Purpose-built for management-at-scale
Azure Lighthouse supports Zero Trust provisioning with cross-tenant, granular, and just-in-time access controls, combined with on-demand auditing, all from a unified control plane.
The native management portal allows Managed Services Providers (MSPs) to profitably and efficiently build and deliver secure managed services for every customer need.
Explore success stories
Strengthen authentication and reduce risk
Secure and compliant by default.
- Just-enough access with Azure Role Based Access Controls
- Just-in-time access with Azure AD PIM
- Azure MFA for users and groups
- Auditability though audit and activity logs
- Azure AD license required only on the MSP tenant
- Customer approval only required at delegation
Build a scalable managed security practice
Achieve greater visibility and respond faster with a cloud-native SIEM.
- Collect security data at cloud scale across your hybrid environment
- Leverage AI to detect threats and reduce alert fatigue
- Visualize and investigate the entire attack
- Respond rapidly with built-in orchestration and automation
- Optimize SOC deployments and automate configurations
- Protect your IP & gain insights across tenants
Bring Azure to any infrastructure
Extend Azure management & enable Azure services across on-premises, multi-cloud, and edge.
- Grow revenue by expanding Servers & Kubernetes management in hybrid environments
- Consolidate toolsets and governance for complex environments
- Extend Azure Lighthouse security and visibility to hybrid and multi-cloud
- Adopt cloud practices on-premises
- Run Azure data services anywhere
Optimize operations and management
Centralized, optimized, and automated deployments and management.
- Leverage Azure Policy to view governance and compliance reports
- Leverage ARM & Azure DevOps (or your tool of choice) to automate deployments and governance/management capabilities
- View and manage costs for your customers from a single-pane-of-glass view
- View Azure Advisor recommendations and optimize their cloud environments
Built for more than MSPs
An ISV hosts resources in a subscription in their own tenant, then uses Azure Lighthouse to let customers access these resources. The customer can then log in to their own tenant and access these resources as needed.
ISVs maintain their IP in their own tenant and can use their own support plans to raise tickets related to the solution hosted in their tenant, rather than using the customer's plan.
Since the resources are in the ISV's tenant, all actions can be performed directly by the ISV, such as logging into VMs, installing apps, and performing maintenance tasks. In this scenario, users in the customer’s tenant are essentially granted access as a "managing tenant", even though the customer is not managing the ISV's resources.
Some organizations may need to use multiple Azure AD tenants. This might be a temporary situation, as when acquisitions have taken place and a long-term tenant consolidation strategy hasn't been defined yet. Other times, organizations may need to maintain multiple tenants on an ongoing basis due to wholly independent subsidiaries, geographical or legal requirements, or other considerations.
In cases where a multi-tenant architecture is required, Azure Lighthouse can help centralize and streamline management operations. By using Azure delegated resource management, users in one managing tenant can perform cross-tenant management functions in a centralized, scalable manner.
“I no longer need my team building foundational management solutions, we can now focus our energies on customer outcomes, not only improving the customer experience, but reducing our costs. Azure Lighthouse has been a game changer for our business.”
Symon Thurlow, CEO, Parallo
“The bottom line is that Azure Lighthouse is now one of our top business drivers for the organization. Publishing and pushing out our offers on Azure Lighthouse has been a huge accelerator for us – we did more in pure cloud revenue in Q1 2020 than we did last year and that’s all thanks to being part of the Azure Lighthouse program.”
Ryan Young, CTO, Vandis
“The combination of secure monitoring and reporting offered across the Azure management suite of services enabled us to work with unprecedented speed and accuracy, hone our consulting offerings, and build better connections with our customers. And it all started with Azure Lighthouse.”
Christian Grützner, Solution Architect, All for One