AWS to Azure services comparison

learn.microsoft.com/en-us/azure/architecture/aws-professional/services

Article
08/12/2024

This article helps you understand how Microsoft Azure services compare to Amazon Web
Services (AWS). Whether you are planning a multicloud solution with Azure and AWS or
migrating to Azure, you can compare the IT capabilities of Azure and AWS services in all
categories.

This article compares services that are roughly comparable. Not every AWS service or Azure
service is listed, and not every matched service has exact feature-for-feature parity.

Azure and AWS for multicloud solutions

As the leading public cloud platforms, Azure and AWS each offer a broad and deep set of
capabilities with global coverage. Yet many organizations choose to use both platforms
together for greater choice and flexibility, as well as to spread their risk and dependencies
with a multicloud approach. Consulting companies and software vendors might also build on
and use both Azure and AWS, as these platforms represent most of the cloud market
demand.

For an overview of Azure for AWS users, see Introduction to Azure for AWS professionals.

1/26
Marketplace

AWS Azure
service service Description

AWS Azure Easy-to-deploy and automatically configured third-party

Marketplace Marketplace applications, including single virtual machine or multiple
virtual machine solutions.

AI and machine learning

AWS
service Azure service Description

SageMaker Machine A cloud service to train, deploy, automate, and manage

Learning machine learning models.

Alexa Skills Bot Build and connect intelligent bots that interact with your
Kit Framework users using text/SMS, Skype, Teams, Slack, Microsoft 365
mail, Twitter, and other popular services.

Lex Speech API capable of converting speech to text, understanding

Services intent, and converting text back to speech for natural
responsiveness.

Lex Language Allows your applications to understand user commands

Understanding contextually.
(LUIS)

Polly, Speech Enables both Speech to Text, and Text into Speech
Transcribe Services capabilities.

Rekognition Cognitive
Services Computer Vision: Extract information from images to
categorize and process visual data.

Face: Detect, identify, and analyze faces and facial

expressions in photos.

Skills Kit Virtual The Virtual Assistant Template brings together a number of
Assistant best practices we've identified through the building of
conversational experiences and automates integration of
components that we've found to be highly beneficial to Bot
Framework developers.

AI and machine learning architectures

Architecture Description

2/26
 Architecture Description

Image classification Learn how to build image processing into your applications by using
on Azure Azure services such as the Computer Vision API and Azure
Functions.

Intelligent product This architecture describes how to use a dedicated search service
search engine for e- to dramatically increase the relevance of search results for your e-
commerce commerce customers.

view all

Big data and analytics

Data warehouse

AWS Azure
service service Description

Redshift Synapse Cloud-based enterprise data warehouse (EDW) that uses

Analytics massively parallel processing (MPP) to quickly run complex
queries across petabytes of data.

Lake Data A simple and safe service for sharing big data.
Formation Share

Data warehouse architectures

Architecture Description

Automated Automate an extract, load, transform (ELT) workflow in Azure by using

enterprise BI Azure Data Factory with Azure Synapse Analytics.

view all

Time series

AWS Azure
service service Description

3/26
AWS Azure
service service Description

Amazon
Timestream Azure Fully managed, low latency, and distributed big data analytics
Data platform that runs complex queries across petabytes of data.
Explorer Highly optimized for log and time series data.

Azure Open and scalable end-to-end IoT analytics service. Collect,

Time process, store, query, and visualize data at Internet of Things
Series (IoT) scale--data that's highly contextualized and optimized for
Insights time series.

Time series architecture

Architecture Description

IoT analytics IoT telemetry analytics with Azure Data Explorer demonstrates near real-
with Azure time analytics over a fast flowing, high volume, wide variety of streaming
Data Explorer data from IoT devices.

Big data processing

AWS Azure
service service Description

EMR Azure Fully managed, low latency, distributed big data analytics platform
Data to run complex queries across petabytes of data.
Explorer

EMR Databricks Apache Spark-based analytics platform.

EMR HDInsight Managed Hadoop service. Deploy and manage Hadoop clusters in
Azure.

EMR Data Lake Massively scalable, secure data lake functionality built on Azure
Storage Blob Storage.

