Cloud Foundation Community
Maturity Model๐Ÿ›  Service Ecosystem

Shared VM Image Repository

โญ๏ธโญ๏ธ๐Ÿ›ฌ Landing ZoneA central repository provides hardened virtual machine images.

๐Ÿšง This capability reference page is a draft.

If you want to be notified when the capability reference page is finished, click here.

One key decision is if you want to allow application teams to โ€œbring your own imageโ€.

However, most application teams donโ€™t want to bother with this and use images already provided in the cloud. There are two main implementation approaches for this

  • use cloud-provider managed virtual machine base images, maybe applying a policy to restrict them to a subset of available images (e.g. only allow CentOS, Ubuntu)

  • provide โ€œgolden imagesโ€ managed by your organizations

The golden image approach has a few advantages, e.g. when it comes to wiring up existing server management infrastructure like SOC Integration. Itโ€™s however quite a bit of work, considering cloud-specific specialties (kernel extensions for hypervisor support, cloud-init scripts etc.)

Currently no tool implementations documented. Contributions welcome!

Recommended

โญ๏ธโญ๏ธ๐Ÿ›ฌ Landing Zone

Resource Authorization Management

Establish consistent guidelines and guardrails for managing authorization to cloud resources in Landing Zones. Authorization management should consider key principles like segregation of duties, need-to-know and separation of privileged and unprivile...

โญ๏ธโญ๏ธโ˜๏ธ Platform

Lift & Shift Landing Zone

A dedicated landing zone optimized for lift & shift workloads enables quick onboarding and efficient operations.

Built with โค๏ธ byย  meshcloudยทImprintยทPrivacy Policyยท Licensed underย CC BY-SA 4.0