michael-hettwer.com

Direct Connect

← Back to Blog
·8 min read

CentOS 7 End-of-Life: What companies need to do now

CentOSAlmaLinuxMigration

The Situation

Official support for CentOS 7 ended on June 30, 2024. That means: no more

security updates, no bug fixes, no official point of contact from Red Hat or

the CentOS community. Anyone still running CentOS 7 is now actively operating a

security risk.

Despite this, thousands of production servers were still running CentOS 7 at the time this article was written.

The reasons are well-known: migrations cost time, money, and nerves – especially when

systems are closely intertwined and no clear inventory exists.

What options are there?

1. AlmaLinux (my recommendation for most cases)

AlmaLinux is a binary-compatible drop-in replacement for RHEL 9. The migration from

CentOS 7 is well-documented, Ansible roles exist, and the community is active.

For most workloads, the migration effort is manageable.

2. Rocky Linux

Also RHEL-compatible, with a similar approach. The choice between AlmaLinux and Rocky Linux

is often a matter of preference – both are legitimate options.

3. Debian or Ubuntu LTS

If the workload is containerized anyway or relies heavily on open-source packages,

switching to Debian/Ubuntu might make more sense. The migration effort is greater

since there is no binary compatibility.

4. Extended Lifecycle Support (ELS)

Providers like TuxCare offer paid security updates for CentOS 7.

This is a bridge solution, not a permanent one.

How does a migration typically work?

1. Inventory: Which servers are running CentOS 7? Which packages, services, configurations?

2. Prioritization: Which systems are critical? Which have few dependencies?

3. Test environment: Migrate in non-production environments first, identify problems.

4. Automation: Ansible allows migrations to be carried out reproducibly and in parallel.

5. Rolling rollout: System by system, with a rollback option until confirmed.

6. Validation: Monitoring, automated tests, manual verification after migration.

Common pitfalls

  • **Third-party software:** Old RPM packages often no longer work on RHEL 9.

Check if your software supports AlmaLinux 9 before migrating.

  • **Missing documentation:** Many systems have no documentation. The migration effort

depends heavily on what is actually running on the system.

  • **No inventory:** Planning without an up-to-date inventory is flying blind. Ansible Facts

help enormously here.

Conclusion

CentOS 7 End-of-Life is no longer a hypothetical risk – it has happened. Anyone who has

not yet migrated should make it a priority. For most environments, AlmaLinux 9 is

the most pragmatic option. With the right automation, even a large migration is

manageable.

If you have questions or need support – send me a message.

Questions or feedback regarding this article?

Send Message