Azure Stack Hub Pricing and Features: Run Apps in an On-Premises Environment

Azure Stack Hub is an integrated hardware and software system that extends Azure services into your own datacenter, enabling you to build and run cloud applications in an on-premises environment. It delivers a consistent Azure experience with the same APIs, tools, and portal used in the public cloud while keeping data and workloads under your physical control. EPC Group has implemented Azure Stack Hub for government agencies, defense contractors, and financial institutions where data sovereignty and air-gapped operations are mandatory requirements.

Overview of Azure Stack Hub

Azure Stack Hub is a full Azure cloud platform delivered as an integrated system from Microsoft hardware partners. Unlike Azure Stack HCI, which focuses on virtualization and hyperconverged infrastructure, Azure Stack Hub provides a complete Azure resource provider experience including App Services, Azure Functions, Kubernetes, SQL databases, and Azure Marketplace resources—all running in your datacenter.

The platform is available in connected mode (continuous Azure connectivity) and disconnected mode (air-gapped for classified or highly regulated environments). This makes it the only Azure hybrid offering that supports fully disconnected operations, which is critical for military, intelligence, and certain financial compliance scenarios.

• Consistent Azure APIs: Use the same ARM templates, SDKs, and CLI commands as public Azure
• Self-service portal: Tenants provision resources through a familiar Azure portal experience
• Multi-tenant architecture: Support multiple departments or customers with isolated subscriptions
• Disconnected operation: Full functionality without internet connectivity for air-gapped environments
• Azure Marketplace: Access a curated set of marketplace items including VM images, extensions, and solution templates

Key Features

• IaaS: Windows and Linux virtual machines with availability sets and scale sets
• PaaS: App Service (Web Apps, API Apps, Functions), Azure Kubernetes Service, Event Hubs
• Data services: SQL Server resource provider, MySQL resource provider, and Azure Storage (blob, table, queue)
• Networking: Virtual networks, load balancers, VPN gateways, and network security groups
• Identity: Azure AD and AD FS support for authentication and RBAC
• Security: Encrypted data at rest, TLS in transit, key vault for secrets management
• Operator portal: Separate administration portal for capacity management, quotas, and billing
• Update engine: Microsoft-delivered update packages applied through a controlled process
• Usage tracking: Metering and usage reporting for chargeback and billing scenarios

Pricing Tiers

Azure Stack Hub pricing includes two components: the hardware investment from your OEM partner and the Azure software subscription fees.

Enterprise Use Cases

• Government classified workloads: Air-gapped Azure Stack Hub in IL5/IL6 environments for defense and intelligence agencies
• Financial services: Data sovereignty requirements that mandate on-premises processing with Azure-consistent development tools
• Healthcare: PHI processing on-premises with the ability to use Azure PaaS services without data leaving the facility
• Edge locations with latency requirements: Factory floors, offshore platforms, or remote sites that need local cloud services
• Service provider hosting: Multi-tenant Azure environments for managed service providers offering IaaS/PaaS to customers
• Application modernization: Lift-and-shift on-premises apps to Azure Stack Hub as a stepping stone to full cloud migration

Integration with Other Azure Services

• Azure DevOps: CI/CD pipelines that deploy to both Azure Stack Hub and public Azure from the same codebase
• Azure Active Directory: Unified identity and access management across cloud and on-premises
• Azure Monitor: Centralized monitoring and alerting when connected to Azure
• Azure Security Center: Threat detection and security posture management for connected deployments
• Azure Site Recovery: VM replication between Azure Stack Hub and public Azure for disaster recovery
• Azure Backup: Backup Azure Stack Hub VMs and data to Azure Recovery Services vaults
• Azure Key Vault: Consistent secrets management across hybrid environments

Best Practices for Enterprise Deployments

• Plan capacity carefully: Azure Stack Hub hardware is a significant investment; model workloads before selecting node count and specs
• Design for multi-tenancy: Use plans, offers, and quotas to manage resource consumption across departments or customers
• Establish update cadence: Microsoft releases monthly updates; plan maintenance windows and test in a dev environment first
• Implement chargeback: Use the built-in usage API to track consumption and charge back to business units
• Build hybrid CI/CD: Design deployment pipelines that target both Azure Stack Hub and public Azure for portability
• Plan for disconnected scenarios: If using disconnected mode, establish processes for offline updates and marketplace syndication
• Secure the operator environment: Limit access to the operator portal, hardware lifecycle host, and privileged endpoint
• Document disaster recovery: Plan for hardware failures, site recovery, and complete rebuild scenarios

Why Choose EPC Group for Azure Stack Hub

EPC Group's 29 years of enterprise Microsoft consulting includes deep expertise in hybrid cloud architectures and on-premises Azure deployments. We have designed and deployed Azure Stack Hub solutions for government agencies requiring air-gapped operations, healthcare organizations processing PHI on-premises, and financial institutions with strict data residency requirements.

Our team handles the complete lifecycle from initial capacity planning and OEM hardware selection through deployment, application migration, and ongoing operations. We work with your security and compliance teams to ensure Azure Stack Hub meets your organization's regulatory requirements, whether that is HIPAA, FedRAMP, SOC 2, or DoD IL5/IL6.

Frequently Asked Questions