Big data architectures

Architecture Description

Azure data Use Azure services to ingest, process, store, serve, and visualize data
platform end-to- from different sources.
end

4/26
 Architecture Description

Personalized This solution builds intelligent marketing systems that provide

offers customer-tailored content by using machine learning models that
analyze data from multiple sources.

Big data analytics Big data analytics with Azure Data Explorer demonstrates how Azure
with Azure Data Data Explorer caters to volume, velocity, and variety of data, the three
Explorer V's of big data.

view all

Data orchestration / ETL

AWS Azure
service service Description

Data Data Processes and moves data between different compute and storage
Pipeline, Factory services, as well as on-premises data sources at specified intervals.
Glue Create, schedule, orchestrate, and manage data pipelines.

Glue Microsoft A unified data governance service that helps you manage and
Purview govern your on-premises, multicloud, and software as a service
(SaaS) data.

Analytics and visualization

AWS Azure
service service Description

Kinesis Storage and analysis platforms that create insights from large
Analytics Stream quantities of data, or data that originates from many sources.
Analytics

Azure
Data
Explorer

Data
Lake
Analytics

Data
Lake
Store

QuickSight Power BI Business intelligence tools that build visualizations, perform ad

hoc analysis, and develop business insights from data.

5/26
 AWS Azure
service service Description

CloudSearch Cognitive Delivers full-text search and related search analytics and
Search capabilities.

Athena
Data Provides a serverless interactive query service that uses
Lake standard SQL for analyzing databases.
Analytics
Azure Synapse Analytics is a limitless analytics service that
Azure brings together data integration, enterprise data warehousing,
Synapse and big data analytics. It gives you the freedom to query data
Analytics on your terms, using either serverless or dedicated resources
at scale.

Elasticsearch Elastic Use the Elastic Stack (Elastic, Logstash, and Kibana) to
Service on Azure search, analyze, and visualize in real time.

Analytics architectures

Architecture Description

Automated Automate an extract, load, transform (ELT) workflow in Azure by using

enterprise BI Azure Data Factory with Azure Synapse Analytics.

Mass ingestion Create a pipeline for ingesting and analyzing text, images, sentiment,
and analysis of and other data from RSS news feeds by using only Azure services,
news feeds on including Azure Cosmos DB and Azure AI services.
Azure

view all

Compute

Virtual machines and servers

Virtual machines (VMs) and servers allow users to deploy, manage, and maintain OS and
other software. Users pay for what they use, with the flexibility to change sizes.

AWS Azure
service service Description

Amazon Azure AWS and Azure on-demand VMs bill per seconds used. Although
EC2 Virtual AWS instance types and Azure VM sizes have similar categories,
Instance Machines the exact RAM, CPU, and storage capabilities differ. For
Types information about Azure VM sizes, see Azure VM sizes.

6/26
 AWS Azure
service service Description

VMware Azure AWS and Azure solutions let you move VMware vSphere-based
Cloud VMware workloads and environments to the cloud. Azure VMware Solution
on AWS Solution is a VMware-verified Microsoft service that runs on Azure
infrastructure. You can manage existing environments with
VMware solution tools, while modernizing applications with cloud
native services.

AWS Azure Create, manage, operate, and optimize HPC and large compute
Parallel CycleCloud clusters of any scale.
Cluster

View all the virtual machines architectures

Autoscaling

Autoscaling lets you automatically change the number of VM instances. You set defined
metrics and thresholds that determine when to add or remove instances.

AWS
service Azure service Description

AWS Virtual In Azure, virtual machine scale sets let you deploy and
Auto machine scale manage identical sets of VMs. The number of sets can
Scaling sets, App autoscale. App Service autoscale lets you autoscale Azure
Service App Service applications.
autoscale

View all the autoscaling architectures

Batch processing
Batch processing runs large-scale parallel and high-performance computing applications
efficiently in the cloud.

AWS Azure
service service Description

AWS Azure Azure Batch helps you manage compute-intensive work across a
Batch Batch scalable collection of VMs.

View all the batch processing architectures

Storage

7/26
Several services provide different types of data storage for VM disks.

Azure
AWS service service Description

Disk volumes on Data disks Data disks in blob storage provide durable data storage
Amazon Elastic in Azure for Azure VMs. This storage is similar to AWS EC2
Block Store (EBS) Blob instance disk volumes on EBS.
Storage.

