Infrastructure Landing Zone Overview
Description
Trustnest Infrastructure Landing Zones (iaas lz) is a service of the Thales Digital Platform / Trustnest
A IaaS Landing Zone is a preconfigured cloud environment that accounts for scale, security, governance, networking, and identity. To get more details about offers or pricing, have a look to the infrastructure landing zone service offer page
Getting Started
First ask for an infrastructure landing zone using Thales postIT portal. If you're requesting your first landing zone, we recommend to look at the prerequisites documentation
The support teams will take your ticket and create a dedicated azure subscription for your project. Once deployed, you will receive all the detailed in the postIT ticket.
If it is your first steps on azure, we recommend the following tutorial from Microsoft Azure:
Features
Feature | Maturity | Discover | Innovate | Industrialize |
---|---|---|---|---|
Microsoft Defenfer Enabled | GA | ✅ | ✅ | ✅ |
Builtin Vulnerability Dashboard | Explo | ✅ | ✅ | ✅ |
Builtin Infrastructure Monitoring | GA | ✅ | ✅ | ✅ |
Standard Security Policy Enforcement | GA | ✅ | ✅ | ✅ |
Supported Operating System | GA | ✅ | ✅ | ✅ |
Corporate Addon (Corporate Endpoints Access) | GA | ❌ | ✅ | ✅ |
AKS with Corporate Addon (Corporate Endpoints Access) | Explo | ❌ | ✅ | ✅ |
Infrastructure Cost Optimization | EA | ❌ | ❌ | ✅ |
Custom RBAC Role Support | GA | ❌ | ❌ | ✅ |
Business Zone Management | Explo | ❌ | ❌ | ✅ |
Confidential Addon (Data Encryption) | Explo | ❌ | ❌ | ✅ |
Microsoft Defender for Endpoint Device Group Management | EA | ❌ | ❌ | ✅ |
Export Control compliancy | Soon | ❌ | ❌ | ✅ |
Certificate as a service | Explo | ✅ | ✅ | ✅ |
Tutorial & Learning Section
Discover all the HOWTO here
Automation & CI/CD
Business Zone
Container
Corporate Addon
- Corporate Security policy enforcement
- HOWTO Connect to internal Thales RIE Service from a Protect Landing Zone
- Thales Private DNS
- HOWTO get a thales certificates ?
Data
Networking
Security
- Patch Management
- HOWTO integrate an azure bastion ?
- HOWTO protect my application with Azure Application Gateway
- HOWTO use private endpoint ?
- HOWTO open and close port using command lines ?
Next Steps
How to request my Landing Zone ?
Follow the form: here
How to get started with my Landing Zone ?
Follow our Getting Started guide.