Your responsibilities when using Schematics
Learn about the management responsibilities and terms and conditions that you have when you use IBM Cloud® Schematics. For a high-level view of the service types in IBM Cloud and the breakdown of responsibilities between you as the client and IBM for each type, see Shared responsibilities for IBM Cloud offerings.
Review the following sections for the specific responsibilities for you and for IBM when you use IBM Cloud Schematics. For the overall terms of use, see IBM Cloud Terms and Notices. For responsibilities that you have for other IBM Cloud services that you use with Schematics, refer to the documentation of those services, such as Red Hat OpenShift on IBM Cloud responsibilities.
| Resource | Description | Schematics service | Schematics agents |
|---|---|---|---|
| Data | Customer-owned content that includes all data that is managed and controlled by the customer. Examples include information that are stored into volumes, files, and databases hosted on Cloud resources and data processed, stored, and logged by the client applications hosted on IBM Cloud. It doesn't include client metadata, the information that is used by IBM to provide services to the client support and operate the client account, services, and resources that are always considered to be shared responsibility between client and IBM. | Customer-owned such as Templates, Git repository URL, input data, Terraform logs, state file. Client metadata such as Client email ID, workspace, action names. |
Customer-owned content such as Agent data, Agent policies. Client metadata such as Agent location, Agent name. |
| Applications | Customer-owned software components, such as executables, web applications, middleware, frameworks, libraries, and other software packages that the client developed or acquired by third parties and deployed in IBM Cloud. | None | Customer-owned software components installed in agents runtime. |
| Service instance | An entity that consists of resources that are reserved for a particular service. | Schematics service instance such as Workspaces, Actions, Inventories | Schematics service instance such as agents instance. |
| Operating systems | The Operating System software and configuration that are deployed in virtual or bare metal servers, such as Linux, Windows, or similar to the ones provided in stock images. | Universal Base Image (UBI-8) | Universal Base Image (UBI-8) |
| Virtual and bare metal servers | The virtual or bare metal servers that are ordered and managed through IBM Cloud services. | IBM owns the IKS used by Schematics. | Client manages the IKS / ROKS / Kubernetes cluster where agents are deployed. |
| Virtual storage | The block, file, or Object Storage buckets ordered and managed through IBM Cloud. | IBM owns Cloudant, COS, RabbitMQ, Redis - used by Schematics | Client owns and manages the instances. IBM owns the IKS local storage used by Schematics agents COS that are used by Schematics agents |
| Virtual network | Network resources such as VLAN, VPC, subnets, or IPs provided by classic infrastructure and VPC services that are ordered and managed through IBM Cloud. |
IBM owned Network resources used by Schematics | Client owns and manages the network resources such as ingress, egress policies used by agents. |
| Hypervisor | The software and configuration that is deployed in physical servers to host and manage the lifecycle of virtual servers. | IBM owns the IKS used by Schematics | Client owns IKS / ROKS / Kubernetes cluster only if client uses cluster provided by IBM IKS. |
| Physical servers and memory | The physical compute devices and resources, such as cores, memory, and GPUs used to host the virtual or bare metal servers. | IBM owns the IKS used by Schematics | Client owns, if cluster provided by Customer. IBM owns if the cluster is provided by IKS / ROKS / Kubernetes. |
| Physical storage | The physical storage devices and resources, such as disks and storage devices that are used to host the virtual block, file, or Object Storage buckets. | IBM owns the IKS used by Schematics | Client owns, if cluster provided by Customer. IBM owns if the cluster is provided by IKS / ROKS / Kubernetes. |
| Physical network and devices | The physical network devices and resources, such as switches, routers, gateways, firewalls, and load balancers that are used to host the virtual network resources. | IBM owns the IKS used by Schematics | Client owns, if cluster provided by Customer. IBM owns if the cluster is provided by IKS / ROKS / Kubernetes. |
| Facilities and data centers | The physical data center buildings with power, cooling, and rooms for all the IBM Cloud physical equipment. | IBM owns the IKS used by Schematics | Client owns, if cluster provided by Customer. IBM owns if the cluster is provided by IKS / ROKS / Kubernetes. |
Incident and operations management
Includes tasks such as monitoring, event management, high availability, problem determination, recovery, and full state backup and recovery.
Change management
Includes tasks such as deployment, configuration, upgrades, patching, configuration changes, and deletion.
Identity and access management
Includes tasks such as authentication, authorization, access control policies, and approving, granting, and revoking access.
Security and regulation compliance
Includes tasks such as security controls implementation and compliance certification.
Disaster recovery
Includes tasks such as providing dependencies on disaster recovery sites, provision disaster recovery environments, data and configuration backup, replicating data and configuration to the disaster recovery environment, and failover on disaster events.