30 lines
1003 B
Markdown
30 lines
1003 B
Markdown
---
|
||
title: Management Groups
|
||
type: concept
|
||
tags: [Azure, Organization, Management]
|
||
date: 2026-04-14
|
||
---
|
||
|
||
## Definition
|
||
Azure Management Groups 是用于组织和管理多个订阅的分层容器,类似于 Windows 父目录结构,允许跨订阅的统一策略应用和访问控制。
|
||
|
||
## Key Characteristics
|
||
- 支持嵌套层级结构,最多 6 层深度
|
||
- 可将策略和访问权限继承到下层订阅
|
||
- 支持治理需求的企业级组织结构
|
||
- 每个 Management Group 可包含多个订阅
|
||
|
||
## Use Cases
|
||
- 按业务部门组织订阅
|
||
- 按环境(生产、开发、测试)分离
|
||
- 按产品线或项目分组
|
||
- 统一应用安全合规策略
|
||
|
||
## Related Concepts
|
||
- [[Subscription]]:Azure 订阅,资源隔离的容器
|
||
- [[Azure Landing Zone]]:使用 Management Groups 实现组织结构
|
||
- [[Service Control Policies]]:类似 AWS 的组织策略
|
||
|
||
## Connections
|
||
- [[Management Groups]] ← organizes ← [[Subscription]]
|
||
- [[Azure Landing Zone]] ← uses ← [[Management Groups]] |