Versions Compared

Old Version 5

changes.mady.by.user Roberto Cuccu

Saved on

compared with

New Version 6

changes.mady.by.user Roope Tervo

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This page provides some considerations and recommendation on the tenancy management. There are no one correct answer but rather things to consider for each specific situation.

Tenant admins

VM

...

  • keep your VMs up to date!
  • turning on/off automatic updates
  • providing only private IP for VMs where public one is not needed, opening only necessary ports in security groups
  • follow advices in security guidelines (yet to be published)

Deployment

...

Updates

  1. Keep Your VMs Up to Date! 
    Regularly update your virtual machines (VMs) to ensure they have the latest security patches and performance improvements. This helps protect against vulnerabilities and enhances overall system stability.

  2. Turning On/Off Automatic Updates 
    By default, EWC Ubuntu VMs have automatic security updates turned on to ensure the installation of security batches. While you can disable the automatic updates it's recommended to keep them on. In all cases, make sure to monitor the installation of the critical updates. 

  3. Private IPs and Security Groups 
    Assign only private IP addresses to VMs where public access is not required. This minimises exposure to potential threats. Additionally, configure security groups to open only the necessary ports, reducing the attack surface and enhancing security.

  4. Follow Security Guidelines 
    Adhere to the security guidelines provided (to be published). These guidelines will offer comprehensive advice on maintaining a secure and resilient VM environment.

Deployment

  1. Infrastructure as Code 
    Implement infrastructure as code practices to manage and provision your deployment environments. This ensures consistency and allows you to reproduce environments easily, reducing the risk of configuration drift.

  2. Log Management 
    Keep detailed logs of your deployment processes and system activities. Logs are crucial for troubleshooting issues, monitoring system performance, and maintaining compliance with regulatory requirements.

...


Backups

  • perform data backup
  • refund the critical data and applications when possible
  • VMs backup (but not rely only on it, perform data backup and automated deployment)

...