Edit

List of service catalog templates

The current list of Azure services and workload templates in the service catalog.

Table of Azure Service templates

These customer workload accelerators are available from the workload service catalog or scripts

Template Name Documentation Status
Admin VM link Available
App Service: Web App link Available
Azure Container Registry (ACR) link Available
Azure Cosmos DB link Available
Azure Kubernetes Service (AKS) link Available
Azure SQL link Available
ExpressRoute Connection link Available
Common Dependencies link Available
App Service: Functions link Available
Key Vault link Available
Private DNS Zones link Available
Service Bus link Available
Workload Quickstart link Available
Storage Account link Available
Virtual Machine link Available
VPN Connection link Available

Admin VM

How to create an Admin VM

Description: A Virtual Machine (VM) created to securely access enclave resources for administrative purposes. Admin VM Virtual Machines (VMs) that can be remotely accessed through Azure Bastion.

Documentation: Understanding Admin VMs

Common Dependencies

How to create the common Azure service dependencies you need to create the other resources from the service catalog

Description: This template creates the resources needed to secure the other resources you can deploy from the service catalog and remain compliant with the Azure Enclave policies. These resources include the key vault and Customer Managed Keys (CMK) needed to encrypt the resources in your enclave.

Documentation:

Private DNS Zones

How to create the Private DNS Zones you need for your other resources from the service catalog

Description: This template makes it easier to create the Private DNS Zones needed for you to access your Azure resources or create custom Private DNS Zones to access your custom zones. The records contained in a private DNS zone aren't resolvable from the Internet. DNS resolution against a private DNS zone works only from virtual networks that are linked to it. Private DNS zones linked to a virtual network are queried first when using the default DNS settings of a virtual network.

Virtual Machine

How to create a Virtual Machine

Description: This template creates a virtual machine. You can decide if the Virtual Machine is joined to the domain or published as a RemoteApp.

Documentation: RemoteApp Streaming Overview How-to deploy a Streaming App (RemoteApp)

VPN Connection

How to create an Azure Enclave compliant VPN Connection

Description: This template creates a site-to-site VPN connection from a Transit Hub VPN gateway to an on-premises VPN device. It can also create the customer-side VPN connection when the required gateway resources already exist. Learn more

Storage Account

How to create an Azure Enclave compliant Storage Account

Description: This template deploys an Azure storage account available from the virtual network inside the Azure Enclave. The template deploys the storage account with customer managed keys and other policies required to operate inside an Azure Enclave. Learn more

Key Vault

Description: Azure Key Vault is one of several key management solutions in Azure, and helps solve the following problems:

  • Secrets Management - Azure Key Vault can be used to Securely store and tightly control access to tokens, passwords, certificates, API keys, and other secrets
  • Key Management - Azure Key Vault can be used as a Key Management solution. Azure Key Vault makes it easy to create and control the encryption keys used to encrypt your data.
  • Certificate Management - Azure Key Vault lets you easily create, manage, and deploy public and private certificates for use with Azure and your internal connected resources.

Documentation: About Azure Key Vault Azure Key Vault basic concepts

App Service Web App

How to create an Azure Enclave compliant App Service Web App

Description: Azure Web Apps provides a fully managed platform for building and hosting web applications using popular programming languages such as .NET, Java, Node.js, Python, and PHP. Learn more

App Service Function App

How to create an Azure Enclave compliant App Service Function

Description: Azure Functions is a serverless solution that allows you to write less code, maintain less infrastructure, and save on costs. Instead of worrying about deploying and maintaining servers, the cloud infrastructure provides all the up-to-date resources needed to keep your applications running. Learn more

Azure SQL

How to create an Azure Enclave compliant Azure SQL

Description: Azure SQL Database, a fully managed platform as a service (PaaS) database engine that handles most of the database management functions such as upgrading, patching, backups, and monitoring without user involvement. Learn more

ExpressRoute Connection

How to create an Azure Enclave compliant ExpressRoute Connection

Description: This template connects a Transit Hub ExpressRoute gateway to a customer-owned ExpressRoute circuit. Use this template when you already have a provisioned circuit with private peering configured. Learn more

Workload Quickstart

How to create an Azure Enclave compliant Workload Quickstart

Description: This template quickly creates the common workload resources you need in Azure Enclave, including private DNS zones, a key vault with a customer-managed key, a user-assigned managed identity, a disk encryption set, a storage account, and a virtual machine. Learn more

Azure Kubernetes Service (AKS)

How to create an Azure Enclave compliant AKS

Description: Azure Kubernetes Service (AKS) is a managed Kubernetes service that you can use to deploy and manage containerized applications. You need minimal container orchestration expertise to use AKS. AKS reduces the complexity and operational overhead of managing Kubernetes by offloading much of that responsibility to Azure. Learn more

Azure Container Registry (ACR)

How to create an Azure Enclave compliant ACR

Description: Azure Container Registry allows you to build, store, and manage container images and artifacts in a private registry for all types of container deployments. Use Azure container registries with your existing container development and deployment pipelines. Use Azure Container Registry Tasks to build container images in Azure on-demand, or automate builds triggered by source code updates, updates to a container's base image, or timers. Learn more

Azure Cosmos DB

How to create an Azure Enclave compliant Cosmos DB

Description: Azure Cosmos DB simplifies and expedites your application development by being the single database for your operational data needs, from geo-replicated distributed caching to back up to vector indexing and search. It provides the data infrastructure for modern applications like AI agent, digital commerce, Internet of Things, and booking management. It can accommodate all your operational data models, including relational, document, vector, key-value, graph, and table. Learn more

Service Bus

How to create an Azure Enclave compliant Service Bus

Description: Azure Service Bus is a fully managed enterprise message broker with message queues and topics and subscriptions. Service Bus is used to decouple applications and services from each other. Learn more