AZ-305: Azure Architect

Introduction

• Azure abstractions
  • management group: a group of subscriptions where access and policy can be established and inherited by subscriptions.
  • subscriptions: a group of user accounts and the resources created by those users. Quotas and limits can be set at this level.
  • resource groups: a collection of resources that support a single application or product
  • resources: individual products like database, storage, compute
• Azure regions and availability
  • regions are geographic areas that are serviced by at least one data center. The

Building a cloud governance strategy

A governance strategy helps control access to applications and resources to maintain compliance, if necessary.

Governance is most beneficial when you have:

• Multiple engineering teams working in Azure.
• Multiple subscriptions to manage.
• Regulatory requirements that must be enforced.
• Standards that must be followed for all cloud resources.

Controlling access to cloud resources using RBAC

Role-based access control (RBAC) assigns access based on a role, not the individual. A single person can have more than one role.