SAP NetWeaver Operations Guide

This guide provides an overview of how to manage IT ops for a running SAP NetWeaver system on Compute Engine. This guide does not cover the specifics of managing the SAP NetWeaver product. Google Cloud is certified for running SAP NetWeaver application servers ABAP and Java, and SAP products based on these application server stacks.

To learn how to operate your deployment of SAP NetWeaver, see the SAP NetWeaver Master Guide.
To learn how to plan your deployment of SAP NetWeaver, see the SAP NetWeaver on Google Cloud Planning Guide and the SAP NetWeaver Master Guide.
To learn how to deploy and prepare Google Cloud resources for an SAP NetWeaver system, see the deployment guide for your operating system:
- SAP NetWeaver on Linux Deployment Guide
- SAP NetWeaver on Windows Deployment Guide

Managing Compute Engine VM instances

This section shows how to perform administrative tasks typically required to operate SAP NetWeaver on Compute Engine, including information about starting and stopping systems.

Managing VM lifetime

This section provides information about how to manage the running state of your Compute Engine VMs.

Maintaining VM availability

Compute Engine offers availability policies that determine how a VM behaves during certain infrastructure-related events. For VM instances in your SAP NetWeaver implementation, it is important that you do not disable the following features:

Live migrate, which enables Compute Engine to keep your instance running when responding to an infrastructure maintenance event.
Automatic restart, which enables Compute Engine to restart your instance in the event of an instance crash. Note that the SAP system does not automatically restart.

Stopping a VM

You can stop one or multiple SAP NetWeaver hosts at any time; stopping a VM instance shuts down the instance. If the shutdown doesn't complete within 2 minutes, the instance is forced to halt. As a best practice, you should first stop SAP NetWeaver before you stop the instance.

Stopping a VM causes Compute Engine to send the ACPI power-off signal to the VM instance. After it is stopped, you are not billed for the VM instance.

If you have persistent disks attached to the VM, the disks are not deleted and you continue to be charged for them. If the data in the persistent disk is important, you can either:

Keep the disk.
Create a snapshot of the persistent disk and then delete the disk. This option can help you save on costs. You can create another disk from the snapshot when you need the data again.

To stop a VM:

In the Google Cloud console, navigate to the:

VM INSTANCES PAGE
Select one or more instances that you want to stop.
At the top of the VM instances page, click STOP.

For alternatives and more information, see Stopping an instance.

Restarting a VM

To restart a VM:

In the Google Cloud console, navigate to the:

VM INSTANCES PAGE
Select the instances that you want to restart.
At the top right-hand of the page, click START.

For alternatives and more information, see Restarting an instance.

Modifying a VM

You can change various attributes of a VM, including the VM type, after the VM is deployed. Some changes might require you to restore your SAP system from backups, while others only require you to restart the VM.

For more information, see Modifying VM configurations for SAP systems.

Capturing system state

This section describes scenarios that require saving the state of your system, and the Compute Engine features that you can use for these purposes.

Using snapshots

You can create a snapshot of a persistent disk at any time to generate a point-in-time copy of the disk state. Compute Engine stores multiple copies of each snapshot, across multiple locations, with automatic checksums to ensure the integrity of your data.

Snapshots are useful for the following use cases:

Use case	Details
Migrate to a different type of storage.	You can use snapshots to move a persistent disk from one disk type, standard or SSD, to the other type. See Restoring a snapshot to a different disktype in the Compute Engine documentation.
Migrate SAP NetWeaver to another zone.	You can use snapshots to move your SAP NetWeaver system from one zone to another zone in the same region, or even from one region to another region. See Moving VMs between regions and zones.
Provide an easy, software-independent, and cost-effective backup solution.	Back up your attached persistent disks by using snapshots. You can back up your root disk and SAP NetWeaver installed binaries. Snapshots can be useful for taking backups of your database systems. However, depending on your implementation, you might want to use a different approach. For guidance about how to back up and restore databases, see the guides listed in Database operations.

To obtain a consistent snapshot, you must either stop SAP NetWeaver or stop the database from writing to the file system.

To create a snapshot, follow the Compute Engine instructions for creating snapshots. Pay careful attention to the preparation steps, such as flushing the disk buffers to disk, to make sure that the snapshot is consistent.

Creating images

To capture the state of a boot disk, you can create a custom image. An image is different from a backup because you use an image to create new VM instances that are based on a single, source VM.

When you followed the SAP NetWeaver on Google Cloud Deployment Guide, you should have created one or more images at the end of the deployment steps. However, you might want to create new images after you make important changes to the system, such as installing an update of SAP NetWeaver binaries or upgrading the SAP NetWeaver version.

For instructions, see:

Creating, Deleting, and Deprecating Custom Images, for Linux-based systems.
Creating a Windows image, for Windows-based systems.

