What is Azure Management Group?

Azure Management group is logical containers that allow azure administrators to manage access policy and compliance across multiple Azure subscriptions.

What is Azure subscription?


An Azure subscription is a logical container used to provision resource in Azure. It holds the details of all your resources like virtual machine (VM), Database and more , when you create an Azure resource like a VM you Identify the subscriptions it belongs.

What is Azure policy?

Azure policy is a service influence which allows you create policies which enforce and control the properties of a resource ,when these policies are used they enforce different rules and effect over your resources, so those resource stay compliant with your IT governance standard.

What is Azure recourse Lock? and Type of Lock;


An over-zealous or careless administrator can accidentally erase months of work with a few clicks. Azure Resource locks allow organizations to put safeguards in place that prevent the accidental deletion or modification of resources in Azure.


Type of Lock
1) Read only
2) Delete

What is the Management group access?

If your organization has many Azure subscriptions, you may need a way to efficiently manage access, policies, and compliance for those subscription. Management groups provide a governance scope above subscriptions. you organize subscriptions in to management groups; the governance conditions you apply cascade by inheritance to all associated subscriptions.

Management groups give you enterprise - grade management at scale, no matter what type of subscription you might have. However, all subscription with a single management group must trust the same Azure Active Directory (azure AD) Tennant.

For Example:
You can apply policies to a management group that limits the regions available for virtual machine (VM) creation.
This policy would be applied to all rested management groups , subscriptions and resources and allow VM creation only in authorized regions.