Management and governance architecture design
Management and governance includes critical tasks like:
- The monitoring, auditing, and reporting of security and business requirements.
- Implementing backup, disaster recovery, and high availability.
- Ensuring compliance with internal requirements and external regulations.
- The protection of sensitive data.
Azure provides a wide range of services to help you with management and governance. Here are a few examples:
- Azure Attestation. Remotely verify the trustworthiness of a platform and the integrity of the binaries running inside it.
- Azure confidential ledger. Store and process confidential data with confidence.
- Azure Purview. Govern, protect, and manage your data.
- Azure Policy. Achieve real-time cloud compliance at scale with consistent resource governance.
- Azure Stack. Place technologies and services in appropriate locations, based on your business requirements. Meet custom compliance, sovereignty, and data gravity requirements.
- Azure Backup. Define backup policies and provide protection for a wide range of enterprise workloads.
- Azure Site Recovery. Keep your business running with built-in disaster recovery.
- Azure Archive Storage. Store rarely accessed data.
- Azure Monitor. Get full observability into your applications, infrastructure, and network.
- Azure Update Manager. Centrally manage updates and compliance at scale.
Introduction to management and governance on Azure
If you're new to management and governance on Azure, the best way to learn more is with Microsoft Learn training, a free online training platform. Microsoft Learn provides interactive training for Microsoft products and more.
Here are some resources to get you started:
- Learning path: Manage information protection and governance
- Module: Design an enterprise governance strategy
- Module: Design a solution for backup and disaster recovery
Path to production
The following sections provide links to reference architectures in some key management and governance categories:
Backup
- Azure Backup architecture and components
- Support matrix for Azure Backup
- Backup cloud and on-premises workloads to cloud
Disaster recovery
- Azure to Azure disaster recovery architecture
- Support matrix for Azure VM disaster recovery between Azure regions
- Integrate Azure ExpressRoute with disaster recovery for Azure VMs
- Move Azure VMs to another Azure region
- Business continuity and disaster recovery (BCDR) for Azure VMware Solution enterprise-scale scenario
- Use Azure Local stretched clusters for disaster recovery
High availability
- High availability enterprise deployment using App Service Environment
- Baseline zone-redundant web application
- Deploy highly available NVAs
- Highly available SharePoint farm
- Recommendations for using availability zones and regions
Compliance and governance
Hybrid management
- Azure Arc hybrid management and deployment for Kubernetes clusters
- Back up files and applications on Azure Stack Hub
- Enable virtual machine protection in Azure Site Recovery
- Hybrid availability and performance monitoring
Update management
Best practices
The Azure Well-Architected Framework is a set of guiding tenets that you can use to improve the quality of your architectures. For management and governance best practices, see:
For additional guidance, see:
Stay current with management and governance
Get the latest updates on Azure management and Azure governance technologies.
Additional resources
Following are a few more management and governance architectures to consider:
- Management and monitoring for an Azure VMware Solution enterprise-scale scenario
- Computer forensics chain of custody in Azure