Enterprise Support
for AlmaLinux

Organizations often deploy products or services on their available hardware that they intend to last for a long time – and no one wants to be updating the operating system after things are already up and running. Updating may bring performance regressions and incompatibilities of the older software with newer kernels and dependencies, causing high maintenance costs during the upgrade cycle.

TuxCare’s Essential Support delivers an industry-leading 16-year long lifecycle for AlmaLinux, extending the industry standard by 6 more years with continued security fixes for high and critical vulnerabilities. At the same time, customers, who need to stay on the specific AlmaLinux minor release for longer than 6 months, can opt for the Extended Security Updates and continue receiving high and critical security fixes for it for 4.5 additional years. Such long-term support solutions enable superior predictability and help avoid the performance and maintenance costs of redeployment to a newer platform.

KernelCare and LibCare provide rapid security patches for the AlmaLinux kernel and critical userspace packages, such as glibc and OpenSSL. They deploy security patches in memory without system restarts, downtime, or disruptions, helping you eliminate maintenance windows while staying secure and compliant with several regulatory security patching requirements, like CIS Controls, NIST CSF, PCI DSS, and ISO 27001.

TuxCare has invested in the FIPS validation process to provide the AlmaLinux community with FIPS-validated components for AlmaLinux 9.2 (including the kernel and OpenSSL) for free. However, if not updated with the latest security fixes, the value from the security baseline established by the FIPS certification may be compromised.

The majority of organizations can run their systems on validated cryptography and, at the same time, benefit from the vulnerability patches that do not change the validated cryptography. These patches are called FIPS compliant. TuxCare’s Extended Security Updates service delivers organizations with FIPS-compliant security patches for the FIPS-certified AlmaLinux release for as long as the FIPS certificate remains valid (5 years).

If there is a cryptographic vulnerability, we fix it by delivering a new packaged kernel. Customers can reboot and install this kernel to update their systems. We intend to get every new kernel that modifies cryptography through the re-certification process designed for CVE fixes. It is much faster than the initial certification process for an operating system. This ensures that new kernels that contain a vulnerability fix on their cryptography will be attested to comply with FIPS 140-3 requirements.

The TuxCare’s Enhanced Support option provides an enterprise-grade support service covering a range of open-source software running on AlmaLinux (such as infrastructure applications, databases, web servers, containers, etc.), and also delivers configuration assistance, data storage/backup assistance, operating system migration, and upgrades. Its simplified hourly support pricing (5, 10, and 20-hour bundles) helps you avoid paying costly upfront support package fees and enables you to only pay for the support you need – and nothing else.

All services are independent and can be purchased based on your specific requirements and needs. Contact a TuxCare Linux security expert to get started.