> ## Documentation Index > Fetch the complete documentation index at: https://www.qovery.com/docs/llms.txt > Use this file to discover all available pages before exploring further. # Production Environment Management > Manage production environments with Qovery ## Overview Managing production environments requires robust infrastructure, high availability, security, and comprehensive monitoring. Qovery provides the tools and features to ensure your production workloads run reliably and securely. ## Prerequisites **Production Cluster Required**: Before following this guide, you need a Kubernetes cluster flagged as **Production** in Qovery. **Don't have a cluster yet?** Let Qovery provision and manage your production-grade Kubernetes cluster on AWS, GCP, Azure, or Scaleway Connect your existing Kubernetes cluster When creating your cluster: * Flag it as **Production** environment type * Use production-grade instance types (minimum 2 vCPU, 8GB RAM) * Enable multi-AZ deployment for high availability ## Key Production Features Multi-AZ deployment with automatic failover Horizontal pod autoscaling based on CPU/memory Built-in observability with Prometheus, Thanos, and Loki SOC 2, GDPR compliant infrastructure ## Production Setup ### 1. Application Configuration Deploy your application and configure it for production. Follow the guide to deploy your application to production **Production application settings**: * Enable **Auto-Scaling** to handle traffic spikes * Set appropriate **resource limits** (CPU and memory) * Configure **health checks** (liveness and readiness probes) * Set up **custom domains** with SSL/TLS ### 2. Database Configuration Configure your production database with backups and high availability. Follow the guide to set up and connect your database **Production database recommendations**: * Use **Managed** mode for automatic backups and maintenance * Enable **Multi-AZ** for high availability (cloud provider feature) * Configure backup retention via your cloud provider * Use strong passwords and restrict access ### 3. Environment Variables & Secrets Securely manage your production configuration. Configure variables and secrets for your applications **Best practices**: * Use **Secrets** type for sensitive data (passwords, API keys) * Never commit secrets to Git * Use environment-specific variables * Consider [Doppler integration](/integrations/secret-managers/doppler) for advanced secret management ### 4. Access Control Configure role-based access control for your team. Set up roles and permissions for your organization **Production access**: * Limit production access to essential team members * Use custom roles with specific permissions * Enable MFA for all production users * Regular access reviews ## Monitoring and Observability ### Application Monitoring Qovery provides built-in observability for your production applications. Access logs, metrics, and monitoring for your services **Available features**: * **Logs**: 12-week retention with Loki * **Metrics**: Prometheus and Thanos for monitoring * **Service Metrics**: CPU, memory, network, and application metrics * **Events**: Track deployments and service events ## Deployment Strategy Configure your deployment pipeline for production. Automatic deployments on Git push Configure multi-stage deployments View and rollback deployments Integrate with GitHub Actions, GitLab CI, etc. ## Production Checklist * [ ] Production cluster created and flagged as Production * [ ] Multi-AZ deployment enabled * [ ] Production-grade instance types configured * [ ] Network and security configured * [ ] Auto-scaling configured * [ ] Resource limits set * [ ] Health checks enabled * [ ] Custom domains configured with SSL * [ ] Multiple replicas running * [ ] Managed database configured * [ ] Backups enabled via cloud provider * [ ] Multi-AZ enabled for high availability * [ ] Strong passwords configured * [ ] RBAC configured with appropriate roles * [ ] Secrets used for sensitive data * [ ] Access limited to essential team members * [ ] Network security configured * [ ] Qovery Observe configured * [ ] Logs retention configured * [ ] External monitoring integrated (optional) * [ ] Key metrics monitored ## Next Steps Set up monitoring and logging Configure RBAC, secrets, and audit logs Set up preview environments for testing Migrate your application from Heroku to AWS