Let’s say your customer has an application from another vendor (outside Microsoft) that’s hosted in your datacenter.  That same vendor provides support to the application.  You are not hosting the application for the vendor but for your customer, you just provide the vendor access to support the application via remote connection.  SPLA allows 20 users to provide support and administration per datacenter.  If you exceed that limit, you are going to have to report those additional users.  Yes, even if you are not charging them.

Other IaaS Gotchas –

While we’re on the topic of customer owned applications, do you have it written in your agreement with the customer that you are not responsible for the applications they install?  What would happen if they install applications that you are not aware of and they don’t have the appropriate licenses…who’s responsible you or the end customer?  Kind of a trick question, it’s both.  You will get audited, it’s installed in your datacenter, you are ultimately responsible.  You need to ensure you have it written in your agreement that you’re not responsible so you can have a nice chat with your customer.  All the big boys do it…you should too.

What about SQL?  Are you virtualizing?  Why aren’t you reporting SQL Enterprise?  Are you utilizing all the use rights that come with SQL Enterprise – unlimited virtualization, DR, mobility within server farms, etc?  What about smaller environments?  Have you considered licensing by user instead of by core for SQL Standard edition?

SQL Web is tempting isn’t it?  Less expensive option but no one really understands what it is.   Here’s a quick synopsis – if you do not host public facing websites, SQL Web is not an option.

How are you managing your datacenter? Do you have System Center installed?  You should report the Core Infrastructure Suite.  Running Hyper V with few VM’s, license CPS. Both products include Windows.  You need Windows to run System Center, so you kill two birds with one stone so to speak.

Ask your customers if they have Software Assurance.  It’s no longer about latest version rights and annual payments.  It’s about moving to the cloud.  Let’s make sure it’s your cloud and not someone else’s.

Conclusion –

I’ve been around this game of SPLA for a long time.  The best advice I can give is to listen to your customers and don’t be afraid to change.  Cloud is evolving, you should evolve too.  Don’t report out of convenience, look into ways you can optimize what you are reporting.  It’s competitive out there, let’s make sure you are getting the most value out of your agreement.

Thanks for reading,

SPLA Man

 

 

 
11 Comments

Posted by on January 31, 2015 in IaaS

 

Tags: , , , , , , , , , , , , , , , , , ,

Hybrid, Dedicated, and Shared Scenarios…

27 Aug

There are three deployment options for service providers – Hybrid (mix of on premise and cloud) Dedicated, and Shared.  In this article, we will break each one down to explain how they work and the options available.

Dedicated Scenario – (3 options available)

Option 1
Your customer decides to bring their own software (such as Exchange) and infrastructure (Windows) via their own volume licensing agreement. They do not have software assurance on the software. Can they do this?

Yes. Why? Everything is dedicated. Server, virtual machine all dedicated to one single organization. Software Assurance is NOT required.

Option 2
Your customer decides to bring the software but the hoster will provide the infrastructure in a dedicated environment. Again, customer does not need Software Assurance if it’s a dedicated environment. In this scenario, the hoster (you) will provide the Windows license via SPLA and not report the other applications the customer brings over since it is already covered via their own volume licensing agreement. This is applicable, it’s dedicated (VM and physical servers)

Option 3
Your customer is a healthcare company that needs a dedicated environment due to regulatory compliance. They do not own any software; they would need the hoster to supply the software licenses. Can they (the hoster) do this? Yes, the hoster would report everything under SPLA. The hoster (you) CANNOT use your own volume licensing agreement to provide the solution but you can certainly provide SPLA. Please be aware that if you own a volume licensing agreement, you cannot use the same hardware your volume licensing agreement resides as your hosted solution.

Also keep in mind that SPLA is non perpetual, when the customer leaves, they can no longer use the software they were accessing.

Summary of Dedicated –
Dedicated is applicable for both SPLA and end customer owned volume licensing. Dedicated also means dedicated hardware and dedicated VM’s. In dedicated environments, the end customer DOES NOT need software assurance. From a compliance perspective, it is defined as the following:

“Any hardware running an instance of Microsoft software (OS or application) must be dedicated to a single customer. For example, a SAN device that is not running any Microsoft software may be shared by more than one customer; since, a server or SAN device that runs Microsoft software may only be used by one customer.” (source: Microsoft VDA FAQ)

Hybrid Scenarios – 3 options available

Option 1
You decide to offer your customer a shared infrastructure but they want the same applications to run on premise. A good option would be to have the customer purchase the server applications (think Exchange, SharePoint, Lync) with software assurance (SA) and run them on premise. You (the service provider) would run the same applications in your shared environment BUT report the SAL for SA SKU. Much cheaper option than standard SPLA prices. I wrote about this here This also works well for Disaster Recovery options.