Amazon EC2 Azure Azure temporary storage provides VMs with similar low-
instance store temporary latency temporary read-write storage to EC2 instance
storage storage, also called ephemeral storage.

Amazon EBS Azure Azure supports higher performance disk I/O with
Provisioned IOPS premium premium storage. This storage is similar to AWS
Volume storage Provisioned IOPS storage options.

Amazon Elastic Azure Files Azure Files provides VMs with similar functionality to
File System (EFS) Amazon EFS.

View all the storage architectures

Containers and container orchestrators

Several AWS and Azure services provide containerized application deployment and
orchestration.

Azure
AWS service service Description

Amazon Azure Azure Container Apps is a scalable service that lets you
Elastic Container deploy thousands of containers without requiring access to
Container Apps the control plane.
Service
(Amazon
ECS), AWS
Fargate

Amazon Azure Container registries store Docker formatted images and

Elastic Container create all types of container deployments in the cloud.
Container Registry
Registry
(Amazon
ECR)

8/26
 Azure
AWS service service Description

Amazon Azure EKS and AKS let you orchestrate Docker containerized
Elastic Kubernetes application deployments with Kubernetes. AKS simplifies
Kubernetes Service monitoring and cluster management through auto upgrades
Service (AKS) and a built-in operations console. See Container runtime
(EKS) configuration for specifics on the hosting environment.

AWS App Istio add- The Istio add-on for AKS provides a fully-supported
Mesh on for AKS integration of the open-source Istio service mesh.

Example container architectures

Architecture Description

Baseline architecture on Deploy a baseline infrastructure that deploys an AKS cluster

Azure Kubernetes with a focus on security.
Service (AKS)

Microservices Deploy a microservices architecture on Azure Kubernetes

architecture on Azure Service (AKS).
Kubernetes Service
(AKS)

CI/CD pipeline for Build a DevOps pipeline for a Node.js web app with Jenkins,
container-based Azure Container Registry, Azure Kubernetes Service, Azure
workloads Cosmos DB, and Grafana.

View all the container architectures

Serverless computing

Serverless computing lets you integrate systems and run backend processes without
provisioning or managing servers.

AWS Azure
service service Description

AWS Azure Azure Functions is the primary equivalent of AWS Lambda in

Lambda Functions, providing serverless, on-demand code. AWS Lambda
WebJobs in functionality also overlaps with Azure WebJobs, which let you
Azure App schedule or continuously run background tasks.
Service

Example serverless architectures

9/26
 Architecture Description

Query a data lake or This architecture can reduce the challenges of extract,
lakehouse by using transform, load (ETL) operations. You can use this architecture
Azure Synapse Analytics to generate business insights and then solve modeling and
serverless ETL tasks.

HIPAA and HITRUST- Manage HIPAA and HITRUST-compliant health data and
compliant health data AI medical records with the highest level of built-in security.

Cross-cloud scaling Learn how to improve cross-cloud scalability with a solution

pattern architecture that includes Azure Stack. A step-by-step
flowchart details instructions for implementation.

View all the serverless architectures

Database

AWS Azure
Type Service Service Description

Relational RDS Managed relational database services in which

database SQL resiliency, scale and maintenance are primarily
Database handled by the Azure platform.
Database
for MySQL

Database
for
PostgreSQL

Database
for MariaDB

Serverless Amazon Database offerings that automatically scales

relational Aurora Azure SQL compute based on the workload demand.
database Serverless Database You're billed per second for the actual compute
serverless used (Azure SQL)/data that's processed by
your queries (Azure Synapse Analytics
Serverless Serverless).
SQL pool in
Azure
Synapse
Analytics

10/26
 AWS Azure
Type Service Service Description

NoSQL Azure Azure Cosmos DB is a globally distributed,

DynamoDB Cosmos DB multi-model database that natively supports
(Key-Value) multiple data models including key-value pairs,
documents, graphs, and columnar.
SimpleDB

Amazon
DocumentDB
(Document)

Amazon
Neptune
(Graph)

Caching Cache for An in-memory–based, distributed caching

ElastiCache Redis service that provides a high-performance store
that's typically used to offload nontransactional
Amazon work from a database.
MemoryDB
for Redis

Database Database Database A service that executes the migration of

migration Migration Migration database schema and data from one database
Service Service format to a specific database technology in the
cloud.

