Create paved roads

This blueprint creates an Azure Storage Account with best practices in mind, such as enforcing HTTPS traffic only and setting the minimum TLS version to TLS 1.2 for enhanced security. It defaults to the StorageV2 account kind and LRS replication for optimal performance and cost-effectiveness. The blueprint allows for the configuration of network rules to restrict access, promoting secure data management. It also encourages the use of tags for better resource identification and management, and organizes variables into logical groups to assist users who may not be cloud infrastructure experts.

This blueprint creates an AWS Route Table associated with a specified VPC. It allows users to define multiple routes using section tags, adhering to best practices by encouraging the use of tagging for resource identification and management. The blueprint is organized into groups to assist users, including those who may not be cloud infrastructure experts, in configuring essential settings and routes easily.

This blueprint creates a Google Compute Subnetwork with best practices by defaulting to enable private Google access and flow logs, enhancing security and observability. It allows for the configuration of secondary IP ranges and encourages the use of labels for better resource management. The variables are organized into logical groups to assist users, including those who may not be cloud infrastructure experts, in configuring essential settings easily.

This blueprint creates an AWS KMS key with best practices in mind, such as enabling key rotation by default to enhance security. It allows users to provide a custom key policy if needed and encourages the use of tags for resource identification and management. The blueprint organizes variables into groups to assist users—including those who may not be cloud infrastructure experts—in configuring essential and advanced settings easily.

This blueprint creates an Azure Network Interface with best practices in mind, such as associating it with a subnet and optionally a Network Security Group to enhance security. It includes options to enable accelerated networking for improved performance and uses default settings that promote secure configurations. The blueprint encourages the use of tags for better resource management and organizes variables into intuitive groups to assist users—including those who may not be cloud infrastructure experts—in configuring essential and advanced settings easily.

‍

This blueprint creates an AWS RDS DB instance following best practices such as enabling encryption at rest for data security, setting Multi-AZ deployment by default for high availability, and disabling public access to enhance security. It organizes variables into intuitive groups to assist users—especially those not well-versed in cloud infrastructure—in configuring essential and advanced settings easily. The blueprint also encourages tagging for better resource identification and management.

This blueprint creates an AWS IAM User with best practices in mind, such as encouraging the use of tagging for resource identification and management. It provides advanced options like setting a permissions boundary for enhanced security control. The blueprint organizes variables into groups to assist users, including those who may not be cloud infrastructure experts, in configuring essential and advanced settings easily.

This blueprint creates an AWS Internet Gateway and attaches it to a specified VPC. It adheres to best practices by encouraging the use of tagging for better resource management and identification. The blueprint is organized to assist users, including those who may not be cloud infrastructure experts, in configuring essential settings easily.

This blueprint creates a Google Cloud VPC network following best practices by defaulting to custom mode (auto_create_subnetworks set to false), allowing for manual subnet creation and better control over network configuration. It includes advanced options like routing mode and MTU with sensible defaults, providing flexibility for advanced users. The blueprint is organized to help users, including those who may not be cloud infrastructure experts, configure essential settings easily.

This blueprint creates an AWS RDS Cluster following best practices such as enabling encryption at rest for data security, setting deletion protection by default to prevent accidental deletion, and configuring sensible defaults for backup retention and preferred backup windows. It encourages the use of tags for resource identification and management. The blueprint is organized into intuitive groups to assist users—including those not well-versed in cloud infrastructure—in configuring essential and advanced settings easily.

This blueprint creates an Azure Load Balancer with best practices in mind, such as defaulting to the 'Standard' SKU for enhanced features and security. It provides flexibility to configure either a public or internal Load Balancer by allowing users to specify the appropriate frontend IP configurations. The blueprint promotes the use of tagging for better resource management and organizes variables into logical groups to guide users—including those who may not be cloud infrastructure experts—through the essential and advanced settings.

This blueprint creates an Azure Virtual Machine with best practices such as disabling password authentication by default to enhance security and encouraging the use of SSH keys for authentication. It uses managed disks and defaults to the latest Ubuntu LTS image. Variables are organized into intuitive groups to assist users who may not be cloud infrastructure experts. The blueprint also promotes the use of tags for better resource identification and management.

This blueprint creates an Azure Public IP with best practices in mind, such as defaulting to a 'Static' allocation method and using the 'Standard' SKU for enhanced security and features. It encourages the use of tags for better resource management and identification. Advanced settings like idle timeout can be customized if needed. The blueprint organizes variables into intuitive groups to assist users—including those who may not be cloud infrastructure experts—in configuring essential and advanced settings easily.

This blueprint creates an Azure SQL Server with best practices such as requiring secure administrator credentials, defaulting to version 12.0, and encouraging the use of managed identities for enhanced security. It promotes the use of tags for better resource identification and management and organizes variables into logical groups to assist users—including those who may not be cloud infrastructure experts—in configuring essential and advanced settings easily.

This Blueprint sets up a Google Compute Address with customizable options, emphasizing best practices by defaulting to an external address in the "us-central1" region using the "PREMIUM" network tier. Variables are organized into "Basic Settings" for essential configurations and "Advanced Settings" for additional customization, aiding software engineers in deploying cloud resources securely and efficiently without deep expertise in cloud infrastructure.l offering flexibility for advanced users.