DuploCloud Tenancy Models

An outline of the tenancy deployment models supported by DuploCloud

DuploCloud supports a variety of deployment models, from basic multi-tenant applications to complex single-Tenant deployments within customer environments. These models cater to different security needs, allowing customers to achieve their desired isolation level while maintaining operational efficiency.

DuploCloud-supported tenancy models, outlined below, include:

Tenancy Deployment Models

Application-Managed Multi-Tenancy

  • Description: The application manages tenant isolation with DuploCloud structured pooled tenancy.

  • Use Case: The most common scenario is where the application logic isolates customer data. DuploCloud Tenants are then used to isolate development environments (i.e., Nonprod and Prod).

  • Infrastructure:

    • Shared DuploCloud Infrastructure (VPC, Tenant, VM/instances, S3 bucket, RDS). Cluster/namespace can also be shared.

    • Scaling: Increase compute instances for Kubernetes worker nodes as needed.

DuploCloud Tenant-per-Customer

  • Description: Each customer gets a separate DuploCloud Tenant.

  • Use Case: Suitable for older applications not designed for multi-tenancy, or security and compliance needs.

  • Infrastructure:

    • Shared network layer (VPC).

    • Separate Tenants per customer with security boundaries (security group, KMS key, SSH key, Kubernetes namespace).

    • Kubernetes cluster is shared and boundaries are through the namespace.

DuploCloud Infrastructure-per-Customer

  • Description: Each customer gets a separate DuploCloud Infrastructure.

  • Use Case: Provides a higher security boundary at the network layer where customer access and data are separated.

  • Infrastructure:

    • Separate VPC and network resources for each customer.

    • Clusters are inherently separate through Tenants isolated in different Infrastructures.

    • Higher cost due to duplicated resources and operational overhead.

Cloud Account-per-Customer

  • Description: Each customer gets a separate cloud account.

  • Use Case: The least common model, used for customers requiring complete isolation.

  • Infrastructure:

    • Separate accounts with a DuploCloud Platform installed in each.

    • Each account then has its own DuploCloud Infrastructure and Tenant.

Hybrid Model

  • Description: Combination of the above models as needed to meet specific requirements.

  • Use Case: Diverse customer needs.

  • Infrastructure:

    • A combination of previous models.

    • Organization-specific depending on requirements: some organizations may be in a pooled application environment whereas others may be more isolated through Tenant boundaries.

Special Hybrid Case: Single-Tenant Deployment in an External Kubernetes Cluster

  • Description: DuploCloud imports existing Kubernetes clusters from external environments.

  • Use Case: A cluster and resources already exist, or customers require the application or services solution running inside their client's cloud account. Customers are comfortable creating their own Kubernetes environments.

  • Infrastructure:

    • Customer's cloud account or On-premises cluster (EKS, AKS, GKE, Oracle, DOKS, etc.) in conjunction with a DuploCloud Infrastructure. This could be any Kubernetes cluster not created by DuploCloud.

    • Manages both multi-Tenant and single-Tenant environments from the DuploCloud UI.

Documentation and Support

Last updated

Logo

© DuploCloud, Inc. All rights reserved. DuploCloud trademarks used herein are registered trademarks of DuploCloud and affiliates