SharePoint farm for development testing

Azure Active Directory
VPN Gateway
SQL Server

Solution ideas

This article is a solution idea. If you'd like us to expand the content with more information, such as potential use cases, alternative services, implementation considerations, or pricing guidance, let us know by providing GitHub feedback.

This solution provides a small scale deployment of SharePoint, by using a single Azure Active Directory (Azure AD), SQL, and SharePoint resources.

Potential use cases

This solution address the capability to deliver agile development architecture to teams within your business, by using the latest and greatest support platforms.


Architecture diagram shows resource groups of storage, network, and virtual machines to SharePoint, Load Balancer, V P N gateway and finally to users. Download an SVG of this architecture.


  1. Create resource group for the storage, network, and virtual machine, plus other dependent elements.
  2. Create a virtual network to host the virtual machines and load balancers for the deployment. Ensure the network has appropriate Network Security Groups implement to protect network traffic flow.
  3. Create the storage accounts that will host the virtual machine images (VHDs).
  4. Create the Active Directory installation. Either utilizing a new Virtual Machine or using Azure Active Directory Domain Services. If using Azure Active Directory, you also need to consider synchronizing identities to Azure AD with Azure AD Connect.
  5. Install a supported version of SQL Server on an Azure VM or deploy a pay-as-you-go instance of SQL Server.
  6. Deploy SharePoint onto an Azure VM, or use a trial image from the gallery, which already has SharePoint Server installed.
  7. Create the SharePoint farm.
  8. Set up an Azure external load balancer to direct incoming HTTPS traffic to the SharePoint server.
  9. Use ExpressRoute or VPN Gateway for management access to resource group.
  10. On-premises users can access the SharePoint sites via the internet, ExpressRoute, or VPN Gateway.
  11. External users can be granted access as required to the SharePoint sites for testing.


  • Azure Resource Group: Container that holds related resources for an Azure solution
  • Virtual Network: Provision private networks, optionally connect to on-premises datacenters
  • Storage Accounts: Durable, highly available, and massively scalable cloud storage
  • Azure Active Directory: Synchronize on-premises directories and enable single sign-on
  • SharePoint Server: Microsoft's collaboration server product
  • Host enterprise SQL Server apps in the cloud
  • Load Balancer: Deliver high availability and network performance to your applications
  • Azure ExpressRoute: Dedicated private network fiber connections to Azure
  • VPN Gateway: Establish secure, cross-premises connectivity

Next steps