Database architectures

Architecture Description

Gaming by Elastically scale your database to accommodate unpredictable bursts

using Azure of traffic and deliver low-latency multi-player experiences on a global
Cosmos DB scale.

view all

DevOps and application monitoring

Azure
AWS service service Description

CloudWatch, X- Monitor Comprehensive solution for collecting, analyzing, and

Ray acting on telemetry from your cloud and on-premises
environments.

11/26
 Azure
AWS service service Description

DevOps A cloud service for collaborating on code development.

CodeDeploy

CodeCommit

CodePipeline

Developer Developer Collection of tools for building, debugging, deploying,

Tools Tools diagnosing, and managing multiplatform scalable apps
and services.

CodeBuild Fully managed build service that supports continuous

DevOps integration and continuous deployment (CI/CD).
Pipeline

GitHub
Actions

Command-line Built on top of the native REST API across all cloud
interface CLI services, various programming language-specific
wrappers provide easier ways to create solutions.
PowerShell

eksctl az aks Manage Azure Kubernetes Service (AKS) using these

command Azure CLI commands.
group

AWS Azure Azure Cloud Shell is an interactive, authenticated,

CloudShell Cloud browser-accessible shell for managing Azure resources. It
Shell gives you the flexibility to choose the shell experience that
best suits the way you work, either Bash or PowerShell.

OpsWorks Automation Configures and operates applications of all shapes and

(Chef-based) sizes, and provides templates to create and manage a
collection of resources.

CloudFormation Provides a way for users to automate the manual, long-

Resource running, error-prone, and frequently repeated IT tasks.
Manager

Bicep

VM
extensions

Azure
Automation

12/26
 Azure
AWS service service Description

Cloud Developer-friendly imperative commands that enable

Development Azure consistent and repeatable work and standardized
Kit Developer infrastructure-as-code modules.
CLI

Azure
Verified
Modules

DevOps architectures

Architecture Description

CI/CD for AKS This architecture is applicable to businesses that want to modernize
apps with GitHub end-to-end application development by using containers, continuous
Actions and integration for build, and GitOps for continuous deployment.
GitFlow

view all

Internet of Things (IoT)

AWS Azure
service service Description

IoT Core IoT A cloud gateway for managing bidirectional communication with
Hub billions of IoT devices, securely and at scale.

Greengrass IoT Deploy cloud intelligence directly onto IoT devices, catering to on-
Edge premises scenarios.

Kinesis Event Services that facilitate the mass ingestion of events (messages),
Firehose, Hubs typically from devices and sensors. The data can then be
Kinesis processed in real-time micro-batches or be written to storage for
Streams further analysis.

IoT Things Digital Services you can use to create digital representations of real-
Graph Twins world things, places, business processes, and people. Use these
services to gain insights, drive the creation of better products and
new customer experiences, and optimize operations and costs.

IoT architectures

13/26
 Architecture Description

Azure IoT A recommended architecture for IoT applications on Azure by using

reference platform as a service (PaaS) components.
architecture

view all

Management and governance

Azure
AWS service service Description

AWS Management Azure management groups help you organize your

Organizations Groups resources and subscriptions.

AWS Well- Azure Well- Examine your workload through the lenses of reliability,
Architected Architected cost management, operational excellence, security, and
Tool Review performance efficiency.

Trusted Advisor Provides analysis of cloud resource configuration and

Advisor security, so that subscribers can ensure they're making
use of best practices and optimum configurations.

AWS Billing Microsoft Microsoft Cost Management helps you understand your
and Cost Cost Azure invoice (bill), manage your billing account and
Management Management subscriptions, monitor and control Azure spending, and
optimize resource use.

Cost and Usage Services to help generate, monitor, forecast, and share
Usage Details API billing data for resource usage by time, organization, or
Reports product resources.

Management Portal A unified management console that simplifies building,

Console deploying, and operating your cloud resources.

Application Migrate Assesses on-premises workloads for migration to Azure,

Discovery performs performance-based sizing, and provides cost
Service estimations.

Systems Monitor Comprehensive solution for collecting, analyzing, and

Manager acting on telemetry from your cloud and on-premises
environments.

