Azure Lighthouse reference architecture for MSP

Chandrasekhar_Arya · ‎Dec 01 2021

Team just wondering any github or any other links that can help to build me a Azure Lighthouse reference architecture for Managed service Provider

-Akos- · ‎Dec 22 2021

Do you mean https://docs.microsoft.com/en-us/azure/lighthouse/concepts/architecture ?

It's not super hard: the MSP's AAD tenant is delegated the right by the customer to manage their resources. This can happen by a marketplace offering, or through an ARM template. Figure out which rights the MSP wants to use, e.g. a MSPContributors group that gets contributor rights, and an MSPReaders group that gets the reader role (only builtin roles), and a user at the customers' tenant with Owner rights deploys the ARM template that includes the MSP groups. Once it is rolled out, the MSP's tenant can access the customer's subscription as if it can reach any subscriptions that are under the customers' tenant.

The difficult piece in this is "which rights do you want to have as MSP", and "how do you update rights at a customers' subscription if you need other rights"? With a few it's not a big chore, with 100s of subscriptions, you'd better have some automation..

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Azure Lighthouse reference architecture for MSP

Azure Lighthouse reference architecture for MSP

Re: Azure Lighthouse reference architecture for MSP