Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
Red Hat Satellite engineering is moving the tracking of its product development work on Satellite to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "Satellite project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs will be migrated starting at the end of May. If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "Satellite project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/SAT-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 828518

Summary: [RFE] Support local entitlement and update at Cloud Resource Provider in CloudForms Achitecture
Product: Red Hat Satellite Reporter: james labocki <jlabocki>
Component: Subscription ManagementAssignee: satellite6-bugs <satellite6-bugs>
Status: CLOSED WONTFIX QA Contact: Katello QA List <katello-qa-list>
Severity: low Docs Contact:
Priority: unspecified    
Version: 6.0.0CC: bkearney, mmccune, tomckay, zhunting
Target Milestone: UnspecifiedKeywords: FutureFeature, Triaged
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-12-12 14:21:52 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description james labocki 2012-06-04 20:19:51 UTC 
Currently customer's IT-security will not allow this product to be deployed inside their firewall to manage systems at Amazon: 

    Having systems connect back to inside their perimeter security is usually seen as breach of the security architecture. 

    A VPN actually makes it worse, because it moves the perimeter security to the cloud resource provider. 

This prohibits all major use-cases. Purely on-premise use-cases using RHEVM and/or VMWare may be feasible, but in my opinion for this case the RHEV-M user portal and Satellite/cobbler are more usable for now. Also, it leads to increased cost from a data transfer standpoint if data is not local within the provider.

This is a request to move to an architecture that allows update and entitlement of systems to occur in the cloud resource provider and have federation of the data into the on-premise system in a secure manner.
Comment 2 Tom McKay 2016-12-12 14:21:52 UTC 
Due to the age of this BZ it is not currently scheduled for implementation. If there is more info for the feature and continued customer need, please reopen. Associating with customer cases will also help in prioritization.
Thank you