Personal Resource Provides detailed information about the health of

Health Health resources, as well as recommended actions for
Dashboard maintaining resource health.

14/26
 Azure
AWS service service Description

CloudTrail Activity log The Activity log is a platform log in Azure that provides
insight into subscription-level events, such as when a
resource is modified or when a virtual machine is started.

CloudWatch Application A feature of Azure Monitor, Application Insights is an

Insights extensible Application Performance Management (APM)
service for developers and DevOps professionals, which
provides telemetry insights and information, in order to
better understand how applications are performing and to
identify areas for optimization.

Config Application Application Change Analysis detects various types of

Change changes, from the infrastructure layer all the way to
Analysis application deployment.

Cost Explorer Cost Optimize costs while maximizing cloud potential.

Management

Control Tower Azure Set up and govern a multi account/subscription

Lighthouse environment.

Resource Resource A Resource Group is a container that holds related

Groups and Groups and resources for an Azure solution. Apply tags to your Azure
Tag Editor Tags resources to logically organize them by categories.

AWS Azure App Azure App Configuration is a managed service that helps
AppConfig Configuration developers centralize their application and feature settings
simply and securely.

Service Azure Offers cloud solutions that are easy for consumers to
Catalog Managed deploy and operate.
Applications

SDKs and SDKs and Manage and interact with Azure services the way you
tools tools prefer, programmatically from your language of choice, by
using the Azure SDKs, our collection of tools, or both.

Messaging and eventing

AWS Azure
service service Description

Simple Queue Provides a managed message queueing service for

Queue Storage communicating between decoupled application components.
Service
(SQS)

15/26
AWS Azure
service service Description

Simple Service Supports a set of cloud-based, message-oriented middleware

Notification Bus technologies, including reliable message queuing and durable
Service publish/subscribe messaging.
(SNS)

Amazon Event A fully managed event routing service that allows for uniform
EventBridge Grid event consumption using a publish/subscribe model.

Amazon Event A fully managed, real-time data ingestion service. Stream millions
Kinesis Hubs of events per second, from any source, to build dynamic data
pipelines and to immediately respond to business challenges.

Amazon Service Service Bus Premium is fully compliant with the Java/Jakarta EE
MQ Bus Java Message Service (JMS) 2.0 API. Service Bus Standard
supports the JMS 1.1 subset focused on queues.

Messaging architectures

Architecture Description

Scalable web Use the proven practices in this reference architecture to improve
application scalability and performance in an Azure App Service web
application.

Enterprise A recommended architecture for implementing an enterprise

integration by integration pattern with Azure Logic Apps, Azure API Management,
using queues and Azure Service Bus, and Azure Event Grid.
events

Networking

AWS Azure
Area service service Description

Cloud virtual Virtual Virtual Provides an isolated, private environment in

networking Private Network the cloud. Users have control over their
Cloud virtual networking environment, including
(VPC) selection of their own IP address range,
creation of subnets, and configuration of
route tables and network gateways.

16/26
 AWS Azure
Area service service Description

NAT NAT Virtual A service that simplifies outbound-only

gateways Gateways Network NAT Internet connectivity for virtual networks.
When configured on a subnet, all outbound
connectivity uses your specified static public
IP addresses. Outbound connectivity is
possible without a load balancer or public IP
addresses directly attached to virtual
machines.

Cross- VPN VPN Gateway Connects Azure virtual networks to other

premises Gateway Azure virtual networks, or customer on-
connectivity premises networks (Site To Site). Allows end
users to connect to Azure services through
VPN tunneling (Point To Site).

DNS Route 53 DNS Manage your DNS records using the same
management credentials and billing and support contract
as your other Azure services

DNS-based Route 53 Traffic A service that hosts domain names, plus

routing Manager routes users to Internet applications,
connects user requests to datacenters,
manages traffic to apps, and improves app
availability with automatic failover.

Dedicated Direct ExpressRoute Establishes a dedicated, private network

network Connect connection from a location to the cloud
provider (not over the Internet).

Load Network Load Azure Load Balancer load balances traffic at

balancing Load Balancer layer 4 (TCP or UDP). Standard Load
Balancer Balancer also supports cross-region or
global load balancing.

