Microsoft Purview focuses on data management for on-premise, other clouds, and software-as-a-service platforms. Purview finds, identifies, and tracks data across all your resources.
Azure Policy is your rulebook for Azure resources, setting guidelines for users can and can't do. It also makes sure all resources are compliant with company and government standards/regulations.
Microsoft Purview is a set of tools designed to help you manage your data, even if this data sits in your on-premise data centres, other cloud providers, or software-as-a-service platforms. As a governance and compliance service, Purview is focused on making sure data is classified and protected effectively.
With Microsoft Purview, you can:
Microsoft Purview has two key areas:
Azure Policy is your assistant for making sure your cloud resources follow your company's rules and regulations. It helps you create, assign, and manage rules that keep your cloud stuff in line with what your company needs.
Azure Policy works in different places in your cloud, and the policies can be set at different scopes - at a resource, resource group, subscription or even management group level. As a reminder, if you make a rule at a high level, it applies to everything underneath. For example, if you set an Azure Policy on a resource group, all resources within that resource group will automatically receive the same policy.
Azure Policy provides a whole list of rules it can implement - we'll dive into this in the exercise!
An "initiative" is a collection of rules that help you reach a bigger goal. It's like an ingredients list to make a delicious meal.
For example, there's an initiative called "Enable Monitoring in Azure Security Centre." Its goal is to monitor all the security recommendations from Azure Security Centre. Under this initiative, there are over 100 separate policy definitions - one for each specific type of recommendation it wants to track!