Red Hat, Inc., the world’s leading provider of open source solutions, today announced Azure Red Hat OpenShift on Microsoft Azure for U.S. Government as a public preview. Delivering the industry’s leading enterprise Kubernetes platform as a jointly-managed and supported cloud service, Azure Red Hat OpenShift on Microsoft Azure for U.S. Government brings the innovation of Red Hat OpenShift and the scale of Azure to government agencies on a dedicated cloud with the intention to address crucial compliance and security regulations for highly-sensitive workloads at general availability.
By bringing Azure Red Hat OpenShift to Microsoft Azure for the U.S. Government, we are able to deliver the industry’s leading Kubernetes platform to agencies that want to embrace open hybrid cloud without the need to manage the underlying infrastructure at scale – all while meeting the stringent requirements of sensitive workloads.
Launched in 2019, Azure Red Hat OpenShift was the first co-developed, jointly-operated Red Hat OpenShift service on the public cloud, offering a powerful on-ramp to the hybrid cloud by extending the same enterprise-grade Kubernetes used in private datacenters to the scale of Microsoft Azure. The service combines Red Hat’s expertise in mission-critical Kubernetes with Microsoft Azure’s skill in cloud-scale operations, helping customers focus on hybrid cloud transformation rather than maintaining the complexities of growing cloud-native infrastructure.
Azure Red Hat OpenShift on Microsoft Azure for U.S. Government extends the benefits of the service to public sector organizations that require stringent levels of IT security and data management. It helps agencies have greater confidence in the access controls around their data, that the location of the data meets regulatory controls and their ability to address known security vulnerabilities with applicable fixes. Once generally available, the service is expected to add key IT security and regulatory certifications and is intended to pass crucial compliance tests, such as:
- Department of Defense (DoD) Impact Level (IL) 4
- DoD IL 5
- FedRAMP High Authorization
The extended service also delivers new features and capabilities tailored to meet the information security requirements of sensitive workloads, including:
- Egress Lockdown, scheduled to be available in the coming weeks, will require mandatory cluster resources to be accessed via the private link service, removing the need for traffic to exit the cluster.
- Compute Isolation for isolating virtual machines (VMs) handling sensitive workloads to meet compliance and regulatory requirements. This feature provides for only a single VM to be running on a specific server instance and makes Compute Isolation worker nodes available for customers to deploy directly on their Azure environment.
- Spot nodes, enabling customers to buy unused Azure capacity at a discounted rate. With this release, customers can take advantage of the reduced costs by having spot instance worker nodes.
- L seriesVMs, VMs optimized for storage-intensive workloads, are also now available to be used as worker nodes.
Red Hat Advanced Cluster Security for Kubernetes adds support for workloads on Azure Red Hat OpenShift which helps to push broader application security best practices earlier into the development lifecycle, effectively shifting IT security left. In addition, Red Hat Advanced Cluster Security for Kubernetes helps agencies improve security posture of their Kubernetes infrastructure and running applications, further ingraining stringent security needs into the DNA of their workloads.
Currently available as a public preview, Azure Government customers (federal, state, local governments, and their partners) interested in Azure Red Hat OpenShift can find out additional details and create Azure Red Hat OpenShift clusters at https://azure.microsoft.com/services/openshift/.
Dave Egts, chief technologist, North American Public Sector, Red Hat
“While public sector computing requires adhering to rigorous security and compliance controls, it doesn’t mean that these organizations are limited from adopting cloud-native innovation. By bringing Azure Red Hat OpenShift to Microsoft Azure for the U.S. Government, we are able to deliver the industry’s leading Kubernetes platform to agencies that want to embrace open hybrid cloud without the need to manage the underlying infrastructure at scale – all while meeting the stringent requirements of sensitive workloads.”
Eric Brown, vice president, Azure Global, Microsoft
“Azure Red Hat OpenShift already offers organizations a powerful way to tap the full scale and potential of Microsoft Azure’s commercial clouds. Extending that capability to Azure’s Government cloud portfolio allows customers to take advantage of the innovation of Red Hat OpenShift and the security features and reliability of cloud offerings built and accredited for the most sensitive workloads. We’re pleased to see this offering taking shape, backed by the joint-support of both industry leaders.”