This post is the first in a two-part series on migrating workloads from Azure Commercial Cloud to Azure Government Cloud (AGC), with FedRAMP High compliance as a core requirement.
Our client, a full-stack edge computing provider, had more than 40 microservices running on Azure Kubernetes Service (AKS). The setup worked well for enterprise customers, but a new government contract raised the stakes. Their workloads now had to comply with FedRAMP High, which enforces strict controls for handling government data.
The challenge was in the deployment pipelines. They relied on GitHub Actions, which isn’t FedRAMP-compliant. Without a compliant automation framework, provisioning and managing 40+ microservices would be difficult to sustain.
(more…)