Versions Compared

Old Version 11

changes.mady.by.user Dominik Meyer

Saved on

compared with

New Version Current

changes.mady.by.user Dominik Meyer

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The following visualisation shows on a high level all Deployment models of (blue star) Unique. While many abominations exist, the four most commonly used patterns are linked above.

Gliffy
imageAttachmentIdatt468123876
macroId5cb6a769-ae7f-4c92-a212-dc5bb091cffa
baseUrlhttps://unique-ch.atlassian.net/wiki
nametenants-2
diagramAttachmentIdatt468451360
containerId436536054
timestamp1711524570231
Gliffy
baseUrlhttps://unique-ch.atlassian.net/wiki
nametenants
pageid236421121
timestamp1711524265469

...

Deploying Unique can be done over the four key models outlined above. But all of them basically involve ~4 layers that must be coordinated.

  1. Landscape - who provides the underlying foundations for infrastructure, identities, their governance and audit logging, conditional access etc.

  2. Infrastructure (sometimes called resources) - who provides the infrastructure itself, virtual machines, database servers and the sorts.

  3. Workload (Configurations) - who provides the necessary workloads or their configurations that are needed to run (blue star) Unique successfully.

  4. (blue star) Unique, the product itself - it is always Unique who provides that (smile) A small exception to this is the Software Development Kit (SDK) where clients can extend (blue star) Unique for their logic.


For all these layers it's not only relevant who sets them up initially but also who maintains them on the long run.

...

Layer / Tenant

PaaS

single tenant

customer-managed tenant

on-premise or 1-machine

Product

RAC: Unique

I: Clients

[a collection of container images, amd64]

RAC: Unique

I: Clients

Workloads

[helm in the form of helmfiles]

Workload configurations

RAC: Unique

I: Clients

[helm in the form of helmfiles]

Workload configurations

RACI: to be defined

[helm in the form of helmfiles]

Workload configurations

RACI: to be defined

Infrastructure

[terraform or bicep]

Unique provisions all necessary infrastructure to run the workloads ahead. Unique maintains and pays the infrastructure up front.

RAC: Unique

I: Clients

[choice of customer, bicep]

By agreement with the customer either Unique (charged by effort) or the customer provisions and maintains the infrastructure.

The infrastructure is directly paid by the customer.

RACI: to be defined

[unclear, choice by customer]

The customer provisions and maintains the “infrastructure”.

Unique can advise or provision the infrastructure (charged separately by effort) but cannot maintain it as it is by definition out of reach.

Landscape

Unique operates the Azure AD tenant, implements policies and processes on it, manages users and roles and guarantees its security.

RAC: Unique

I: Clients

The customer operates the tenant, implements policies and processes on it, manages users and roles and guarantees its security.

The customer provides a runtime or orchestrator. The on-premise landscape is fully operated, governed and controlled by the customer and Unique will only advise (charged by effort)

Details

A: Accountable, R: Responsible, C: Consulted (billed by effort), I: Informed

...