Show Azure Resource Manager is the deployment and management service for Azure. It provides a management layer that enables you to create, update, and delete resources in your Azure account. You use management features, like access control, locks, and tags, to secure and organize your resources after deployment. To learn about Azure Resource Manager templates (ARM templates), see the ARM template overview. To learn about Bicep, see Bicep overview. Consistent management layerWhen you send a request through any of the Azure APIs, tools, or SDKs, Resource Manager receives the request. It authenticates and authorizes the request before forwarding it to the appropriate Azure service. Because all requests are handled through the same API, you see consistent results and capabilities in all the different tools. The following image shows the role Azure Resource Manager plays in handling Azure requests. All capabilities that are available in the portal are also available through PowerShell, Azure CLI, REST APIs, and client SDKs. Functionality initially released through APIs will be represented in the portal within 180 days of initial release. TerminologyIf you're new to Azure Resource Manager, there are some terms you might not be familiar with.
For more definitions of Azure terminology, see Azure fundamental concepts. The benefits of using Resource ManagerWith Resource Manager, you can:
Understand scopeAzure provides four levels of scope: management groups, subscriptions, resource groups, and resources. The following image shows an example of these layers. You apply management settings at any of these levels of scope. The level you select determines how widely the setting is applied. Lower levels inherit settings from higher levels. For example, when you apply a policy to the subscription, the policy is applied to all resource groups and resources in your subscription. When you apply a policy on the resource group, that policy is applied to the resource group and all its resources. However, another resource group doesn't have that policy assignment. For information about managing identities and access, see Azure Active Directory. You can deploy templates to tenants, management groups, subscriptions, or resource groups. Resource groupsThere are some important factors to consider when defining your resource group:
Resiliency of Azure Resource ManagerThe Azure Resource Manager service is designed for resiliency and continuous availability. Resource Manager and control plane operations (requests sent to management.azure.com) in the REST API are:
This resiliency applies to services that receive requests through Resource Manager. For example, Key Vault benefits from this resiliency. Next steps
Last Updated on January 29, 2021 by Admin CCNA Cybersecurity Operations (Version 1.1) – Final Exam Answers 2019
|