Application- Application Application Application Gateway is a layer 7 load

level load Load Gateway balancer. It supports SSL termination,
balancing Balancer cookie-based session affinity, and round
robin for load-balancing traffic.

Route table Custom User Defined Custom, or user-defined (static) routes to

Route Routes override default system routes, or to add
Tables more routes to a subnet's route table.

Private link PrivateLink Azure Private Azure Private Link provides private access
Link to services that are hosted on the Azure
platform. This keeps your data on the
Microsoft network.

17/26
 AWS Azure
Area service service Description

Private PaaS VPC Private Private Endpoint provides secured, private

connectivity endpoints Endpoint connectivity to various Azure platform as a
service (PaaS) resources, over a backbone
Microsoft private network.

Virtual VPC VNET VNet peering is a mechanism that connects

network Peering Peering two virtual networks (VNets) in the same
peering region through the Azure backbone network.
Once peered, the two virtual networks
appear as one for all connectivity purposes.

Content CloudFront Front Door Azure Front Door is a modern cloud content
delivery delivery network (CDN) service that delivers
networks high performance, scalability, and secure
user experiences for your content and
applications.

Network VPC Flow Azure Azure Network Watcher allows you to

Monitoring Logs Network monitor, diagnose, and analyze the traffic in
Watcher Azure Virtual Network.

Networking architectures

Architecture Description

Deploy highly Learn how to deploy network virtual appliances for high availability in
available NVAs Azure. This article includes example architectures for ingress, egress,
and both.

Hub-spoke Learn how to implement a hub-spoke topology in Azure, where the hub
network is a virtual network and the spokes are virtual networks that peer with the
topology in hub.
Azure

Implement a See a secure hybrid network that extends an on-premises network to

secure hybrid Azure with a perimeter network between the on-premises network and
network an Azure virtual network.

view all

Security, identity, and access

Authentication and authorization

18/26
 Azure
AWS service service Description

Identity and Microsoft Allows users to securely control access to services and
Access Entra ID resources while offering data security and protection.
Management Create and manage users and groups, and use
(IAM) permissions to allow and deny access to resources.

Identity and Azure role- Azure role-based access control (RBAC) helps you
Access based manage who has access to Azure resources, what they
Management access can do with those resources, and what areas they have
(IAM) control access to.
(RBAC)

Organizations Subscription Security policy and role management for working with
Management multiple accounts.
+ Azure
RBAC

Multi-Factor Microsoft Safeguard access to data and applications while meeting

Authentication Entra ID user demand for a simple sign-in process.

Directory Microsoft Provides managed domain services, such as domain join,

Service Entra group policy, LDAP, and Kerberos/NTLM authentication,
Domain which are fully compatible with Windows Server Active
Services Directory.

Cognito Microsoft A highly available, global identity management service for

Entra consumer-facing applications that scales to hundreds of
External ID millions of identities.

AWS Config Policy Azure Policy is a service in Azure that you use to create,
assign, and manage policies. These policies enforce
different rules and effects over your resources so those
resources stay compliant with your corporate standards
and service-level agreements.

Organizations Management Azure management groups provide a level of scope above

Groups subscriptions. You organize subscriptions into containers
called "management groups" and apply your governance
conditions to the management groups. All subscriptions
within a management group automatically inherit the
conditions applied to the management group.
Management groups give you enterprise-grade
management at a large scale, no matter what type of
subscriptions you have.

Encryption

19/26
 Azure
AWS service service Description

Server-side Azure Helps you protect and safeguard your data and meet
encryption with Storage your organizational security and compliance
Amazon S3 Key Service commitments.
Management Encryption
Service

Key Management Key Vault Provides security solution and works with other
Service (KMS), services by providing a way to manage, create, and
CloudHSM control encryption keys stored in hardware security
modules (HSMs).

Firewall

AWS Azure
service service Description

Web Web A firewall that protects web applications from common web
Application Application exploits.
Firewall Firewall

AWS Firewall Provides inbound protection for non-HTTP/S protocols,

Network outbound network-level protection for all ports and protocols,
Firewall and application-level protection for outbound HTTP/S.

Security

AWS Azure
service service Description

Inspector Defender for An automated security assessment service that improves the
Cloud security and compliance of applications. Automatically
assess applications for vulnerabilities or deviations from best
practices.

