Environment Support
Scope of Environment Support
To ensure the stability, security, and performance of the SERVICEME platform across different cloud environments, we have implemented unified planning and tiered support for the system operating environment (including cloud platforms, networks, identity systems, model service access environments, etc.).
The current platform primarily runs on Microsoft Azure, with ongoing evaluations of compatibility with other cloud platforms.
Environment Support Levels
Standard Support
- Refers to operating environments that have passed comprehensive compatibility testing, performance verification, and security review.
- Provides formal production support (SLA) and long-term maintenance guarantees.
- Currently, only Microsoft Azure is classified as a standard support environment.
Experimental Support
- Refers to environments that meet operational conditions but have not yet passed all compatibility and performance verifications.
- Suitable for testing, proof of concept (POC), or internal evaluation; not recommended for production use.
- Examples: AWS, Alibaba Cloud.
Unsupported
- Environments that do not meet platform deployment requirements or have security and access restrictions.
- Includes on-premise private deployments and third-party cloud environments that have not passed security certification.
Standard Support Environment (Microsoft Azure)
| Category | Recommended Configuration | Description |
|---|---|---|
| Resource Group Structure | Single resource group or separated by environment (DEV / UAT / PROD) | Recommended to separate by environment for easier permission and policy control |
| Virtual Network (VNet) | Enable private subnets and service endpoints | Avoid public network calls to enhance security |
| App Service | 2-4 cores / 8GB RAM (minimum standard) | Production environment recommended to enable auto-scaling |
| Database (Azure PostgreSQL / SQL) | Starting from 4 cores / 16GB RAM | Adjust according to data volume and concurrent users |
| Storage (Blob Storage) | Enable Geo-Redundant Storage (GRS) | Improve reliability and backup recovery capability |
| Identity System (Entra ID) | Enable MFA and conditional access policies | Strengthen account security and compliance |
| AI Service Access | Use Azure OpenAI Service / Azure Cognitive Services | Ensure stable call paths and compliant billing |
User Roles and Corresponding Environments
| User Type | Usage Environment | Permission Description |
|---|---|---|
| Developer | DEV / UAT environments | Can deploy, debug, and configure resources; no production access |
| Tester | UAT environment | Can perform functional and performance testing, with read and verification permissions |
| Operator | All environments (including PROD) | Has system monitoring, deployment, and emergency handling permissions |
| Business User | PROD environment | Limited to official system use; no configuration or modification permissions |