Azure Landing Zones Journey #

Process for Platform Landing Zones #

1. Create required platform subscriptions (management, identity, and connectivity)

2. Bootstrap Decisions

3. Prepare the Bootstrap PS Module and its GitHub environment. This sets up the version control system, continuous delivery pipeline, and required Azure management IDs to be used to create any new environment.

4. Configure and run the Terraform code the bootstrap created from the basics to our HHS desired state including Aviatrix networking. This becomes the Main HHS Platform Tenant Repository and is idempotent for the ultimate “source of truth” going forward.

5. Create a repository for and run the EPAC tool. This will attach to the landing zones created above and will continue to manage all policies across the subscriptions.

Process for Application Landing Zones #

1. TODO

References #

• ALZ PowerShell Module
• Azure Landing Zones Documentation
• Subscription Vending
• Architecture Center
• Landing Zones Journey