Skip to content

Sodexo Case Study

Accelerating Digital Transformation with Network Automation

August 22, 2022 |

Project Objectives

Enhance digital services to clients, consumers, and employees
Improve performance and UX, especially for Office 365 suite
Incorporate Microsoft Azure to provide agile technology environment
Network transformation for robustness and rollout of apps/IT infrastructure
Eliminate data silos and implement central IPAM

Key Benefits

Enhanced performance and UX with regionalized DNS servers
Unified management over on-prem and Cloud environments
Improved visibility via “Single source of truth” central IP data repository
Accelerated app and infrastructure deployment with advanced automation
Enforced security policies and simplified NAC provisioning

IPAM has been well adopted by local teams. This ‘single-source-of-truth’ central repository of all the IP related information has brought greater visibility and control over on-prem and Cloud environments, helping the teams to better manage their assets.
Florent Trécourt, Global Network & Telecom Director – Global IS&T

Project Overview

Sodexo, global leader in Quality of Life services, serves 100 million consumers each day through its unique combination of On-site Services (food services, reception, maintenance and cleaning), Benefits & Rewards Services (Sodexo Pass Restaurant card, Gift Pass) and Personal and Home Services (childcare centers and concierge services). Operating in 64 countries, the company serves many sectors such as businesses, schools & universities, agencies, governments, health and seniors care.

To support new trends and consumers expectations Sodexo has moved its B2B business models to B2B2C and needed to improve user experience for their customers, consumers and employees, in addition to enabling faster deployment of new apps through Infrastructure-as-Code and automation. Having a consolidated corporate repository and using DNS and IPAM as key enablers was vital for achieving those objectives.

DNS and IP services proved to be strong enablers of our digital transformation project

Solutions Implemented

Key to the project was having a central repository for the entire corporation. By using EfficientIP IPAM to consolidate their silos of data into one data lake, Sodexo administrators gained full network topology visibility across their Azure and on-premise environments from a single viewpoint. Blocks of IP addresses could now be delegated to regional teams to allow for local management of subnets, providing flexibility, autonomy and control. The IPAM contains entries combining a rich naming convention including site identification and country, with the associated metadata used to add business activity, exact location and technical contact information. This helped streamline data qualification and control consistency. Some of the on-line business units quickly started using the IPAM in order to reference all their server assets with public and private IP addresses, with automation capability already having been put in place for simplified deployment of VMs.

Automation was also used, together with Infrastructure as Code and the rich IPAM data, for linking with other ecosystem components through API. Sodexo made massive use of metadata on network objects in the IPAM for business links and easy access to information from other IT solutions. Integration with Forescout helped enrich the database with all the topology information from the networks, and Azure cloud integration ensured that Vnet topology was synchronized in the IPAM. In addition, Infrastructure as code was orchestrated with Azure devops suite for all Azure deployment servers and components.

Ensuring service coherence end-to-end was extremely important to Sodexo, so tight integration with the security ecosystem was performed. Security policies could be enforced, based on a topology that was guaranteed to be up-to-date. As an example, API integration was performed between the NAC solution and IPAM to enrich information with business metadata and to provision segments location information.

As well as using the IPAM component of SOLIDserver DDI (DNS-DHCP-IPAM) for improving network control and visibility, the other main use of the DDI was to optimize internet breakout access. Having a single DNS exit point for all the recursion traffic was causing poor performance as it affected efficiency of the CDN. This was overcome by moving to regionalized DNS recursive and authoritative servers.

Main Results

The new consolidated IP data lake has brought Sodexo much more simplified and unified management across their entire infrastructure. Collaboration between teams has also been improved, giving autonomy to local teams while keeping overall control centrally.

IPAM has been well adopted by local teams. This ‘single-source-of-truth’ central repository of all the IP-related information has brought greater visibility and control over on-prem and Cloud environments, helping the teams to better manage their assets.

Having a global repository containing IP “Golden Records” has also led to connection of the management and security silos, by using advanced automation enabled by an integrated ecosystem of tools. That has guaranteed consistency of data being used by 3rd party applications as well as helping ensure configurations are error-free and improving agility for change management. In addition, this automation has significantly accelerated time to service for apps and infrastructure.

Lastly, performance has been improved with the introduction of DNS hubs, helping meet Sodexo’s need to enhance the user experience for IT clients and employees.

Conclusions/Future Plans

EfficientIP DDI is now positioned as a cornerstone for Sodexo’s large enterprise network and for scaling the IT infrastructure. This is particularly valid with regards to control of network foundations, moving towards new Infrastructure-as- Code and DevOps processes/practices to support the global digital transformation strategy.

Azure cloud will be used to host recursive and authoritative DNS servers at regional level. And in order to further advance application automation there is an ongoing study to migrate non-AD technical zones in around 70 locations to EfficientIP DNS. Asset management is another area Sodexo is looking to improve, by making use of EfficientIP Device Manager. And finally, on the security side, the global DNS infrastructure will likely be enhanced with the patented functionality DNS Guardian has to offer. The ability to use DDI as an IT enabler will most certainly help Sodexo on their path to Lean IT and having an Augmented Network.

The implementation of solid DDI foundations has been key to simplify and accelerate the deployment of our Cloud project

Key Resources

Metax Integrated Circuits
Case Studies
MetaX Integrated Circuits: Enhancing Operational Efficiency, Reliability and Disaster Recovery with Integrated DDI
Case Studies
Super-Pharm: Improving Revenue Protection by Replacing Microsoft DHCP With SOLIDserver
Case Studies
University of Grenoble Alpes: Simplifying the IT merger of its entities with DDI
Case Studies
Société Générale: Ensuring Business Continuity and Efficiency with Proven DDI, APIs and Automation
La Poste Case Study
Case Studies
La Poste: Improving Governance, Security and Cost with Unified DDI Management
Case Studies
Rotherham Metropolitan Borough Council: Solving the Problems of Government Cuts
Case Studies
Universidad del País Vasco: Optimizing Network Services Management
Case Studies
STMicroelectronics – DDI Solutions For Enabling NetSecOps Collaboration
Case Studies
STMicroelectronics – Centralization of DNS-DHCP Services Management
Case Studies
Software AG: Transparent and Central User Management

Simplify & Secure Your Network

When our goal is to help companies face the challenges of modern infrastructures and digital transformation, actions speak louder than words.

SOLIDserver UX interface