Certificate App Service Service that allows customers to create, manage, and
Manager Certificates consume certificates seamlessly in the cloud.
available on
the Portal

GuardDuty Microsoft Detect and investigate advanced attacks on-premises and in

Sentinel the cloud.

Artifact Service Trust Provides access to audit reports, compliance guides, and
Portal trust documents from across cloud services.

20/26
 AWS Azure
service service Description

Shield DDoS Provides cloud services with protection from distributed

Protection denial of services (DDoS) attacks.
Service

Security architectures

Architecture Description

Real-time fraud detection Detect fraudulent activity in real-time by using Azure Event
Hubs and Stream Analytics.

Securely managed web Learn about deploying secure applications using the App
applications Service Environment, the Azure Application Gateway service,
and Web Application Firewall.

Threat indicators for cyber Import threat indicators, view logs, create rules to generate
threat intelligence in security alerts and incidents, and visualize threat intelligence
Microsoft Sentinel data with Microsoft Sentinel.

view all

Storage

Object storage

AWS Azure
service service Description

Simple Blob Object storage service for use cases that include cloud
Storage storage applications, content distribution, backup, archive, immutable
Services storage, disaster recovery, and big data analytics.
(S3)

Virtual server disks

Azure
AWS service service Description

Elastic Block Store Managed SSD storage that's optimized for I/O-intensive
(EBS) Disks read/write operations. For use as high-performance
Azure virtual machine storage.

21/26
 Azure
AWS service service Description

Amazon FSX for NetApp Azure Storage area network (SAN) capabilities in the
ONTAP iSCSI or Elastic cloud. Uses industry-standard storage protocols.
NVMe/TCP LUNs SAN

Shared files

Azure
AWS service service Description

Elastic File Files Provides a simple interface for creating and configuring file
System systems quickly and sharing common files. Supports NFS
protocol for connectivity.

Amazon FSx Files Provides a managed SMB file share that can work with Active
for Windows Directory for access control. Azure Files can also natively
File Server integrate with Microsoft Entra ID.

Amazon FSx Azure Provides a managed Lustre file system that integrates with
for Lustre Managed object storage. Primary use cases include HPC, machine
Lustre learning, and analytics.

Amazon FSx Azure Provides managed NetApp capabilities in the cloud. Includes
for NetApp NetApp dual-protocol high-performance file storage.
ONTAP Files

Archiving and backup

AWS Azure
service service Description

S3 Storage Cool storage is a lower-cost tier for storing data that is infrequently
Infrequent cool tier accessed and long-lived.
Access
(IA)

S3 Cold Cold storage has lower storage costs and higher access costs.
Glacier access Access times remain in the milliseconds.
storage
tier

S3 Storage Archive storage has the lowest storage cost and higher data
Glacier archive retrieval costs. It can take hours to retrieve data.
Deep access
Archive tier

22/26
 AWS Azure
service service Description

Backup Backup This option is used to back up and recover files, databases, disks,
and virtual machines. Azure Backup also supports backing up
compatible on-premises Windows systems.

Hybrid storage

AWS Azure
service service Description

AWS Azure Data Provides on-premises, locally cached NFS and SMB file
Storage Box shares that are cloud-backed.
Gateway: S3 Gateway,
File Gateway Azure File
Sync

AWS None Replaces on-premises physical tapes with on-premises,

Storage cloud-backed virtual tapes.
Gateway:
Tape
Gateway

AWS None Provides on-premises iSCSI based block storage that is

Storage cloud-backed.
Gateway:
Volume
Gateway

DataSync File Sync Azure Files can be deployed in two main ways: by directly
mounting the serverless Azure file shares or by caching
Azure file shares on-premises using Azure File Sync.

Bulk data transfer

Azure
AWS service service Description

Import/Export Import/Export A data transport solution that uses secure disks and
Disk appliances to transfer large amounts of data. Also offers
data protection during transit.

Snowball Data Box Petabyte-scale to exabyte-scale data transport solution

Edge that uses enhanced-security data storage devices to
transfer large amounts of data to and from Azure.

