This page provides some considerations and recommendation on the tenancy management. There are no one correct answer but rather things to consider for each specific situation.

Tenant admins

VM Updates

1. Keep Your VMs Up to Date
   Regularly update your virtual machines (VMs) to ensure they have the latest security patches and performance improvements. This helps protect against vulnerabilities and enhances overall system stability.

2. Turning On/Off Automatic Updates 
   By default, EWC Ubuntu VMs have automatic security updates turned on to ensure the installation of security batches. While you can disable the automatic updates it's recommended to keep them on. In all cases, make sure to monitor the installation of the critical updates. 

3. Private IPs and Security Groups 
   Assign only private IP addresses to VMs where public access is not required. This minimises exposure to potential threats. Additionally, configure security groups to open only the necessary ports, reducing the attack surface and enhancing security.

4. Follow Security Guidelines 
   Adhere to the security guidelines provided (to be published). These guidelines will offer comprehensive advice on maintaining a secure and resilient VM environment.

Deployment

1. Infrastructure as Code 
   Implement infrastructure as code practices to manage and provision your deployment environments. This ensures consistency and allows you to reproduce environments easily, reducing the risk of configuration drift.

2. Log Management 
   Keep detailed logs of your deployment processes and system activities. Logs are crucial for troubleshooting issues, monitoring system performance, and maintaining compliance with regulatory requirements.

Backups

• perform data backup
• refund the critical data and applications when possible
• VMs backup (but not rely only on it, perform data backup and automated deployment)

Remove VMs

• Remove unused VMs

Resource management

• Keeping eye on budget vs. consumption → shutting down unnecessary VMs
• Possibility for burst capacity
• Estimate and plan 
• Request quota/budget modification when required 

Communications

• Tenant admin → Tenant users
• Tenant admin → comp reps
• Tenant admin → EWC support
• Keep contacts updated (e.g. if anyone leave organization)
• Share info about relevant news, important updates and events

Users management

• Review periodically contacts and list of users that have access
• Delete/disable tenant user accounts that do not require it anymore

Computing Representatives

Tenancy division models

• one tenancy for the whole Member State
• specific tenancies for each use case

Resource management

• Keeping eye on budget vs. consumption → shutting down unnecessary VMs
• Possibility for burst capacity
• Periodic tenancies reviews 

User management

• Identity provider integration
• Local users in VMs vs. LDAP

Communications

• Comp Rep → Tenant admins
• Comp Rep → EWC support
• Keep contacts updated
• Share info about relevant news, important updates and events