CDW Limited

CDW VMware Tanzu Data Service - Rabbit MQ

VMware Tanzu RabbitMQ provides highly automated messaging and
streaming for the enterprise. Self-service clusters for developers that reflect
VMware RabbitMQ experts' best practices for enterprise deployment on
premises or clouds. Available for any Kubernetes and for virtual machines.

Features

• Message Queueing
• Message Streaming
• Event Streaming
• AMQP
• MQTT
• STOMP
• Web MQTT
• Rolling Upgrades
• Self-service Provisioning

Benefits

• Queue and stream messaging in a single broker
• Support cloud-native application development patterns
• Simplify lifecycle management of messaging brokers

£869.50 a unit

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@uk.cdw.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

834592591829140

Contact

Andy Wood
0161 837 7744
tenders@uk.cdw.com

Service scope

• Service constraints: VMware Tanzu RabbitMQ runs on Kubernetes or in virtual machines running; Linux or Windows operating systems. It runs on all major Kubernetes; distributions (such as Tanzu Kubernetes Grid, Openshift, GKE, AKS, EKS etc); and on major public & private cloud providers, including, but not limited to,; Amazon AWS, Google Cloud, Microsoft Azure and VMware based; infrastructure.
• System requirements:
  • For Kubernetes Installation - compatible Kubernetes runtime (see release notes)
  • For OCI installation - OCI compatible container runtime
  • For OS Package Installation - currently supported Erlang runtime
  • For multi-site clusters - < 10ms latency between sites

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Support is available. This is available 24 hours a day, 7 days a week, 365 days a; year. Critical (Severity 1) - 30 minutes or less (24x7) Major (Severity 2) - 2; business hours (12x5) Minor (Severity 3) - 8 business hours (12x5) Cosmetic; (Severity 4) - 1 business day (12x5)
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Premium Support Services are available for all VMware Tanzu customers as; follows: Global, 24x7 support for Severity 1 issues, Fast response times for; critical issues, Unlimited number of support tickets, Remote Support and Online; access to documentation, technical resources, knowledge base, and discussion; forums. Product updates and upgrades during the subscription period The cost is; included in the Annual subscription for our software. VMware can also provide, at; extra cost, a designated Technical Account Manager (TAM) that can serve as a; single point of escalation for VMware Tanzu Software support and can personally; oversee your support experience. They are experts in advising on the best; operational condition of platforms, making proactive recommendations and; providing technical guidance. They will work with you to gain a deeper; understanding of your environments, apps & challenges, and engage subjectmatter experts when needed, driving toward more efficient resolution (including; Root Cause Analysis) and enabling discussion of future plans, projects, or; enhancements.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: VMware Data Platform Services are designed to accelerate your success; with VMware Tanzu RabbitMQ by pairing our experts with your people to; plan, implement, customize, use, and scale the platform to meet your; needs. By working together we improve project outcomes and maximize; on-the-job skills enablement. An expert team from VMware Platform; Services will work with designated people from your organization on a; prioritized backlog over a period of 4 or 6 weeks. Typically the VMWare; Data Platform service is focused on deployment and testing concerns.; Actual work is tailored against your objectives and actively prioritized by; your Product Owner to ensure investments align to what’s most important.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: VMware Tanzu RabbitMQ provides exports of schema through the; command line client. For message queuing schemas, it is expected that; queues will be drained as systems are decomissioned and there will be no; data to export. For streaming schemas, export and, possibly, live load into; target systems can be executed with client applications.
• End-of-contract process: In the event of expiration of a Subscription License or any termination of; the Agreement, Customer must remove and destroy all copies of Software,; including all backup copies, from the server, virtual machine, and all; computers and terminals on which Software (including copies) is installed; or used and certify destruction of the Software. All support services cease.; If the customer has created application and services they are free to move; or migrate these applications to other instances of VMware Tanzu GemFire; or other platforms. The costs associated with doing this are borne by the; user. VMware Labs can provide consulting services to assist in this; process. The costs associated with are dependent on the number, density; and complexity of the applications. The Service Description and prices for; VMware Labs Consulting Services are available in the section on Cloud; Support.

