Azure Platform Architecture Topics

This site focuses on reusable architecture patterns and operating decisions for governed enterprise Azure platforms.

Azure Landing Zones

Governed cloud foundations, subscription design, policy baselines and product-team onboarding. Read Azure Landing Zones and Designing Azure Landing Zones for Product Teams.

Sovereign Cloud

Control boundaries, regulated Azure environments, evidence, resilience and operational governance. Read Sovereign Cloud.

Azure Virtual Desktop

Enterprise desktop platforms, secure access, profiles, networking and repeatable operations. Read Azure Virtual Desktop and Secure access to Azure Virtual Desktop with FIDO2 security keys.

Azure Networking

Secure connected landing zones, private endpoints and private name resolution. Read Azure Networking, Private Endpoints Need Private DNS Zones and Private DNS at Scale in Azure Landing Zones.

Designing Pod-Based Global DNS for Azure Landing Zones - coming after that.

Identity & Security

Microsoft Entra ID, privileged access and identity-driven platform controls. Read Identity & Security and Enable Continuous Access Evaluation in Microsoft Entra ID.

Infrastructure as Code

Terraform, policy-as-code and automated platform delivery. Read Infrastructure as Code and Designing Azure Landing Zones for Product Teams.

Platform Engineering

Governed self-service for product teams and secure multi-tenant Azure platforms. Read Platform Engineering and Designing Azure Landing Zones for Product Teams.