Governance, security, and compliance in Azure

As you establish corporate policy and plan your governance strategies, you can use tools and services like Azure Policy, Azure Blueprints, and Azure Security Center to enforce and automate your organization's governance decisions. Before you start your governance planning, use the governance benchmark tool to identify potential gaps in your organization's cloud governance approach. For more information about developing governance processes, see the Govern methodology.

Azure Blueprints enables cloud architects and central information technology groups to define a repeatable set of Azure resources that implements and adheres to an organization's standards, patterns, and requirements. Azure Blueprints makes it possible for development teams to rapidly build and stand up new environments and trust that they're building within organizational compliance using a set of built-in components like networking to speed up development and delivery.

Blueprints are a declarative way to orchestrate the deployment of various resource templates and other artifacts like:

  • Role assignments.
  • Policy assignments.
  • Azure Resource Manager templates.
  • Resource groups.

Create a blueprint

To create a blueprint:

  1. Go to Blueprints: Getting started.
  2. In the Create a Blueprint section, select Create.
  3. Filter the list of blueprints to select the appropriate blueprint.
  4. Enter the Blueprint name, then select the appropriate Definition location.
  5. Select Next : Artifacts, then review the artifacts included in the blueprint.
  6. Select Save Draft.
  1. In the Azure portal, go to Blueprints: Get started.
  2. In the Create a Blueprint section, select Create.
  3. Filter the list of blueprints to select the appropriate blueprint.
  4. Enter the Blueprint name, then select the appropriate Definition location.
  5. Select Next : Artifacts, then review the artifacts included in the blueprint.
  6. Select Save Draft.

Publish a blueprint

To publish a blueprint artifacts to your subscription:

  1. Go to Blueprints: Blueprint definitions.
  2. Select the blueprint you created in the previous steps.
  3. Review the blueprint definition, then select Publish blueprint.
  4. Provide a Version (such as 1.0) and any Change notes, then select Publish.
  1. In the Azure portal, go to Blueprints: Blueprint definitions.
  2. Select the blueprint definition you created in the previous steps.
  3. Review the blueprint definition, then select Publish blueprint.
  4. Provide a Version (such as 1.0) and any Change notes, then select Publish.