Option 2 (not really a hybrid but just go with it)
You can use license mobility. Microsoft likes to define this as a “hybrid option” but to me, hybrid insinuates the ability to run on premise and in your cloud. License mobility is a SA benefit for certain applications (SQL, CRM, SharePoint, Exchange, Lync) that allows customers to leverage their investment in SA and transfer those licenses into a hosters shared infrastructure. Reason why I don’t think this is truly a hybrid is the customer is TRANSFERRING licenses into your datacenter. This means that if a customer wants to move back to their own datacenter, they have to wait 90 days. (transfer license rule). With SAL for SA, nothing is being transferred. Windows does not have mobility rights, this will need to be reported under your own SPLA. I wrote about license mobility many times – here’s an article for your review – here You can also check out the Microsoft site for more of a definitive definition http://www.microsoft.com/licensing/software-assurance/license-mobility.aspx

Option 3
Good Ole’ SPLA. Customer can run their own servers on premise, you just report SPLA licensing in your shared environment. The new SPLA agreement even allows you to run SPLA software on customer owned hardware as long as you still manage it.

Shared Scenarios – 2 options

Option 1
License Mobility – see above

Option 2
SPLA. We all know what that is.

Summary

I hope this brings a bit more clarity. Sorry if some things are redundant but at the same time, some things are simply worth repeating. Here’s the takeaway – customer’s can always bring licenses into your datacenter. There is no law of the land that prohibits this. What is prohibited is the way you deploy the technology. There is only one option to install customer owned licenses in a shared environment and that is license mobility. Again, (here I go being repetitive) if Microsoft allowed customer owned licenses to be installed in shared environments than why would they create license mobility?

If you still have trouble comprehending all this, shoot me an email located at the top right of this page. One general rule of thumb – if it’s shared – 90% of the time SPLA is required.

Thanks for reading

SPLA Man

 
15 Comments

Posted by on August 27, 2014 in Compliance, License Mobility

 

Tags: , , , , , , , ,

It’s a bird…it’s a plane…it’s VDI and SPLA!!!

13 Aug

We have all been there. You see an email come across in the subject line that you’ve seen before. You release a loud sigh, because you already know the response to the email before you even open it. How? Well you’ve been asked the same question before on numerous occcassions and give the same response. For me in particular, the subject in the email is “SPLA and VDI”  It’s not frustrating, it’s just I hate saying “no”  (just ask my son – a bit spoiled I admit)

I try to write about different topics, but I also like to give updates and understanding to various topics that really hit home; VDI is one of them. You can read my previous article here  In this post, I will break VDI into two parts: defining VDI and moving forward.

Definition

What is a virtual desktop in the licensing world? You should think about virtual desktop as a software assurance benefit. Like license mobility, software assurance is required. Unlike license mobility, there is no option to install in shared infrastructure. Let me repeat – no option to install in shared infrastructure. One more time…no option to install in shared infrastructure. What are the options?

Since VDI/VDA is a software assurance benefit, your customer must purchase their desktop OS with software assurance to have VDI rights. That means if they did not purchase with software assurance, there is no option for them to use virtual desktops from a true licensing perspective. What if the machine is a dummy terminal with no software assurance option available? The end-user would be required to purchase a VDA license for each device. VDA license is kind of like a device CAL, it just provides the user access to a virtual instance. If your customer has not purchased VDA or software assurance on the OS, they need to reconsider if they want a virtual desktop.

Some service providers are under the impression that they can sell a desktop OS perpetually to the customer and host it for them in a dedicated environment. They have the dedicated environment part right, but an OS sold to an end-user does not grant that end-user access to a virtual desktop without software assurance (SA). Secondly, you have to be an authorized reseller to sell perpetual licenses (non SPLA) to consumers. Third, you cannot buy a Windows desktop license yourself and host it to third parties. Anything you buy outside of SPLA is for your internal employees only. Last, not only should you not buy licenses and host, but do not install on servers that is also used for your internal use. That is a big compliance headache.  Where is it written that you cannot host on servers internal employees are also accessing?  It’s not.  That’s what makes it a headache.  Just don’t shoot the messenger!

