![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 54%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
Azure Blueprints
An Azure service that provides templates for quick, repeatable creation of fully governed cloud subscriptions.
70 questions
Hi @Richa Kumari ,
After getting an Azure subscription, there are several steps you should take to set up a new environment for production use. Here is a basic checklist to follow:
- Choose the Azure environment and region for your deployment.
- Determine how many resources and what kind of resources you need for scale and redundancy.
- Assign an Azure subscription owner role for when you create the CMG (Cloud Management Gateway) in Azure.
- Review the internet access requirements to make sure each required service can be reached.
- Establish a cross-functional DevOps platform team to build, manage, and maintain your workload.
- Involve the security team in the planning and design of the DevOps process to integrate preventive and detective controls for security risks.
- Clearly define CI/CD (Continuous Integration / Continuous Delivery) roles and permissions and minimize the number of people who have access to secure information or resources.
- Configure quality gate approvals in DevOps release process.
- Integrate scanning tools within CI/CD pipeline.
- No infrastructure changes, provisioning or configuring, should be done manually outside of IaC (Infrastructure as Code).
In addition to these steps, you should also consider branding, architecture, and monitoring from a security point of view.
- For more information on architecture in Azure, please refer this Azure Architecture Center documentation.
- For more information on reliability in Azure, please refer this Azure Reliability documentation.
- For more information on adoption and branding in Azure, please refer this Cloud Adoption Framework for Azure documentation.
- For more information on Azure operational security and secure deployment in Azure, please refer to the following resources:
- Set up checklist for CMG
- Azure operational security checklist
- Secure deployment in Azure checklist
- .NET on Azure development environment checklist
Just FYI, this response is partially based on Q&A AI Assist and posted after manually validating the accuracy of the response and making necessary changes as appropriate.