Improve Fabric Landing Zone Governance
As your Microsoft Fabric environment matures, it’s critical to enhance your governance approach to ensure compliance, security, and operational clarity. This includes evolving your policies and controls across Fabric domains, workspaces, and items. For general cloud governance principles, refer to the Govern methodology.
Fabric Governance Best Practices
The following best practices help strengthen governance for Fabric Landing Zones:
1. Define a Naming and Tagging Strategy
- Establish a consistent naming convention for Domains, Workspaces, Items (like Lakehouses, Warehouses, Pipelines).
- Use tags across Fabric resources (e.g.
costCenter,env,owner,dataClassification) to drive automation, reporting, and lifecycle governance. - Automate tagging via deployment templates or Fabric CLI scripting.
2. Track Cost and Usage
- Leverage Fabric Capacity Metrics and Microsoft Cost Management to monitor usage across workspaces.
- Use tags and naming to assign cost attribution at domain, workspace, and item levels.
- Incorporate cost analysis as part of your workspace provisioning lifecycle.
3. Scale with Multiple Workspaces
- Organize workloads into dedicated workspaces by environment (dev/test/prod), application, or department.
- Use security groups to manage workspace roles and control access at scale.
- Apply workspace templates (via IaC or the Fabric CLI) to enforce consistent setup.
4. Organize Domains Strategically
- Align Domains to major business units, data domains (per Data Mesh), or compliance boundaries.
- Apply workspace policies and permission baselines per domain.
- Monitor domain activity with audit logs and Microsoft Purview for sensitive data governance.
5. Keep Your Fabric Landing Zone Up to Date
- Use infrastructure as code (Terraform, Bicep, or Fabric CLI) to enforce governance changes across workspaces.
- Detect drift in configurations with version-controlled IaC.
- Regularly review and refine governance as new Fabric capabilities (like OneLake security or DLP features) are released.
For more advanced governance, including data sovereignty, classification, and automation, see Fabric Governance Overview.
![github-actions[bot] avatar](https://github.com/41898282.png){kind=small}
41898282
TheTrustedAdvisor (Matthias Falland)