This repository echelix.agent.hosting defines base architecture to deliver an Agentic AI platform that enables rapid deployment of AI Agents and services. This platform is a base building block that we utilize to build out eco-systems
| Component | Purpose | Technology |
|---|---|---|
| Networking | Private VNet with subnets | Azure VNet, NSGs, Private Endpoints |
| AI Services | Machine learning & AI processing | Azure OpenAI, Cognitive Services |
| Security | Secrets & identity management | Azure Key Vault, Managed Identity |
| Monitoring | Observability & diagnostics | Application Insights, Log Analytics |
| DNS | Internal name resolution | Azure Private DNS Zones |
extenensive monorepo for the Demo AI platform, providing foundational infrastructure-as-code (IaC) for Azure and deployment automation. It is designed to support agentic workflows, scalable AI services, secure API management, and enterprise-grade infrastructure deployment.
echelix.platform/
├── README.md # Top-level overview (this file)
└── iac/ # Infrastructure-as-Code
└── azure/ # Azure Bicep templates
└── bicep/ # Bicep modules and templates
├── README.md # Azure IaC overview
├── deployment/ # Organized deployment scripts
│ ├── README.md # Deployment orchestration guide
│ ├── ai-platform/ # AI and messaging service deployment
│ │ └── README.md # AI platform deployment guide
│ └── dns/ # Internal DNS configuration
│ └── README.md # DNS setup guide
└── modules/ # Reusable Bicep modules
├── network/ # VNet, subnets, NSGs
│ └── README.md # Network module documentation
├── ai/ # AI services (OpenAI, etc.)
├── monitoring/ # Observability & logging
├── platform/ # Key Vault, shared resources
└── private-link/ # Private endpoints & DNS
- Infrastructure (IaC) - Azure Bicep templates and deployment automation
- Infrastructure Deployment - Azure resource provisioning
- Network Architecture - VNet and subnet design
- Deployment Orchestration - Script organization and execution order
The Echelix Platform is designed as a cloud-native, enterprise-grade infrastructure platform with the following key characteristics:
- 🏗️ Infrastructure-First Design: Complete Azure infrastructure defined as code using Bicep
- 🤖 AI-Ready Foundation: Infrastructure optimized for Azure OpenAI and AI services integration
- 🔐 Security by Design: Azure Key Vault integration, managed identities, and private networking
- 📈 Enterprise Scale: AKS-based deployment with auto-scaling and observability
- 🔌 Extensible Architecture: Modular design supporting additional services and integrations
- 📚 Production-Ready Templates: Battle-tested Bicep modules for enterprise deployment
Modern, modular Bicep templates for deploying enterprise-grade Azure infrastructure:
- Networking: Virtual networks, subnets, NSGs, and private endpoints
- Compute: Azure Kubernetes Service (AKS) with managed identity integration
- Security: Azure Key Vault, managed identities, and secure secret management
- Observability: Application Insights, Log Analytics, and monitoring dashboards
Key Resources:
- Azure CLI (authenticated)
- Docker Desktop (optional, for containerized deployments)
- kubectl (configured for AKS)
- Helm 3.x
- East US 2 (
eastus2) - ✅ Recommended default - West Europe (
westeurope) - South Central US (
southcentralus)
- West US 2 (
westus2) - North Central US (
northcentralus) - UK South (
uksouth)
# Verify Azure OpenAI availability in your chosen region
az cognitiveservices model list --location eastus2 --query "[?name=='gpt-4']"
# Check Form Recognizer availability
az provider show --namespace Microsoft.CognitiveServices --query "resourceTypes[?resourceType=='accounts'].locations" --location eastus2Notes:
- GPT-4 and advanced models have limited regional availability
- Form Recognizer capabilities vary by region
- Always verify current service availability as Azure expands AI service regions regularly
- Consider data residency requirements for your organization
- IF NEW AZURE SUBSCRIPTION RUN THE FOLLOWING
az provider register --namespace Microsoft.Insights
az provider register --namespace Microsoft.OperationalInsights
az provider register --namespace Microsoft.AlertsManagement
az provider register --namespace Microsoft.CognitiveServices
az provider register --namespace Microsoft.DocumentDB
az provider show --namespace Microsoft.OperationalInsights --query "registrationState"
# look for "Registered"-
🏗️ Deploy Infrastructure:
cd iac/azure/bicep # Follow the setup instructions in README.md ./deployment/ai-platform/1-deploy-ai.sh
See: Infrastructure Deployment Guide See: Deployment Orchestration Guide
- Infrastructure Setup: Deploy the foundational Azure infrastructure using Bicep templates
- Network Configuration: Configure networking, ingress, and DNS for your applications
- Monitor & Debug: Use the built-in observability tools for monitoring and troubleshooting
- 🌐 Private Networking: Complete private network setup with internal DNS
- 🔐 Zero-Trust Security: Managed identities, Key Vault integration, private endpoints
- 📊 Observability: Application Insights, structured logging, health checks
- 🔄 GitOps Ready: Infrastructure and application deployment automation
- 🎯 Production Ready: High availability, auto-scaling, disaster recovery considerations
Maintained by: Echelix Engineering Team
Last Updated: August 2025
Platform Version: 0.1.0