AC AzureCraft Infra · Data & AI · Modern Apps
Azure architecture, demystified

Practical Azure architecture, without the noise.

AzureCraft turns hard cloud decisions into clear, reusable patterns. Opinionated, diagram-first write-ups on landing zones, AI workloads, networking, and identity — from real-world design work.

Start with Landing Zones → What is AzureCraft?

Latest articles

Hands-on guidance you can copy into your own architecture.

Infrastructure · 11 min read · May 2026

Bicep vs Terraform for Landing Zones

An honest comparison of the two IaC tools for Azure landing zones — state, multi-cloud, modules, and how to choose the one you’ll be happy operating in two years.

Read the guide →
Infrastructure · 10 min read · Apr 2026

Identity Foundations for Platform Teams

Identity is the real control plane. Entra ID tenant design, managed identities over secrets, and just-in-time admin with PIM — the identity layer of a landing zone.

Read the guide →
Infrastructure · 10 min read · Apr 2026

Hub-and-Spoke vs Azure Virtual WAN

Two ways to wire up Azure connectivity. A practical, diagram-first comparison of when to operate your own hub and when to let Microsoft run the backbone.

Read the guide →
Infrastructure · 9 min read · Mar 2026

Azure Landing Zones: A Practical Architect’s View

Management groups, subscription democratization, networking topology, and the guardrails that let teams move fast safely — explained diagram-first.

Read the guide →
Data & AI · 8 min read · Mar 2026

AI Workloads in Azure Landing Zones

How to land Azure OpenAI, vector search, and AI compute inside an enterprise landing zone — with private networking, governance, and a clear reference architecture.

Read the guide →
Start here · 3 min read · Mar 2026

Welcome to AzureCraft

Why this blog exists, who it’s for, and the principles behind every post: opinionated, diagram-first, and built to be reused.

Read the intro →

Browse by category

Three pillars, one focus: practical Azure architecture.

Infrastructure

Infrastructure

Landing zones, networking, identity, governance, and cost guardrails.

 Data & AI

Data & AI

Landing AI workloads safely, private connectivity, and data platform patterns.

 Modern Apps

Modern Apps

Application design that holds up under real load and real org structures.

Explore the full library

Beyond these featured guides, AzureCraft has a deep catalog of field notes and reusable patterns.

Articles

All articles →

The full, searchable catalog of Azure and AI architecture write-ups.

 Patterns

Pattern library →

Reusable, diagram-first reference patterns you can lift into your own designs.

 GenAIOps

GenAIOps starter →

A practical starting point for operating generative-AI workloads on Azure.

What’s coming next

The content pipeline. Want one sooner? Let me know.

  • Zero-trust networking — Private Endpoints, Private DNS, and firewall patterns.
  • FinOps guardrails — cost control with Azure Policy and budgets that actually hold.
  • Observability baseline — Log Analytics, workbooks, and alerts that matter.
  • Data platform reference architecture — landing analytics and AI data the governed way.

Get new architecture write-ups

No spam, no fluff — just practical Azure patterns when a new post lands. Connect the form to your email provider to go live.