Moving VMs between regions and zones

Compute Engine enables you to move VMs between zones in the same region and zones in different regions. You might want to move a VM if, for example, a new region or zone becomes available that would give you better performance, or if a zone becomes deprecated.

The Compute Engine documentation contains detailed instructions about how to move your VM to another zone.

Here are considerations for SAP NetWeaver:

SAP can run only in certain zones because of machine-type restrictions. See the SAP NetWeaver on Google Cloud Planning Guide for details.
Migrating the VM causes the VM's ID to change. This change triggers an SAP HW Key change, which requires you to import a new SAP license.
You can use the same hostname in the new zone, if it isn't already in use. If the hostname changes, you need to use the generic operations feature of SAP's SWPM to run a rename operation to change the SAP NetWeaver hostname.

Database operations

This section provides resources for managing the following database servers on Google Cloud:

SAP HANA
SAP ASE
IBM Db2 for Linux, UNIX and Windows (IBM Db2)
Microsoft SQL Server

SAP HANA operations

For more information about running SAP HANA on Google Cloud, see the SAP HANA on Google Cloud Operations Guide. That guide provides you with lots of details about administration, backup and recovery, security, networking, and other topics.

SAP ASE operations

For more information about using SAP ASE, see SAP Adaptive Server Enterprise.

IBM Db2 operations

For more information about using IBM Db2 with SAP, see SAP on IBM Db2 for Linux, UNIX and Windows.

Microsoft SQL Server operations

The following resources provide details about how to run Microsoft SQL Server on Google Cloud:

Resource	Description
Best Practices for Microsoft SQL Server	Learn how to configure Microsoft SQL Server for stability and performance on Compute Engine. Note the following important differences in best practices for SAP systems: Do not use local SSD drives. Use persistent disk SSDs, instead. For parallel query processing, set the max degree of parallelism to 1, not 8. The transaction log setting must be "FULL" for Microsoft SQL Server databases in production systems. Do not use the buffer pool extension feature.
Load Testing Microsoft SQL Server Using HammerDB	This tutorial shows how to use HammerDB to perform load testing on a Compute Engine Microsoft SQL Server instance.

Resource

Description

Best Practices for Microsoft SQL Server

Learn how to configure Microsoft SQL Server for stability and performance on Compute Engine.

Note the following important differences in best practices for SAP systems:

Do not use local SSD drives. Use persistent disk SSDs, instead.
For parallel query processing, set the max degree of parallelism to 1, not 8.
The transaction log setting must be "FULL" for Microsoft SQL Server databases in production systems.
Do not use the buffer pool extension feature.

Load Testing Microsoft SQL Server Using HammerDB

This tutorial shows how to use HammerDB to perform load testing on a Compute Engine Microsoft SQL Server instance.

IAM operations

Controlling access to Google Cloud resources is a critical part of securing and operating your deployment. While SAP provides its own user-management system, Google Cloud's Identity and Access Management (IAM) provides unified control over permissions for Google Cloud resources. You can manage access control by defining who has what access for resources. For example, you can control who can perform control-plane operations on your SAP instances such as creating and modifying VMs, persistent disks, and networking.

For an overview of IAM in Compute Engine, see Access Control Options.

Managing team members

From time to time, you will want to add or remove team members from your project or change their permission levels. For details about how to manage team members, see Add, Remove Team Members, and Change Permissions.

IAM roles are key to granting permissions to users. For a reference about roles and which permissions they provide, see Identity and Access Management Roles.

Managing SSH keys

By default, Compute Engine automatically manages SSH keys. If you have decided to manage your own SSH keys, you need to add and remove keys from time to time during your normal operations. For detailed steps, see Adding and Removing SSH Keys.

Managing service accounts

IAM's service accounts provide a way for you to give permissions to applications and services. It's important to understand how service accounts work in Compute Engine.

If a service account is assigned to a Compute Engine VM, that service account is the default service account for the applications that run on that VM. Any application that uses the VM service account inherits the IAM roles and permissions that are granted to the VM service account.

For more information, see Identity and access management for SAP programs on Google Cloud.

Using Cloud Logging

Cloud Logging is the Google Cloud solution for system-wide logging. Cloud Logging allows you to store, search, analyze, monitor, and alert on log data and events. Using Cloud Logging requires that you have installed the Cloud Logging agent on each VM.

If you didn't install the agent, you can install it now. See Installing the Logging agent.

See Compute Engine Logs for details about supported logs.

Access control

Cloud Logging provides granular access control to logs and logging operations. For details, see the Access Control Guide.

Audit logging

Cloud Audit Logs provides key information about activities happening in Google Cloud through two log types: Admin Activity and Data Access. You can view the Activity Feed and the Logs Explorer in the Google Cloud console.

Google Cloud's monitoring agent for SAP NetWeaver operations

For information about the monitoring agent operations, see the monitoring agent for SAP NetWeaver Operations Guide.