diff --git a/docs/master/services/azure-services-guide.md b/docs/master/services/azure-services-guide.md
new file mode 100644
index 00000000..0373349b
--- /dev/null
+++ b/docs/master/services/azure-services-guide.md
@@ -0,0 +1,660 @@
+# Deploying Wordpress in Azure
+
+This user guide will walk you through Wordpress application deployment using
+Crossplane managed resources and the official Wordpress Docker image.
+
+## Table of Contents
+
+1. [Pre-requisites](#pre-requisites)
+2. [Preparation](#preparation)
+3. [Set Up AKS Cluster](#set-up-aks-cluster)
+4. [Set Up Crossplane](#set-up-crossplane)
+5. [Install Wordpress](#install-wordpress)
+6. [Uninstall](#uninstall)
+7. [Conclusion and Next Steps](#conclusion-and-next-steps)
+
+## Pre-requisites
+
+These tools are required to complete this guide. They must be installed on your
+local machine.
+
+* [Azure CLI][azure-cli]
+    * Make sure to [login][azure-login] after installation.
+* [kubectl][install-kubectl]
+    * kubectl also be installed using the Azure CLI: `az aks install-cli`
+* [Helm][using-helm], minimum version `v2.10.0+`.
+* [jq][jq-docs] - commandline JSON processor `v1.5+`
+
+
+## Preparation
+
+This guide assumes that you have setup the Azure CLI and are logged in to your
+desired account.
+
+*Note: environment variables are used throughout this guide. You may use the
+values below or create your own.*
+
+```bash
+export RESOURCE_GROUP_NAME=myResourceGroup
+export RESOURCE_GROUP_LOCATION=eastus
+export AKS_NAME=myAKSCluster
+export AKS_NODE_COUNT=1
+export AKS_RESOURCE_GROUP=MC_${RESOURCE_GROUP_NAME}_${AKS_NAME}_${RESOURCE_GROUP_LOCATION}
+export SUBSCRIPTION_ID=$(az account list | jq -j '.[0].id')
+``` 
+
+### Set Up AKS Cluster
+
+Azure maintains a succinct [walkthrough][aks-walkthrough] for setting up an AKS
+cluster using the Azure CLI. The basic steps are as follows:
+
+1. Create a Resource Group
+```bash
+az group create --name $RESOURCE_GROUP_NAME --location $RESOURCE_GROUP_LOCATION
+```
+
+2. Create AKS Cluster (this may take a few minutes)
+```bash
+az aks create \
+    --resource-group $RESOURCE_GROUP_NAME \
+    --name $AKS_NAME \
+    --node-count $AKS_NODE_COUNT \
+    --enable-addons monitoring \
+    --generate-ssh-keys
+```
+
+3. Enable SQL Service Endpoint
+
+Get name of AKS node Virtual Network:
+```bash
+export AKS_VNET=$(az network vnet list -g $AKS_RESOURCE_GROUP | jq -j '.[0].name')
+```
+
+Add Service Endpoint to AKS subnet:
+```bash
+az network vnet subnet update -g $AKS_RESOURCE_GROUP --vnet-name $AKS_VNET -n aks-subnet --service-endpoints Microsoft.Sql
+```
+
+4. Connect to AKS Cluster 
+```bash
+az aks get-credentials --resource-group $RESOURCE_GROUP_NAME --name $AKS_NAME
+```
+
+5. Make sure `kubectl` is able to communicate with AKS Cluster
+```bash
+kubectl cluster-info
+```
+
+### Set Up Crossplane
+
+Using the newly provisioned cluster:
+
+1. Install Crossplane from alpha channel. (See the [Crossplane Installation
+   Guide][crossplane-install] for more information.)
+```bash
+helm repo add crossplane-alpha https://charts.crossplane.io/alpha
+helm install --name crossplane --namespace crossplane-system crossplane-alpha/crossplane
+```
+
+2. Install the Azure stack into Crossplane. (See the [Azure stack
+   section][azure-stack-install] of the install guide for more information.)
+
+```yaml
+cat > stack-azure.yaml <<EOF
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: azure
+---
+apiVersion: stacks.crossplane.io/v1alpha1
+kind: StackRequest
+metadata:
+  name: stack-azure
+  namespace: crossplane-system
+spec:
+  package: "crossplane/stack-azure:master"
+EOF
+
+kubectl apply -f stack-azure.yaml
+```
+
+3. Obtain Azure credentials. (See the [Cloud Provider Credentials][cloud-creds]
+   docs for more information.)
+
+#### Infrastructure Namespaces
+
+Kubernetes namespaces allow for separation of environments within your cluster.
+You may choose to use namespaces to group resources by team, application, or any
+other logical distinction. For this guide, we will create a namespace called
+`app-project1-dev`, which we will use to group our Azure infrastructure
+components.
