Resource Governance with Azure Graph

Resource governance is crucial in Azure and any cloud provider to ensure efficient resource utilization, control costs, and maintain optimal performance. It helps manage and allocate resources effectively, preventing misuse and ensuring compliance with organizational policies and budgets. Here, we’ll explore “az graph,” an Azure construct governing resources across all resource groups in a subscription.

Azure Resource Graph

Azure Resource Graph is a service enhancing Azure Resource Management, allowing efficient exploration and querying across subscriptions for effective environment governance. Empowering resource queries, it facilitates complex filtering, grouping, and sorting. This allows for iterative exploration aligned with governance requirements and assessing policy effects in extensive cloud environments. It supports Azure LighthouseAzure Lighthouse enforces security best practices with just-in-time access, role-based access control (RBAC), and on-demand auditing capabilities. for managing delegated subscriptions. By consolidating and updating resource properties, Resource Graph complements Azure Resource ManagerAzure Resource Manager is the deployment and management service for Azure. It provides a management layer that enables you to create, update, and delete resources in your Azure account., extending querying capabilities and facilitating comprehensive resource exploration and governance.

Why create an Azure Resource Graph?

Azure Resource Graph helps govern all resources created in an Azure subscription. When working in Azure, we can end up with numerous resources and services running over time. If they are not regularly cleaned up, they can add to the overall costs of the subscription. Therefore, using the Azure Resource Graph can help us get an account of what resources are currently active in the subscription. Let’s practice some queries below:

How does governance with Azure Resource Graph work?

There are several ways in which resource graphs can help in governing. Let’s look at some below:

• Efficient exploration: It enables efficient exploration of resources in Azure by providing a powerful query language that allows complex filtering, grouping, and sorting based on resource properties.

• Scale queries across subscriptions: It allows queries to scale across a set of subscriptions, allowing them to govern environments effectively by assessing, monitoring, and managing resources at scale.

• Policy assessment: Resource Graph supports policy assessment by allowing users to query changes made to resource properties and assess the effects of applying policies in a vast cloud environment.

• Resource governance: By leveraging Resource Graph’s querying capabilities, we can implement effective resource governance, ensuring optimal performance, compliance, and resource utilization across an Azure environment. ...