Ricardo Martins

Why Azure feels harder than AWS…

and why that’s not an accident.

If you have worked with both Azure and AWS long enough, you have probably felt it.

AWS feels straightforward.
Azure feels… heavier.

Not worse. Not broken. Just harder to reason about.

The console feels denser.
The mental model feels less obvious.
The number of “extra” concepts feels higher.

This is not a beginner problem.
Senior engineers feel it too.

And the most interesting part is this: that friction is not accidental.

The common explanation. And why it’s incomplete

The usual explanation goes something like this:

“AWS was built for developers. Azure was built for enterprises.”

There is truth there, but it is shallow truth.

It explains who the platforms were designed for, but not why the experience feels fundamentally different once systems grow beyond a certain size.

To understand that, you have to look at what each platform optimizes for at its core.

AWS optimizes for primitives

AWS is built around simple, composable primitives.

You get:

  • An identity system.
  • A network.
  • Compute.
  • Storage.
  • APIs that mostly do one thing well.

The platform assumes that you, the customer, will assemble these primitives into systems.

This leads to a few consequences:

  • Services feel decoupled.
  • The learning curve is front-loaded.
  • Once you “get it”, patterns repeat.
  • The platform rarely interferes with your design choices.

This is why AWS often feels intuitive to engineers with strong systems backgrounds.
It stays out of the way.

The cost of this approach is that you own more of the architecture.
AWS gives you tools, not guardrails.

Azure optimizes for systems, not components

Azure makes a very different assumption.

Azure assumes that:

  • Identity is central, not optional.
  • Governance is not a later concern.
  • Enterprises will need control before they need speed.
  • Integration matters more than purity.

This is why Azure introduces concepts earlier that AWS postpones or leaves optional:

  • Management groups.
  • Role inheritance.
  • Policy enforcement.
  • Resource-level RBAC.
  • Tight coupling with identity and compliance.

From a distance, this looks like complexity.
From close up, it is intentional structure.

Azure is opinionated about how large organizations should operate.

The real reason Azure feels harder

Azure feels harder because it forces decisions earlier.

AWS often lets you postpone decisions:

  • Governance can come later.
  • Identity models can evolve organically.
  • Network design can be refactored gradually.

Azure pushes those questions to the front:

  • Who owns this?
  • Who can change this?
  • Under which policy does this resource exist?
  • How does this align with the directory?

This is uncomfortable, especially for teams that want to move fast.

But there is a trade-off hiding here.

Complexity vs ambiguity

AWS reduces friction by allowing ambiguity.

Azure reduces ambiguity by introducing complexity.

Neither approach is inherently better.
They optimize for different failure modes.

In AWS, teams often struggle later with:

  • Sprawling accounts.
  • Inconsistent IAM models.
  • Security controls added retroactively.
  • Cost visibility that arrives too late.

In Azure, teams struggle earlier with:

  • Too many concepts at once.
  • Heavier initial design work.
  • More “why do I need this?” moments.

What Azure does is make organizational complexity visible.

And that is why it feels harder.

Why this matters at scale

At small scale, AWS often feels faster.

At large scale, Azure often feels safer.

Not because Azure is magically more secure, but because its model aligns more naturally with how large organizations actually function:

  • Central identity.
  • Clear ownership.
  • Policy as a first-class concern.
  • Strong boundaries between teams.

This is also why Azure adoption accelerates once companies reach a certain size.
The pain shifts from “this is too complex” to “this is preventing chaos”.

That transition is rarely smooth, but it is predictable.

Azure’s biggest mistake. And AWS’s biggest risk

Azure’s biggest mistake is that it rarely explains why its model exists.

Documentation tells you what to configure, not why it matters.
This makes complexity feel arbitrary instead of purposeful.

AWS’s biggest risk is the opposite.

Its flexibility can mask structural problems until they are expensive to fix.
By the time governance becomes urgent, the system is already entrenched.

Neither platform solves this perfectly.
But understanding the trade-off changes how you approach both.

The maturity lens

Here is the pattern I see repeatedly.

  • Early-stage teams prefer AWS.
  • Growing teams struggle with both.
  • Mature enterprises often settle more comfortably into Azure.

Not because Azure is simpler. But because its constraints match their reality.

Cloud maturity is not about which platform you choose. It is about recognizing when friction is a signal, not a flaw.

Sometimes friction is telling you:

  • You need clearer ownership.
  • You need stronger boundaries.
  • You need to stop optimizing for speed alone.

A reframing that helps

Instead of asking:

“Why is Azure so complicated?”

A more useful question is:

“What organizational problem is this trying to surface?”

Seen through that lens:

  • Azure feels less arbitrary.
  • AWS feels less forgiving.
  • And architectural decisions become clearer.

You stop fighting the platform and start using it intentionally.

The takeaway

Azure feels harder than AWS because it asks harder questions earlier.

Questions about identity.
About governance.
About ownership.
About responsibility.

Those questions are unavoidable at scale.
Azure simply refuses to let you ignore them.

That does not make Azure better.
It makes it honest about complexity.

And in real systems, honesty usually hurts before it helps.

Leave a Reply

Your email address will not be published. Required fields are marked *