Our great sponsors
-
terraform-example-foundation
Shows how the CFT modules can be composed to build a secure cloud foundation
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Honestly, https://github.com/Azure/terraform-azurerm-caf-enterprise-scale does a pretty good job at deploying a landing zone-architecture, is active and maintained. I wouldnt try to re-invent the work Microsoft are doing themself but rather contribute to that project and build tools around the existing module. An issue I often hear from people is that they have a hard time visualizing which policies are added on parent management groups and how to exclude/adjust them.
If deploying landing zones architecture in multiple clouds is the goal of your project similar modules exist for AWS: https://registry.terraform.io/modules/aws-ia/control_tower_account_factory/aws/latest and GCP: https://github.com/terraform-google-modules/terraform-example-foundation