Week of August-22

When we aspire to become Azure champions, governance is a central topic that simply needs to be addressed. Methodologies like Cloud Adoption Framework for Azure, and theEnterprise-scale approach within it, integrate governance very deep down in their implementation approach. This makes a lot of sense, because the more seamless governance is integrated, the more "natural" it feels to the users.

Azure Policies, the native framework, gives us a built-in, sophisticated option to provide guard rails to ensure, your governance rules are "enforced" or -at least- "audited" on an ongoing basis.

In the CAF methodology you should have noticed, that it makes heavy use of Azure Management Groups as well as a way to create a hierarchy for inheritance, including policy assignments, across subscriptions.

So Management Groups and Polices are two essential building blocks for building an effective and "hands off" governance strategy.

• Azure Policy (by John Savill)
• Azure Policy Doc
• Azure Friday - Azure Policy Intro / Enforce polices on your resources
• Azure Policy - Policy Driven Guardrails
• Azure Management Groups
• Governance with Azure (by John Savill)
• How to organize Azure subscriptions with Management Groups

Both building blocks take some time to wrap ones head around, but most certainly are essential tools, especially in larger organizations, to bring together the need for governance and compliance and self-service expectations of cloud users.