Priviledged access workstation managed by Azure
Azure PAW service, so the customer PAW devices can be managed by Microsoft, and customer can run multiple workloads on the secure device.
Mike M commented
All the documentation I find discusses how to configure a PAW on a physical or hyper-v system. By not offering how to configure a PAW in Azure, it also doesn't offer next steps where credential and device guard configurations aren't supported in Azure VMs. While this isn't necessarily a problem during the initial rollout, it does affect future advanced security configuration procedures.
Martin Diewald commented
An Architecture how to set up a PAW VM in Azure would also be nice for a first step (incl. Access, Network integration, NSGs etc.)