Responsibility sharing for the VMware on OVHcloud service

Knowledge Base

KB0057047

Responsibility sharing for the VMware on OVHcloud service


Icons/System/eye-open Created with Sketch. 967 Views 07.03.2023 Cloud / Hosted Private Cloud

Objective

The RACI below details shared responsibilities between OVHcloud and the customer. This model is designed to help the customer make the best use of the VMware on OVHcloud service provided by OVHcloud.

Roles
R : Is in charge of carrying out the process
A : is Accountable for the successful completion of the process
C : Is Consulted during the process
I : Is Informed of the results of the process

1. Before subscription

1.1. Specify service as needed

ActivityCustomerOVHcloud
Choose the location of infrastructures (vCenter)RAI
Size infrastructures as neededRAI
Choose options as neededRAI
Decide versions of the VMware software to useIRA
Decide to use TKG (Tanzu Kubernetes Grid) providedRA
Choose the location of TKG infrastructures' deploymentRA

2. Service availability

2.1. Install service

ActivityCustomerOVHcloud
Produce, route, deliver and maintain physical machines and hosting buildingsIRA
Install and configure the functional building blocks internal to the dedicated server that are necessary for maintaining operational conditions and security conditions (firmware, BIOS, BMC, IPMI, etc.).RA
Purchase and own the licenses and rights of use for the OS provided by OVHcloudIRA
Purchase and own the licenses and rights of use for softwares provided by OVHcloudIRA
Purchase and own the licenses and rights of use for the VMware solution (Private Cloud)IRA
Install the vCenterIRA
Deploy the initial network configuration to devicesIRA
Supply an up to date OVA image template for TKG serviceIRA
Provide a client's support following TKG service deployment (ticket, debug)ACR
Adapt the service configuration after its initial deliveryRA

2.2. Reversibility

ActivityCustomerOVHcloud
Import data in VMDK file format or any other format supported by the VMware hypervisorRAC
Decide to use OVHTOOL to import virtual machines in .OVF file formatRA

2.3. Customer's IS installation

ActivityCustomerOVHcloud
Create / install / optimise new VMsRAI
Install and configure softwares and middlewares in the service infrastructureRA
Purchase and own the licenses and rights of use for OS with Bring Your Own Licence modeRA
Configure virtual instances deployed on the IaaSRAI
Deploy containers on VMs following TKG integration on the infrastructureRA
Install and configure softwares inside containersRA
Supply/import data to containersRA
Specify the project in order to avoid storing persistant data locally (use persistant and shared volumes to store data permanently : NFS volumes or vSAN storage)A
Configure network in order to have a functional ISRA

3. Service Usage

3.1. Operations

3.1.1. Daily operations
ActivityCustomerOVHcloud
Manage network access to the vCenterRAI
Manage access, according to needs, to the managed infrastructure serviceIRA
Operate virtual instances deployed on the serviceRAI
Decide to add/remove resources on the virtual datacenterRAI
Add/remove resources on the virtual datacenterIRA
Add/remove resources on VMsRA
Manage accessibility and proper functioning of the service TKG installedRA
Manage accessibility and proper functioning of the customer's IS installed on VMsRA
Manage risks of the customer's IS installedRA
Deploy a backup policy for the IS installedRAI
3.1.2. Access management
ActivityCustomerOVHcloud
Manage access to the OVHcloud control planeRAI
Manage physical and logical access of OVHcloud teams to service infrastructure (vCenter)IRA
Manage access to virtual management interfaceRAI
Manage access and security policy of users' ISRA
3.1.3. Monitoring
ActivityCustomerOVHcloud
Monitor the proper functioning of physical devices (utilities) supporting the service infrastructureIRA
Monitor physical resource performancesRAR
Monitor VMs and TKG service performancesRAI
Process and clear alarms from managed devices on the managed infrastructure (vCenter)IRA
Keep logs generated by the managed infrastructure (vCenter)RARA
Keep logs generated by the TKG service offer chosenRA
Keep logs of the information system hosted on the service infrastructureRA
3.1.4. Storage
ActivityCustomerOVHcloud
Create, modify, control, restore, delete backup jobs with the solution chosen by the clientRA
Encrypt data backups following subscription to Veeam Managed Backup optionAIRI
Encrypt VMs following needs with vNKP solutionRA
Manage content hosted on infrastructuresRA
Manage data continuity and sustainabilityRA
Carry out maintenance on the storage and backup devices provided by OVHcloudCRA
3.1.5. Connectivity
ActivityCustomerOVHcloud
Manage the functioning of automatic network management systems (architecture, implementation, software and hardware maintenance for deployed public and private networks on NSX Controller and NSX Edge)IRA
Deploy a network architecture as neededRAI
Manage IP addressing planRAI
3.1.6. Management
ActivityCustomerOVHcloud
Maintain an inventory of services and devices provided by OVHcloudIRA
Maintain an inventory of all services and devicesRA
Manage security of the managed infrastructure (API, Control Plane)RA
Manage security of VMsRAI
Manage security of softwares and middlewares installed on VMsRAI
Manage security of data stored by the Customer on the IaaSRAI
Manage physical security of equipment and infrastructures hosted at OVHcloudIRA
Maintain the VMware managed solution and its extensionsIRA
Maintain the TKG solutionRA
3.1.7. Business continuity
ActivityCustomerOVHcloud
Manage automatic management systems for the infrastructure providedIRA
Maintain a business continuity and disaster recovery plan for the hosted ISRACI

3.2. Event management

3.2.1. Incidents
ActivityCustomerOVHcloud
Replace the defective hardware elements in support of the IaaSIRA
Qualify, Intervene on managed service elements (vCenter)CRA
Handle incidents (tickets and telephone contacts)AIRA
Intervene on incidents affecting the IS hosted and non managed servicesRA

3.2.2. Change

ActivityCustomerOVHcloud
Deploy patches, updates and configurations on softwares, middlewares and IS hosted on the IaaSRA
Optimise VMsRAI
Validate hardware change request on the infrastrcture provided by OVHcloudAR
Plan changes requested by the ClientRARI
Operate acceptance testsRAC
Deploy patches, updates and cofigurations on managed infrastructure elementsRIRA
Operate preventive interventions on managed infrastructure elementsAR
Update the hypervisorIRA
Allow OVHcloud to carry out a maintenance for a host at any time to allow an update (subject to ressource provision by the Client)RAI
Update VMsRA

4. Reversibility

4.1. Reversibility model

ActivityCustomerOVHcloud
Schedule reversibility operationsRAI
Choose fallback infrastructuresRA

4.2. Data recovery

ActivityCustomerOVHcloud
Manage reversibility operations : Manual extraction, API, OVHFTOOL or any other software supported by VMwareRAI
Migrate/transfer dataRA

5. End of service

5.1. Destroying configurations

ActivityCustomerOVHcloud
Uncommission client-related configurations and associated options following contract terminationIRA

5.2. Data destruction

ActivityCustomerOVHcloud
Securely destroy data on storage mediaRA
Destroy storage media that has reached their end of life or when the secure destruction processes are generating errorsRA
Provide a certificate of destruction (upon request)IRA

Related articles