Using the service

• Web browser interface: Yes
• Using the web interface: The RabbitMQ management plugin provides an HTTP-based API for management; and monitoring of RabbitMQ nodes and clusters. The management UI is; implemented as a single page application which relies on the HTTP API. The; management UI provides: - Declare, list and delete exchanges, queues, bindings,; users, virtual hosts and user permissions. - Monitor queue length, message rates; (globally and per queue, exchange or channel), resource usage of queue, node; GC activity, data rates of client connections, and more. - Monitor node resource; use: sockets and file descriptors, memory usage breakdown, available disk space; and bandwidth usage on inter-node communication links. - Manage users; (provided administrative permissions of the current user). - Manage policies and; runtime parameters (provided sufficient permissions of the current user). -; Export schema (vhosts, users, permissions, queues, exchanges, bindings,; parameters, policies) and import it on node start. This can be used for recovery; purposes or setup automation of new nodes and clusters. - Force close client; connections, purge queues. - Send and receive messages (useful in development; environments and for troubleshooting).
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: The web interface is accessible through a browser. We support all major browser; types. The end user is able to access some but not all of the accessibility; features. Currently, users can use the High contrast visibility features within; these browsers. Testing is underway for WCAG 2.0 and Section 508 Voluntary; Product Accessibility Template (VPAT) documentation. Following this process,; additional items in WCAG 2.1 will be covered.
• Web interface accessibility testing: We have been undertaking a significant amount of testing with assistive; technology users. Results of the testing are included in the WCAG 2.0/VPAT; documentation currently in process.
• API: Yes
• What users can and can't do using the API: Declare, list and delete exchanges, queues, bindings, users, virtual hosts and; user permissions. Monitor queue length, message rates (globally and per queue,; exchange or channel), resource usage of queue, node GC activity, data rates of; client connections, and more. Monitor node resource use: sockets and file; descriptors, memory usage breakdown, available disk space and bandwidth; usage on inter-node communication links. Manage users (provided administrative; permissions of the current user). Manage policies and runtime parameters; (provided sufficient permissions of the current user). Export schema (vhosts,; users, permissions, queues, exchanges, bindings, parameters, policies) and; import it on node start. This can be used for recovery purposes or setup; automation of new nodes and clusters. Force close client connections, purge; queues. Send and receive messages (useful in development environments and; for troubleshooting).
• API automation tools:
  • Ansible
  • Chef
  • SaltStack
  • Terraform
  • Puppet
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
  • MacOS
  • Other
• Using the command line interface: RabbitMQ ships with multiple command line tools, each with a set of related; commands: - rabbitmqctl for service management and general operator tasks -; rabbitmq-diagnostics for diagnostics and health checking - rabbitmq-plugins for; plugin management - rabbitmq-queues for maintenance tasks on queues, in; particular quorum queues - rabbitmq-upgrade for maintenance tasks related to; upgrades

Scaling

• Scaling available: No
• Independence of resources: VMware Tanzu RabbitMQ relies on the Kubernetes or IaaS; infrastructure to ensure the correct independence of resources; for each environment's requirement and cost tolerance.
• Usage notifications: No

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • Memory
  • Network
  • Other
• Other metrics:
  • Connection counts (publisher and consumer)
  • Counts of schema objects (exchanges, queues, streams, users)
  • Message rates (publication and delivery)
  • Message delivery latency
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: VMware