So why can’t the end-user just go to Best Buy or some other retailer, purchase a retail copy, have you (the service provider) host it for them? That not only is a compliance risk, it is also not very economical. Download the FAQ guide here

Moving Forward

What are your options?  The good news is Azure, AWS, and all the others have the same rules.  They cannot offer desktop OS in the public cloud.  This is probably the best FAQ guide I’ve read around Azure and it applies really to all IaaS providers.  Check it out here

What you can do is offer Windows Server to emulate a desktop using RDS.  I get it, not the same thing but I think it is a more of a compelling solution from a cost perspective (and be compliant).  Dedicating a physical server and virtual server is not always the most profitable solution.  I’ve said this before, I think the bigger issue is Office.  RDS now has mobility rights, I think Office should too.

My Opinion

If I was a service provider, I would work with someone who is an expert in SPLA based licensing and an expert in software assurance benefits.  As you can see from my previous posts and with VDI, software assurance is a requirement for most cloud based licensing solutions.  In years past, SA (Software Assurance) was only leveraged for organizations that wanted the latest version on software and pay annually for the licenses under their agreement.  The “cloud” has changed that.  Fast forward to today and customers want to move to the cloud but leverage their existing licenses.  Have you been asked that before?  How do they accomplish that?  The answer is Software Assurance.  They need SA to use license mobility, they need SA for VDI, they need SA for hybrid scenarios such as the SAL for SA SKU’s, and they still  need SA for latest version rights and pay annually.  If I was a Microsoft shareholder, I would applaud that move.  It’s a way to add additional revenue on top of the licenses they purchased all the while giving customers the benefits they are after.

So if you ask, “why does Microsoft not allow VDI in a shared environment?”  My answer is “why would they?”

Thanks for reading,

SPLA Man

 
2 Comments

Posted by on August 13, 2014 in VDI

 

Tags: , , , , , , , , , , ,

Datacenter Outsourcing

07 Aug

I’ve written before on how partnering with an established provider can save you money, especially as a short term solution to get your hosting business started.  What I haven’t really addressed is the licensing.

Data Center Outsourcing is essentially what the name applies.  “Data Center” and “Outsourcing”; you outsource your data center. Amazing how that works.  Microsoft definition is a bit more confusing – amazing how that works too. From the outsourcing guide:

  1. “A Data Center Provider is a Service Provider that provides Software Services, usually IaaS, to another Service Provider using Products licensed from Microsoft through its own SPLA..”

Microsoft Azure is a good example of a data center outsourcing company.  When you sign up for Azure, Windows will be included in the service.  They are essentially providing the infrastructure (Windows and/or SQL cores) and you provide the application licenses via your own SPLA.  When you leverage another service provider who provides the infrastructure, they must be providing the Windows licenses. Hmmm…here’s why.

Let’s say you have a signed SPLA agreement to offer Exchange to your clients and you decide to use Brett’s Hosting to provide the infrastructure.  Brett’s Hosting offers a public cloud environment (multiple customers sharing same resources).  Under this model, you will report Exchange licenses for each user that HAS access to the software and NOT report Windows under your own SPLA; Brett’s Hosting would report Windows via their own SPLA.  Why?  If it is a shared environment, there is no way Brett’s Hosting can allocate processors for you to report it.  SQL cores works the same way.  Still don’t believe me?  Check out the FAQ guide from Azure here. Notice under SQL it states you can purchase a VM or use SAL licenses.  Notice under Windows it states Windows is included with your agreement.

Here’s the bottom line, if you decide to outsource your data center to a public cloud provider, ask them how they manage the Windows OS.  If they say it is not included in the cost of the service and you should be providing the licenses, they are out of compliant.

Want more proof?  Download the outsourcing guide here

That being said, if you provide data center outsourcing services, I think you are in the right business. This is the fastest growing area within the hosting industry.  Windows is relatively inexpensive from a licensing perspective, especially as you add more VM’s and can capitalize on the Data Center edition.  (remember…unlimited VM’s).  SQL can get a bit more complex, but if you understand it I think that could be an added value over your competition.  Last, because you report Windows and SQL only and let the service provider control the user based licensing; it limits your compliance exposure.  (processors/cores are easier to track).

So are you a data center outsource or a service provider?  Do you work with someone to resell your solution or do it alone?  Would love to learn more about your offerings. If you need guidance or best practices or just want a second opinion from a licensing perspective you can email me at blaforge@splalicensing.com.

Thanks for reading,

SPLA Man

 
1 Comment

Posted by on August 7, 2014 in Data Center Outsourcing

 

Tags: , , , , , , , , , , , , , , , , , , ,