Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The current list of Azure services and workload templates in the service catalog.
Table of Azure Service templates
These customer workload accelerators are available from the workload service catalog or scripts
| Template Name | Documentation | Status |
|---|---|---|
| Admin VM | link | Available |
| App Service: Web App | link | Available |
| Azure Container Registry (ACR) | link | Available |
| Azure Cosmos DB | link | Available |
| Azure Kubernetes Service (AKS) | link | Available |
| Azure SQL | link | Available |
| ExpressRoute Connection | link | Available |
| Common Dependencies | link | Available |
| App Service: Functions | link | Available |
| Key Vault | link | Available |
| Private DNS Zones | link | Available |
| Service Bus | link | Available |
| Workload Quickstart | link | Available |
| Storage Account | link | Available |
| Virtual Machine | link | Available |
| VPN Connection | link | Available |
Admin VM
Description: A Virtual Machine (VM) created to securely access enclave resources for administrative purposes. Admin VM Virtual Machines (VMs) that can be remotely accessed through Azure Bastion.
Documentation: Understanding Admin VMs
Common Dependencies
Description: This template creates the resources needed to secure the other resources you can deploy from the service catalog and remain compliant with the Azure Enclave policies. These resources include the key vault and Customer Managed Keys (CMK) needed to encrypt the resources in your enclave.
Documentation:
- Key Vault
- Customer Managed Key (CMK) for encryption
- Disk Encryption Set (DES) for disk encryption
- Storage Account quickstart. See the separate Storage Account service catalog template for more deployment customization
- Managed Identity to securely access your resources within Azure Enclave
Private DNS Zones
How to create the Private DNS Zones you need for your other resources from the service catalog
Description: This template makes it easier to create the Private DNS Zones needed for you to access your Azure resources or create custom Private DNS Zones to access your custom zones. The records contained in a private DNS zone aren't resolvable from the Internet. DNS resolution against a private DNS zone works only from virtual networks that are linked to it. Private DNS zones linked to a virtual network are queried first when using the default DNS settings of a virtual network.
Virtual Machine
How to create a Virtual Machine
Description: This template creates a virtual machine. You can decide if the Virtual Machine is joined to the domain or published as a RemoteApp.
Documentation: RemoteApp Streaming Overview How-to deploy a Streaming App (RemoteApp)
VPN Connection
How to create an Azure Enclave compliant VPN Connection
Description: This template creates a site-to-site VPN connection from a Transit Hub VPN gateway to an on-premises VPN device. It can also create the customer-side VPN connection when the required gateway resources already exist. Learn more
Storage Account
How to create an Azure Enclave compliant Storage Account
Description: This template deploys an Azure storage account available from the virtual network inside the Azure Enclave. The template deploys the storage account with customer managed keys and other policies required to operate inside an Azure Enclave. Learn more
Key Vault
Description: Azure Key Vault is one of several key management solutions in Azure, and helps solve the following problems:
- Secrets Management - Azure Key Vault can be used to Securely store and tightly control access to tokens, passwords, certificates, API keys, and other secrets
- Key Management - Azure Key Vault can be used as a Key Management solution. Azure Key Vault makes it easy to create and control the encryption keys used to encrypt your data.
- Certificate Management - Azure Key Vault lets you easily create, manage, and deploy public and private certificates for use with Azure and your internal connected resources.
Documentation: About Azure Key Vault Azure Key Vault basic concepts
App Service Web App
How to create an Azure Enclave compliant App Service Web App
Description: Azure Web Apps provides a fully managed platform for building and hosting web applications using popular programming languages such as .NET, Java, Node.js, Python, and PHP. Learn more
App Service Function App
How to create an Azure Enclave compliant App Service Function
Description: Azure Functions is a serverless solution that allows you to write less code, maintain less infrastructure, and save on costs. Instead of worrying about deploying and maintaining servers, the cloud infrastructure provides all the up-to-date resources needed to keep your applications running. Learn more
Azure SQL
How to create an Azure Enclave compliant Azure SQL
Description: Azure SQL Database, a fully managed platform as a service (PaaS) database engine that handles most of the database management functions such as upgrading, patching, backups, and monitoring without user involvement. Learn more
ExpressRoute Connection
How to create an Azure Enclave compliant ExpressRoute Connection
Description: This template connects a Transit Hub ExpressRoute gateway to a customer-owned ExpressRoute circuit. Use this template when you already have a provisioned circuit with private peering configured. Learn more
Workload Quickstart
How to create an Azure Enclave compliant Workload Quickstart
Description: This template quickly creates the common workload resources you need in Azure Enclave, including private DNS zones, a key vault with a customer-managed key, a user-assigned managed identity, a disk encryption set, a storage account, and a virtual machine. Learn more
Azure Kubernetes Service (AKS)
How to create an Azure Enclave compliant AKS
Description: Azure Kubernetes Service (AKS) is a managed Kubernetes service that you can use to deploy and manage containerized applications. You need minimal container orchestration expertise to use AKS. AKS reduces the complexity and operational overhead of managing Kubernetes by offloading much of that responsibility to Azure. Learn more
Azure Container Registry (ACR)
How to create an Azure Enclave compliant ACR
Description: Azure Container Registry allows you to build, store, and manage container images and artifacts in a private registry for all types of container deployments. Use Azure container registries with your existing container development and deployment pipelines. Use Azure Container Registry Tasks to build container images in Azure on-demand, or automate builds triggered by source code updates, updates to a container's base image, or timers. Learn more
Azure Cosmos DB
How to create an Azure Enclave compliant Cosmos DB
Description: Azure Cosmos DB simplifies and expedites your application development by being the single database for your operational data needs, from geo-replicated distributed caching to back up to vector indexing and search. It provides the data infrastructure for modern applications like AI agent, digital commerce, Internet of Things, and booking management. It can accommodate all your operational data models, including relational, document, vector, key-value, graph, and table. Learn more
Service Bus
How to create an Azure Enclave compliant Service Bus
Description: Azure Service Bus is a fully managed enterprise message broker with message queues and topics and subscriptions. Service Bus is used to decouple applications and services from each other. Learn more