Azure Landing Zone Blueprint

A practical, governance-first blueprint that mirrors how (some) enterprises actually set up Azure:

Tenant/bootstrap (some portal/CLI/PIM steps)
Terraform for management groups, policy-as-code, subscriptions, platform, and application workloads. Terraform modules are used which can be referenced to create resources, abstracting some repeatable configuration and security defaults.

Personal project. Built from scratch with generic patterns and synthetic values. No employer IP.

Why this repo?

Realistic flow: documents unavoidable tenant steps, then automates everything else.
Guardrails first: management groups + policy assignments before platform/services.
Extendable: start small; grow modules and examples incrementally.

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
.github/workflows		.github/workflows
00-tenant-initialization		00-tenant-initialization
10-management-groups		10-management-groups
20-platform-subscriptions		20-platform-subscriptions
30-platform-services		30-platform-services
40-spoke-workloads		40-spoke-workloads
modules/storage-account		modules/storage-account
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
security-check.ps1		security-check.ps1