gitlab-org--gitlab-foss/doc/subscriptions/gitlab_dedicated/index.md

3.6 KiB

stage group info
Enablement Distribution To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments

GitLab Dedicated

NOTE: GitLab Dedicated is currently in limited availability. Please contact us if you are interested.

GitLab Dedicated is a fully isolated, single-tenant SaaS service that is:

  • Hosted and managed by GitLab, Inc.
  • Deployed in a region of choice on AWS.

GitLab Dedicated enables you to offload the operational overhead of managing the DevOps Platform. It offers a high level of tenant isolation and deployment customization, ideal for enterprises in highly-regulated industries. By deploying your GitLab instance onto separate Cloud Infrastructure from other tenants, GitLab Dedicated helps you better meet your security and compliance requirements.

Available features

  • Authentication: Support for instance-level SAML OmniAuth functionality. GitLab Dedicated acts as the service provider, and you will need to provide the necessary configuration in order for GitLab to communicate with your IdP. This will be provided during onboarding. SAML request signing is supported.
  • Networking:
    • Public connectivity
    • Optional. Private connectivity via AWS PrivateLink. You can specify an AWS IAM Principal and preferred Availability Zones during onboarding to enable this functionality.
  • Upgrade strategy:
    • Monthly upgrades tracking one release behind the latest (n-1), with the latest security release.
    • Out of band security patches provided for high severity releases.
  • Backup strategy: regular backups taken and tested.
  • Choice of cloud region: upon onboarding, choose the cloud region where you want to deploy your instance. Some AWS regions have limited features and as a result, we are not able to deploy production instances to those regions. See below for the full list of regions not currently supported.
  • Security: Data encrypted at rest and in transit using latest encryption standards.
  • Application: Self-managed Ultimate feature set with the exception of the unsupported features listed below.

Features not available at launch

Features that are not available but we plan to support in the future:

  • LDAP, Smartcard, Kerberos authentication
  • Custom domain
  • Advanced Search
  • Pages
  • GitLab-managed runners
  • FortiAuthenticator/FortiToken 2FA
  • Reply-by email
  • Service desk

Features that we do not plan to offer at all:

  • Mattermost
  • Server-side Git Hooks

AWS regions not supported

The following AWS regions are not available at launch:

  • Jakarta (ap-southeast-3)
  • Bahrain (me-south-1)
  • Hong Kong (ap-east-1)
  • Cape Town (af-south-1)
  • Milan (eu-south-1)
  • Paris (eu-west-3)
  • GovCloud

Contact us

Fill in the following form to contact us and learn more about this offering.