Infrastructure Requirements

The following list provides information about the minimum Infrastructure requirements to deploy Genix on Azure Cloud:

A domain certificate (CA signed).
Internet access to perform product updates.
Azure AD with separate app registration for each tenant with API grant permission.
Two PublicIP Addresses with one PublicIP address for application gateway required for long term and the another one PublicIP for Bastion host required temporarily whenever required.

Deployable Component	Description
VNet	Virtual Network( vNet ) 1 vNet per tenant and 1 vNet for Genix common /shared / dedicated components deployment.
Data Hub	Ability lite and Edge Management portal components, common for all tenant.
Event Hub	Messages are transferred to Evenhub from Ability lite
AKS Cluster	Shared infrastructure deployed in a subnet for all tenants. AKS Version 1.33.2 Network type: Azure CNI 2 node pools ((System and User Node Pool).
DataBricks	Big data processing cluster.
Private Endpoints	Private endpoints for Azure PaaS services to restrict public access of PaaS services.
Elastic Pool DB	Databases for ICM deployment with 1 database per tenant.
Container Registry	Common registry is used during deployment for Genix component images.
Storage Accounts	Storage account includes Genix data lake store containing landing, raw, curated, sandbox 1 account for each tenant per storage type.
Cosmos DB - Mongo API	Metadata store for Genix Apps, 1 account per tenant, multiple databases in each account.
Key Vault	Key Vault is the credential store, and we would require 1 store per tenant.
Application Gateway	Front end load balancer for URL re-routing.
Azure AD	Each tenant must have 1 AD Domain to on-board the users with specific domain name.
Azure Monitor	Azure monitor for application insights and monitoring services.
Jump Server	To access VMs across vNets (Optional)
Bastion Host	To access within vNet preview (Optional)

Each tenant requires a domain certificate (CA) for secure access over https protocol.