Azure / Azure-Lighthouse-samples

Provide samples for understanding managed service solutions
MIT License
298 stars 302 forks source link

Microsoft Azure Lighthouse

Azure Lighthouse provides capabilities to perform cross-tenant management at scale. We do this by providing you the ability to view and manage multiple customers from a single context. When you log into Azure, you can see all of your customers who you are managing through Azure Lighthouse. Learn more.

This repository contains samples to help you use Azure Resource Manager to configure Azure delegated resource management and to configure monitoring and management of customer environments.

The templates shown below can be used to onboard a customer to Azure Lighthouse. You can deploy these manually, or use the "Deploy to Azure" buttons to deploy directly in the Azure portal.

Deploy to Azure buttons

Name Description Auto-deploy Manual deploy
Azure Lighthouse - Subscription Deployment onboard a subscription Deploy to Azure templates
Azure Lighthouse - Resource Group Deployment onboard a resource group Deploy to Azure templates
Azure Lighthouse - Multiple Resource Group Deployment onboard multiple resource groups Deploy to Azure templates
Azure Lighthouse + Azure AD PIM - Subscription Deployment onboard a subscription using Azure AD PIM Deploy to Azure templates
Azure Lighthouse + Azure AD PIM - Resource Group Deployment onboard a resource group using Azure AD PIM Deploy to Azure templates
Azure Lighthouse + Azure AD PIM - Multiple Resource Group Deployment onboard multiple resource groups using Azure AD PIM Deploy to Azure templates
Azure Lighthouse + Azure AD PIM Managing Tenant Approvers - Subscription Deployment onboard a subscription using Azure AD PIM with support for Managing tenant approvers Deploy to Azure templates
Azure Lighthouse + Azure AD PIM Managing Tenant Approvers - Resource Group Deployment onboard a resource group using Azure AD PIM with support for Managing tenant approvers Deploy to Azure templates
Azure Lighthouse + Azure AD PIM Managing Tenant Approvers - Multiple Resource Group Deployment onboard multiple resource groups using Azure AD PIM with support for Managing tenant approvers Deploy to Azure templates

Special Instructions (for MSPs): To customize, fork this repository, and follow these instructions to update the links to enable your customers to deploy your templates into their Azure environments.

Contributing

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.microsoft.com.

When you submit a pull request, a CLA-bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., label, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

If you contribute any changes affecting the buttons above, please also update the buttons following the instructions here.