Lenovo Validated Design: Deploying Workloads at the Edge Using SUSE Edge 3.3

This Lenovo Validated Design describes deploying Kubernetes workloads at the edge using SUSE Edge 3.3 on Lenovo ThinkEdge servers. It outlines a scalable, secure, and low-touch methodology for provisioning and managing edge infrastructure across distributed environments. The solution leverages SUSE Elemental for automated OS and Kubernetes deployment and Rancher Prime Continuous Delivery for GitOps-based application lifecycle management.

Key challenges addressed include limited on-site technical expertise, complex logistics, physical security vulnerabilities, and constrained connectivity. The architecture decouples deployment phases, enabling independent progress of hardware, OS, and application layers, thus improving agility and reducing time-to-value. Enhanced security is ensured through hardware-based encryption, tamper detection, and UEFI/XClarity Controller hardening.

This guide is intended for edge solution architects and demonstrates how to achieve friction-free logistics, resilient workloads, and automated application delivery at scale, making it a replicable model for modern edge computing initiatives.

1. Introduction
2. Business Challenges and Key Benefits
3. Architectural Overview
4. Enhanced Security at the Edge
5. Secure Hardening Recommendation
6. Edge Deployment
7. Conclusion
8. Appendix: Lenovo ThinkEdge Security Features
9. References
Trademarks and special notices
Document history
Related product families

To view the document, click the Download PDF button.

Related product families

Product families related to this document are the following:

• Artificial Intelligence
• Edge Servers