Storage architectures

23/26
 Architecture Description

HIPAA and Manage HIPAA and HITRUST-compliant health data and medical
HITRUST- records with the highest level of built-in security.
compliant health
data AI

HPC log Optimize the media rendering process with a step-by-step HPC
solution architecture from Azure that combines Azure CycleCloud
and HPC Cache.

Medical data Store healthcare data effectively and affordably with cloud-based
storage solutions solutions from Azure. Manage medical records with the highest level
of built-in security.

View Azure storage architectures

Web applications

AWS Azure
service service Description

Elastic App Service Managed hosting platform providing easy to use services for
Beanstalk deploying and scaling web applications and services.

API API A turnkey solution for publishing APIs to external and internal
Gateway Management consumers.

CloudFront Azure Front Azure Front Door is a modern cloud content delivery network
Door (CDN) service that delivers high performance, scalability, and
secure user experiences for your content and applications.

Global Azure Front Easily join your distributed microservices architectures into a
Accelerator Door single global application using HTTP load balancing and
path-based routing rules. Automate turning up new regions
and scale-out with API-driven global actions and independent
fault-tolerance to your back-end microservices in Azure or
anywhere.

Global Cross- Distribute and load balance traffic across multiple Azure
Accelerator regional load regions via a single, static, global anycast public IP address.
balancer

Lightsail App Service Build, deploy, and scale web apps on a fully managed
platform.

App Web App for Easily deploy and run containerized web apps on Windows
Runner Containers and Linux.

24/26
 AWS Azure
service service Description

Amplify Static Web Boost productivity with a tailored developer experience,

Apps CI/CD workflows to build and deploy your static content
hosting, and dynamic scale for integrated serverless APIs.

Web architectures

Architecture Description

Architect The e-commerce website includes simple order processing workflows with
scalable e- the help of Azure services. Using Azure Functions and Web Apps,
commerce developers can focus on building personalized experiences and let Azure
web app take care of the infrastructure.

Multi-region Deploy an application on Azure Virtual Machines in multiple regions for

N-tier high availability and resiliency.
application

Serverless This reference architecture shows a serverless web application, which

web serves static content from Azure Blob Storage and implements an API by
application using Azure Functions.

view all

End-user computing

AWS Azure
service service Description

WorkSpaces, Azure Manage virtual desktops and applications to enable corporate

AppStream Virtual network and data access to users, anytime, anywhere, from
2.0 Desktop supported devices. Amazon WorkSpaces support Windows
and Linux virtual desktops. Azure Virtual Desktop supports
multi-session Windows 10 virtual desktops.

WorkLink Application Provides access to intranet applications without requiring

Proxy VPN connectivity. Amazon WorkLink is limited to iOS and
Android devices.

Miscellaneous

Azure
Area AWS service service Description

25/26
 Azure
Area AWS service service Description

Backend Step Logic Cloud technology to build distributed

process Functions Apps applications using out-of-the-box connectors to
logic reduce integration challenges. Connect apps,
data, and devices on-premises or in the cloud.

Enterprise WorkMail, Microsoft Fully integrated cloud service that provides

application WorkDocs, 365 communications, email, and document
services Chime management in the cloud and is available on a
wide variety of devices.

Gaming GameLift PlayFab Managed services for hosting dedicated game

servers.

Media Elastic Media Services that offer broadcast-quality video

transcoding Transcoder Services streaming services, including various
transcoding technologies.

Workflow Step Logic Serverless technology for connecting apps, data

Functions Apps and devices anywhere, whether on-premises or
in the cloud for large ecosystems of SaaS and
cloud-based connectors.

Hybrid Outposts Stack Azure Stack is a hybrid cloud platform that

enables you to run Azure services in your
company's or service provider's datacenter. As a
developer, you can build apps on Azure Stack.
You can then deploy them to either Azure Stack
or Azure, or you can build truly hybrid apps that
take advantage of connectivity between an
Azure Stack cloud and Azure.

Media Elemental Media Cloud-based media workflow platform to index,

MediaConvert Services package, protect, and stream video at scale.

Satellite Ground Azure Fully managed cloud-based ground station as a

Station Orbital service.

Quantum Amazon Azure Managed quantum computing service that

computing Braket Quantum developers, researchers, and businesses can
use to run quantum computing programs.

Next steps
If you are new to Azure, review the interactive Microsoft Azure Fundamentals learning path.

26/26