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
  • Other
• Other data at rest protection approach: The method used will depend upon the underlying Infrastructure; as a Service (IaaS) used. Many customers will use vSphere in; their own infrastructure, in which case the controls are customer; defined.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Broker Schema
  • Messages in-flight
• Backup controls: Schema for a broker cluster is backed up through an; export. Messages in queues and in streams can be; backed up per vhost.
• Datacentre setup:
  • Multiple datacentres with disaster recovery
  • Multiple datacentres
  • Single datacentre with multiple copies
  • Single datacentre
• Scheduling backups: Users contact the support team to schedule backups
• Backup recovery: Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: The level of availability on VMware Tanzu RabbitMQ depends upon the; infrastructure it is deployed upon. Amazon AWS, for example, has a; particular SLA it guarantees and so the RabbitMQ platform could not be; guaranteed to be any further available than that. VMware Tanzu Platform; Services provide a platform DoJo whereby our labs team pairs with a; customers platform management team to install and configure the; platform on their infrastructure to meet any SLAs they may have. RabbitMQ; is configurable in a variety of ways to meet scalability and availability; requirements as necessary.
• Approach to resilience: VMware Tanzu RabbitMQ's Quorum Queues feature provides the best level; of resilience within a cluster for those applications which require it. Quorum; Queues are replicated to multiple nodes in the cluster and messages are; persisted to disk. For public cloud deployments where clusters are; deployed across multiple Availability Zones, VMware Tanzu RabbitMQ; offers intra-cluster traffic compression to manage the cost of cross-AZ; traffic. For multi-site resilience, VMware Tanzu RabbitMQ offers warm; standby management tooling to enable failover to a second site (or public; cloud region) in the event of a disaster.
• Outage reporting: We do not provide any outage reporting. We are reliant upon the; infrastructure providers reporting mechanisms if sufficient underlying; components supporting the cluster fail.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Username or password
  • Other
• Other user authentication: The exact network interconnects available will depend upon the; customer's own preferred infrastructure as a service (IaaS), be; they AWS, GCP, Microsoft Azure, or their own private; infrastructure using VMWare vSphere.
• Access restrictions in management interfaces and support channels: VMware Tanzu restricts access to named user accounts working; on behalf of customers or ourselves. Separate administration; roles are available for all administration tasks.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: A mapping of NCSC cloud security guidance on to PCF; features is available on request. A Pivotal reference; architecture for PCF at Official (including OS) is available on; request. A NIST 800 53 (r4) controls mapping is available on; our website.
• Information security policies and processes: VMware Tanzu Information Security Policies are based on; ISO/IEC 27001:2013. The policies have been published on the; company’s internal portal and are reviewed periodically and; approved by the Chief Security Officer. All users are provided; with appropriate security awareness training to ensure policies; are followed. The Information Security Team is led by the Chief; Security Officer. The security organization is comprised of 3; distinct yet collaborative teams - (1) Governance, Risk and; Compliance (2) Information Security and (3) Physical Security.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Every VMware Tanzu software upgrade is pre-tested against our own; security pipeline and alongside other components in the platform before it; is shipped to customers via the VMware Tanzu Network. We perform; additional vulnerability scanning of our software and dependencies using; third party scanning software. Every code change to a component is linked; to a requirement and has tests written for it before it is accepted into the; next release. This provides tracking of every change back to the specific; user need that it was required for, alongside the output of the tests.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Regular testing is done against all our software. In addition, when a CVE is; disclosed in the third party component or dependency, we take the latest; fix and test it and ship it as soon as possible after the upstream project; releases a fix. We also routinely harden software components to minimise; the attack surface.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: All service and application component logs are aggregated in to a log; stream allowing centralised analysis of all activity within an installation; (Called a Foundation). There are also components to spot when an; unauthorised process modified any binaries of built containers, or works; around the immutable nature of a running container. How quickly a; response occurs depends on the customer's own incident management; processes and policies.
• Incident management type: Supplier-defined controls
• Incident management approach: How quickly a response occurs depends on the customer's own incident; management processes and policies. Should a problem be discovered in; the underlying VMware Tanzu platform, VMware Tanzu support staff will; respond within the SLA agreed timings.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: No

Energy efficiency

• Energy-efficient datacentres: No

Social Value

• Fighting climate change:

  Fighting climate change

  Sustainable growth for VMware’s business requires decoupling our company; growth from carbon emissions. To this end, we’ve accelerated our focus on; decarbonization and received third-party validation from the Science Based; Target Initiative (SBTi) on our science-based targets. Since 2018, we have; maintained our certified CarbonNeutral® company status, in accordance with; The CarbonNeutral Protocol. Since 2019, we have sourced 100 percent of our; power in our global facilities from renewable sources, in accordance with RE100; Reporting Guidance. • VMware’s net zero emissions goal builds on approved; science-based targets and expands the scope of our climate commitments. For; us, a net zero goal means reducing emissions for our entire carbon footprint. We; are focused on prioritizing energy efficiency within our operations through our; commitment to green buildings, working with our suppliers to reduce their; emissions, and supporting distributed workforces through our Future of Work; initiative. Through carbon financing, we support low carbon sustainable; development projects that enable carbon avoidance to offset our remaining; emissions. In line with the leading net zero guidance, we are developing our; strategy to include carbon removal projects to address residual emissions. • In; FY22, we furthered climate transition planning at VMware, guided by Taskforce; on Climate-related Financial Disclosures (TCFD) recommendations. As VMware; continues to learn more about climate risks, we can build longer time horizon; risks into our strategy to become even more sustainable and resilient.
• Covid-19 recovery:

  Covid-19 recovery

  Decisive action by VMware during the early days of the COVID-19 pandemic led; to a company-wide remote workforce, which our customers were able to; implement as well through VMware’s Workspace solutions. • Through VMware’s; unique Citizen Philanthropy approach to giving, we empower every VMware; employee—wherever they are—to be active, engaged citizens, contributing to; what matters most to them in their own communities. Throughout the; pandemic, VMware people delivered food to neighbors in need, made masks; and donated resources to frontline workers and relief efforts, and helped; nonprofit organizations strengthen their IT operations so they can focus on; supporting their communities. VMware also supported GlobalGiving’s; Coronavirus Relief Fund and TechSoup’s COVID-19 Response Fund, and raised; the limit on matching gifts available to all VMware people.
• Tackling economic inequality:

