EN
FR DE EN ES IT
| Contact Us
 
Latest
News
Let's Talk SAP Landscape
Let's Talk HCM
Let's Talk Data Security
Let's talk Cloud and Managed Services
Let's Talk Community Care

Migrating SAP to the Cloud: Do you know about Azure Policy?

November 23, 2020
Phil Quinton
Written by Phil Quinton

Phil Quinton is the Principal Cloud Solutions Architect for EPI-USE Labs. Phil has worked with infrastructure for over 20 years, providing support, design and implementation of platforms and solutions across a variety of business sectors, and brings a wide range of skills and experience to our clients.

Migrating-SAP-to-the-Cloud---Do-you-know-about-Azure-Policy

At EPI-USE Labs we have a whole host of knowledge around Microsoft Azure, and we decided it was about time we shared some of our expertise, as well as some tips and tricks. This is the first in a series of blogs regarding ‘all things Azure’.

Cloud security is a big deal, and is often one of the reasons cited to prevent any move to the cloud, particularly when it comes to migrating your data to Microsoft Azure. Making sure your data is compliant and secure is quite complex. It involves connecting with the right teams internally, but also making sure you trust your third parties, and that they understand your security and governance requirements. Azure Policy is a free Azure service that allows you to create policies, assign them to resources, and receive alerts or take action in cases of non-compliance with these policies.

 

When we’re involved in migrations, we discuss the client’s governance requirements; do they need ISO 27001, for instance, or what about CIS Benchmarks?

 

It is not unusual for a client to have a stricter requirement for their public cloud deployments over on-premise, and they may require guidance on how to map these to Azure, and what the implications are.

 

Azure Policy is a good starting point for reporting on, and remediating, compliance requirements within an Azure deployment. You can apply single rules or groups of rules (initiatives). These can be something as simple (and helpful) as limiting resource deployment to one region, or applying resource tag inheritance to resource groups so you don’t have to apply tags on every resource deployment.

 

Using ‘initiatives’, you can implement standards and ensure that resources follow your corporate policies and GDPR regulations. For example, you can use Azure Policy for:

 

  • Deploying only specific resources. You can create your own policies if the built-in ones don’t meet your needs.

  • Allowing the deployment of resources only for authorised regions (GDPR). Are there any legislative requirements that establish where my data is stored, and where users are eligible to access it?

  • Ensuring that resources are properly tagged to facilitate your financial or management tasks.

  • Preventing excessive spending, like restricting VMs (restrict access for developers and so on, so that your team doesn’t spend too much).

Azure Policy is delivered with ‘out of the box’ policies already defined, but these always need configuration. It is very rare that new policies do not need to be configured in a particular instance.

 

If you want to know more about Azure Policy, or indeed you need any help or advice on Microsoft Azure, please get in touch.

Useful links:

Azure Policy built-ins for regulatory compliance: https://docs.microsoft.com/en-us/azure/governance/policy/samples/built-in-initiatives#regulatory-compliance

 

Azure Policy Quickstart: https://docs.microsoft.com/en-us/azure/governance/policy/assign-policy-portal

 

Request a free Cloud consultation

 

Cloud Cloud Migration GDPR compliance Microsoft Azure Migrate SAP to Microsoft Azure cloud security Azure policy Azure initiatives SAP cloud migrations Free cloud consultation

 

Like it? Share it:

Explore Popular Tags

Cloud Microsoft Azure cloud security Cloud Infrastructure Cloud Migration Cloud and Managed services SAP cloud migrations SAP on Azure SAP systems cloud hosting AWS Cloud Migrations Advanced AWS Partner Azure policy Cloud migrations Migrate SAP to Microsoft Azure Private cloud hosting SAP Cloud Deployment SAP certified solution SAP support partner VAR (Value Added Reseller) VAR support cloud environment AWS Amazon Web Services (AWS) Azure Access Control (IAM) Azure initiatives Azure’s Identity and Access Management Framework Cloud Solutions Free cloud consultation GCP GDPR compliance Hybrid cloud IaaS PaaS RBAC (Role-Based Access Control) Role permissions SAP Cloud SAP Cloud Appliance Library (CAL) SAP Landscape Transformation SAP S/4HANA SaaS Transformation Transformation without re-implementation W.H.A.L.E. migration assessment WHALE certification
+ See More

Get Instant Updates

Leave a Comment:
Group Elephant part of the groupelephant.com family
beyond corporate purpose ERP

Manage your sap environment

Optimize your SAP Landscape

Maximize your SAP HCM Systems

Simplify your SAP Security & Compliance

Tools & Knowledge Resources

Get Support