Azure Architecture Scenario Deep Dives

Scenario 1

Simple Web Application

Context: Node.js app + PostgreSQL, 500 users/day

Solution:

• App Service (Linux)
• PostgreSQL Flexible Server
• Private Endpoint
• Application Insights
• CDN for static assets

Trade-off: Limited CPU on B1 tier

Scenario 2

Three-Tier Enterprise App

• App Service (zone-redundant)
• Azure SQL (zone-redundant)
• Redis Cache
• Application Gateway (WAF)
• Key Vault + Managed Identity

Scenario 3

Static Website + API

• Static Web Apps
• Azure Functions
• Cosmos DB (serverless)
• CDN

Scenario 4

Dev/Test Environment

• Dev/Test subscription
• B-series VMs
• Auto-shutdown
• Budget alerts

Scenario 5

File Sharing

• Azure Files
• Azure File Sync
• VPN Gateway
• Backup Vault

Scenario 6

Batch Processing

• Azure Functions (timer)
• Blob Storage
• Azure SQL

Scenario 7

Internal API

• App Service + Private Endpoint
• APIM (internal)
• Managed Identity

Scenario 8

IoT Data Collection

• IoT Hub
• Stream Analytics
• Cosmos DB
• Power BI

Scenario 9

DB Migration

• DMS Online Migration
• SQL Managed Instance

Scenario 10

Multi-Region App

• Front Door
• App Service (multi-region)
• SQL Failover Group
• Cosmos DB

Scenario 16

Microservices on AKS

• Private AKS
• Workload Identity
• Service Bus + Event Grid
• Cosmos DB + SQL

Scenario 17

Hybrid Cloud

• ExpressRoute + VPN
• Hub-spoke + Firewall
• Azure Arc
• Hybrid identity

Scenario 18

Event-Driven Processing

• Event Grid
• Service Bus
• Durable Functions
• Cosmos DB

Scenario 19

Multi-Tenant SaaS

• App Service
• SQL + RLS
• Cosmos DB (tenantId)
• APIM

Scenario 20

Healthcare (HIPAA)

• SQL MI (encrypted)
• Private Endpoints
• Firewall Premium
• Sentinel

Scenario 31

Enterprise Landing Zone

• Management Groups
• Hub-Spoke
• Policy + RBAC
• Central monitoring

Scenario 33

AI Document Processing

• Blob Storage
• Document Intelligence
• AI Search
• Azure OpenAI

Scenario 34

Zero Trust

• Conditional Access + PIM
• Private Endpoints
• Firewall + WAF
• Sentinel

Scenario 38

Fraud Detection

• Event Hubs
• Stream Analytics
• Azure ML
• Cosmos DB

Scenario 41

Active-Active Global App

• Front Door
• App Service (3 regions)
• Cosmos DB multi-write
• Redis per region

Scenario 50

Full Digital Transformation

• Year 1: Landing zone + migration
• Year 2: Modernization + AI
• Ongoing: FinOps + Security + Training