You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

This page provides some considerations and recommendation on the tenancy management. There are no one correct answer but rather things to consider for each specific situation.

Tenant admins

VM Updates

  1. Keep Your VMs Up to Date
    Regularly update your virtual machines (VMs) to ensure they have the latest security patches and performance improvements. This helps protect against vulnerabilities and enhances overall system stability.

  2. Turning On/Off Automatic Updates 
    By default, EWC Ubuntu VMs have automatic security updates turned on to ensure the installation of security batches. While you can disable the automatic updates it's recommended to keep them on. In all cases, make sure to monitor the installation of the critical updates. 

  3. Private IPs and Security Groups 
    Assign only private IP addresses to VMs where public access is not required. This minimises exposure to potential threats. Additionally, configure security groups to open only the necessary ports, reducing the attack surface and enhancing security.

  4. Follow Security Guidelines 
    Adhere to the security guidelines provided (to be published). These guidelines will offer comprehensive advice on maintaining a secure and resilient VM environment.

Deployment

  1. Infrastructure as Code 
    Implement infrastructure as code practices to manage and provision your deployment environments. This ensures consistency and allows you to reproduce environments easily, reducing the risk of configuration drift.

  2. Log Management 
    Keep detailed logs of your deployment processes and system activities. Logs are crucial for troubleshooting issues, monitoring system performance, and maintaining compliance with regulatory requirements.


Backups

  • perform data backup
  • refund the critical data and applications when possible
  • VMs backup (but not rely only on it, perform data backup and automated deployment)

Remove VMs

  • Remove unused VMs

Resource management

  • Keeping eye on budget vs. consumption → shutting down unnecessary VMs
  • Possibility for burst capacity
  • Estimate and plan 
  • Request quota/budget modification when required 


Communications

  • Tenant admin → Tenant users
  • Tenant admin → comp reps
  • Tenant admin → EWC support
  • Keep contacts updated (e.g. if anyone leave organization)
  • Share info about relevant news, important updates and events


Users management

  • Review periodically contacts and list of users that have access
  • Delete/disable tenant user accounts that do not require it anymore

Computing Representatives

Tenancy division models

  • one tenancy for the whole Member State
  • specific tenancies for each use case

Resource management

  • Keeping eye on budget vs. consumption → shutting down unnecessary VMs
  • Possibility for burst capacity
  • Periodic tenancies reviews 

User management

  • Identity provider integration
  • Local users in VMs vs. LDAP


Communications

  • Comp Rep → Tenant admins
  • Comp Rep → EWC support
  • Keep contacts updated
  • Share info about relevant news, important updates and events



  • No labels