Scope of Environment Support
To ensure the stability, security, and performance of the AI Central platform across different cloud environments, we have unified the planning and tiered support for system operating environments (including cloud platforms, networks, identity systems, model service access environments, etc.).
The current platform primarily runs on Microsoft Azure, with gradual evaluation of compatibility with other cloud platforms.
Environment Support Levels
Standard Support
-
Refers to operating environments that have passed comprehensive compatibility testing, performance verification, and security review.
-
Provides formal production support (SLA) and long-term maintenance guarantees.
-
Currently, only Microsoft Azure is classified as a standard support environment.
Experimental Support
-
Refers to runtime environments that are operational but have not yet completed full compatibility and performance validation by Medalsoft.
-
Intended for testing, proof of concept (POC), or internal evaluation, and are not recommended for production use.
-
Performance, stability, and compatibility risks must be evaluated and validated by users themselves.
-
Examples include: AWS, Alibaba Cloud.
Unsupported
-
Environments that do not meet platform deployment requirements or have security and access restrictions.
Standard Support Environment (Microsoft Azure)
|
Category |
Recommended Configuration |
Description |
|---|---|---|
|
Resource Group Structure |
Single resource group or separated by environment (DEV / UAT / PROD) |
Splitting by environment is recommended for easier permission and policy control |
|
Virtual Network (VNet) |
Enable private subnets and service endpoints |
Avoid public network calls, enhance security |
|
App Service |
2-4 cores / 8GB RAM (minimum standard) |
- |
|
Database (Azure PostgreSQL / SQL) |
Starting from 4 cores / 16GB RAM |
Adjust according to data volume and concurrent users |
|
Storage (Blob Storage) |
Enable Geo-Redundant Storage (GRS) |
Improve reliability and backup recovery capability |
|
Identity System (Entra ID) |
Enable MFA and conditional access policies |
Strengthen account security and compliance |
|
AI Service Access |
Use Azure OpenAI Service / Azure Cognitive Services |
Ensure stable call paths and compliant billing |
|
Azure Cache for Redis |
Standard or Enterprise tier, high availability enabled |
Used for session caching and query result caching to improve system response performance |
User Roles and Corresponding Environments
|
User Type |
Usage Environment |
Permission Description |
|---|---|---|
|
Developer |
DEV / UAT environments |
Can deploy, debug, and configure resources; no production access |
|
Tester |
UAT environment |
Can perform functional and performance testing, with read and verification permissions |
|
Operator |
All environments (including PROD) |
Has system monitoring, deployment, and emergency handling permissions |
|
Business User |
PROD environment |
Limited to official system use, no configuration or modification permissions |