Introduction
myDRE is a product developed and maintained by anDREa BV that allows a Service Provider to offer services to Tenants. Each Tenant is able to self-service create Workspaces for storing and processing data. The Service Provider operates the CORE that makes this possible.
The full list of the current available services can be found at:
- anDREa / myDRE standard services
- anDREa / myDRE optional services
**anDREa BV is a Service Operator.
myDRE as a Service
Below myDRE depicted as a service.
The geographical location in which Microsoft Azure region the CORE(3) and the AAD (4) runs, determines where user information is stored and via what Microsoft Azure region the ingress and egress (encrypted in transit) takes place. In case of anDREa BV as a Service Provider this is Microsoft Azure West Europe region.
As to why a Service Provider needs a separate AAD is explained in
myDRE and IAM.
myDRE as a service explained
- anDREa B.V.
- Develops and maintains the code in Github
- Provides support to the Service Provider
- The code is deployed
- Into a dedicated Subscription of the Service Provider
(anDREa BV, or any other service provider who has a license agreement with anDREa BV)
- The Service Provider has under its own Azure Billing Account a dedicated AAD and a Support Team:
- Supporting the Support Team of the Tenant(s)
- Providing OPS/trouble shooting on the CORE and resources at the Tenant
- Providing 24/7/365 Monitoring
- Maintaining Knowledge Base / Ticket System
- Subscription Enrollment/Offboarding and Exit Strategy
| - Each Tenant provides under the Tenant’s own Azure Billing Account
- A Subscription for its own central optional functionalities (anDREa / myDRE optional services), like (currently available):
- Software Share available for all Workspaces
- Bastion Architecture
- Domain or URL Whitelisting (soon)
- License Server Access from anDREa
- Azure Firewall
- One or more Subscriptions for Workspaces
- 100 Storage Accounts / Study (usually 1 storage account per Workspace)
- That optionally can connect to ‘local’ resources; data sources, license servers, etc
- Local Support Team to support its own users
- And to create the Workspaces after validating Workspace requests against their organisation's policies.
|
- Can the CORE and AAD be run in a different Microsoft Azure Region?
- Yes, provided that region has the required Microsoft Azure services. See current list of supported Microsoft Azure Regions.
- Can a Tenant use a different Microsoft Azure Region?
- Yes, however, this is 'locked' per Tenant for now. Provided the required Microsoft Azure services are present in that region. Not so much a technical requirement as to ease of auditability.
- Note, Workspace-to-Workspace transfer does not work (yet) between Workspaces in different Microsoft Azure regions.
- Can a Tenant be its own Service Provider, i.e. a company dedicated myDRE?
- Yes, bear in mind the CORE has a monthly running costs of €7-10K/month.
- Yes, you need to have your own OPS and 24/7/365 monitoring service, etc
- Can a Service Provider make use of anDREa's Knowledge Base?
- Yes, the full knowledge base is available
- Yes, it is possible to use the same ticket and knowledge base system with own URL; anDREa BV uses ZoHo Desk.
- I have more questions
- From an organisation perspective, a good starting point is: anDREa FAQ
- From a user perspective, a good starting point is: myDRE General
- Or otherwise email: stefan.vanaalst@mydre.org (CTO anDREa)