  Tackling economic inequality

  VMware IT Academy partners directly with more than 2,500 educational; institutions, governments and nonprofits globally to empower learners through; coursework, labs and experiences. To enrich learning and help jump-start; careers, our partner academic institutions can also access the latest suite of; VMware software solutions and use them in a hands-on educational; environment. VMware IT Academy is key to our 2030 goal of upskilling 15; million people through our educational offerings and creates a pipeline of; diverse talent that is available to advance companies’ digital journeys and; deploy VMware solutions. • VMware donates our technology to academic; institutions, enabling learners with access to technical training and labs across; technology solutions and companies through Academic Cloud. • VMware IT; Academy partners with the Rochester Institute of Technology (RIT) for their; Cybersecurity Bootcamp, an immersive, 15-week hands-on training course to; reskill or upskill unemployed individuals, including minorities and veterans. •; VMinclusion Taara offers free technical education on VMware products &; technology that enable digital business transformation, addressing the gender; gap in the Indian IT sector and empowering women with financial and social; independence. • VMware Responsible Sourcing supports sustainability,; diversity and accessibility across our supply chain. VMware has committed to; working with 75% of our suppliers (by spend) to set their own science-based; targets by the end of 2024. We are also prioritizing the sourcing of goods and; services through diverse businesses and have committed to spending $1.5B; with diverse suppliers through 2030. Our definition of diverse supplier includes:; small-business enterprises, minority-owned enterprises, woman-owned; enterprises, and businesses owned by other underrepresented groups such as; LGBTQ, veterans, and proprietors with disabilities.
• Equal opportunity:

  Equal opportunity

  VMware joined the Valuable 500, a global business collective that is igniting; systemic change and unlocking the business, social and economic value of more; than 1 billion people with disabilities around the world. From ensuring the; technology we develop is accessible for all to empowering our employees; through accessible, inclusive and innovative engagement and wellbeing; programs, our company remains committed to driving meaningful impact on; disability, wellness and neurodiversity inclusion. • As a leading software; company, user accessibility is top of mind at VMware. One of our ESG goals by; 2030 is to ensure the technology that we develop, and source within our supply; chain, is accessible for all. We created internal Accessibility Guidelines within; VMware and committed to assess all new software and events suppliers for; accessibility standards aligned with our own guidelines. • Employee Resource; Groups at VMware are called Power of Difference communities (“PODs”), and; they play a strategic role in building a culture of belonging. We are focused on; driving a culture that is inclusive of all forms of diversity, including supporting; employees with disabilities. In 2021, VMware was named a Best Place to Work; for Disability Inclusion by the Disability Equality Index (DEI). • Making VMware; more diverse, equitable and inclusive for our employees, customers and; communities is fundamental to who we are. That’s why measuring and achieving; equitable change is key to our 2030 Agenda. We have assigned compensation; performance goals around drivers that improve representation, including hiring; and retention of women globally and underrepresented minorities in the United; States, inclusive culture scores and diverse candidate slates. For interviews at; every level, our goal is to have all candidate interview slates include at least one; woman and one underrepresented minority (US only) candidate.
• Wellbeing:

  Wellbeing

  At VMware, we enrich lives at work, at home and in the community, because we; believe that empowering our people to bring their authentic selves to work; drives business excellence and enables us to achieve our business goals. We; prioritize employee wellbeing and work hard to foster a culture that is ethical; and respectful, kind and compassionate, which is defined by our EPIC2 values—; Execution, Passion, Integrity, Customers and Community. • Employee wellbeing; at VMware is a top priority as we believe people are the key to our success, and; we are always striving to make it easier for employees to pursue wellbeing on; their own terms, which will also help them perform well at work. We recognize; that VMware has a responsibility to help support our employees manage the; added complexities of their work and family situations since the start of the; COVID-19 pandemic. Our wellbeing benefits include: four supplemental days off; (our “EPIC2” days), life coaching and emotional support, work-life services for; employees and their families, and a wellbeing allowance

Pricing

• Price: £869.50 a unit
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: There is a free 90 day time limited and usage limited; version that can be used for testing and evaluation; purposes.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@uk.cdw.com. Tell them what format you need. It will help if you say what assistive technology you use.