+
+* Define a `Namespace` in `azure-infra-dev-namespace.yaml` and create it:
+```yaml
+cat > azure-infra-dev.yaml <<EOF
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: azure-infra-dev
+EOF
+
+kubectl apply -f azure-infra-dev-namespace.yam
+```
+
+* You should see the following output:
+
+> namespace/azure-infra-dev.yaml created
+
+#### Azure Provider
+
+It is essential to make sure that the Azure Service Principal is configured with
+all permissions outlined in the [provider guide][azure-provider-guide].
+
+Using Azure Service Principal `crossplane-azure-provider-key.json`:
+* Generate BASE64ENCODED_AZURE_PROVIDER_CREDS encoded value:
+```bash
+export BASE64ENCODED_AZURE_PROVIDER_CREDS=$(base64 crossplane-azure-provider-key.json | tr -d "\n")
+```
+
+* Define an Azure `Provider` and `Secret` in `azure-provider.yaml` and create
+  them:
+```yaml
+cat > azure-provider.yaml <<EOF
+---
+# Azure Admin service account secret - used by Azure Provider
+apiVersion: v1
+kind: Secret
+metadata:
+  name: demo-provider-azure-dev
+  namespace: azure-infra-dev
+type: Opaque
+data:
+  credentials: $BASE64ENCODED_AZURE_PROVIDER_CREDS
+---
+# Azure Provider with service account secret reference - used to provision resources
+apiVersion: azure.crossplane.io/v1alpha2
+kind: Provider
+metadata:
+  name: demo-azure
+  namespace: azure-infra-dev
+spec:
+  credentialsSecretRef:
+    name: demo-provider-azure-dev
+    key: credentials
+EOF
+
+kubectl apply -f azure-provider.yaml
+```
+
+* Verify Azure provider was successfully registered by the crossplane
+```bash
+kubectl get providers.azure.crossplane.io -n azure-infra-dev
+kubectl get secrets -n azure-infra-dev
+```
+
+#### Cloud-Specific Resource Classes
+
+Cloud-specific resource classes are used to define a reusable configuration for
+a specific managed service. Wordpress requires a MySQL database, which can be
+satisfied by an [Azure Database for MySQL][azure-mysql] instance.
+
+* Define an Azure MySQL `SQLServerClass` in `azure-mysql-standard.yaml` and
+  create it:
+```yaml
+cat > azure-mysql-standard.yaml <<EOF
+---
+apiVersion: database.azure.crossplane.io/v1alpha2
+kind: SQLServerClass
+metadata:
+  name: azure-mysql-standard
+  namespace: azure-infra-dev
+specTemplate:
+  adminLoginName: myadmin
+  resourceGroupName: $RESOURCE_GROUP_NAME
+  location: EAST US
+  sslEnforced: false
+  version: "5.6"
+  pricingTier:
+    tier: GeneralPurpose
+    vcores: 2
+    family: Gen5
+  storageProfile:
+    storageGB: 25
+    backupRetentionDays: 7
+    geoRedundantBackup: false
+  providerRef:
+    name: demo-azure
+    namespace: azure-infra-dev
+  reclaimPolicy: Delete
+EOF
+
+kubectl apply -f azure-mysql-standard.yaml
+```
+
+* You should see the following output:
+
+> sqlserverclass.database.azure.crossplane.io/azure-mysql-standard created
+
+
+* You can verify creation with the following command and output:
+
+```bash
+$ kubectl get sqlserverclasses -n azure-infra-dev
+NAME                   PROVIDER-REF   RECLAIM-POLICY   AGE
+azure-mysql-standard   demo-azure     Delete           11s
+```
+
+You are free to create more Azure `SQLServerClass` instances to define more
+potential configurations. For instance, you may create `large-azure-mysql` with
+field `storageGB: 100`.
+
+#### Application Namespaces
+
+Earlier, we created a namespace to group our Azure infrastructure resources.
+Because our application resources may be satisfied by services from any cloud
+provider, we want to separate them into their own namespace. For this demo, we
+will create a namespace called `app-project1-dev`, which we will use to group
+our Wordpress resources.
+
+* Define a `Namespace` in `app-project1-dev-namespace.yaml` and create it:
+```yaml
+cat > app-project1-dev-namespace.yaml <<EOF
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: app-project1-dev
+EOF
+
+kubectl apply -f app-project1-dev-namespace.yaml
+```
+
+* You should see the following output:
+
+> namespace/app-project1-dev created
+
+#### Portable Resource Classes
+
+Portable resource classes are used to define a class of service in a single
+namespace for an abstract service type. We want to define our Azure
+`SQLServerClass` as the standard MySQL class of service in the namespace that
+our Wordpress resources will live in.
+
+* Define a `MySQLInstanceClass` in `mysql-standard.yaml` for namespace
+  `app-project1-dev` and create it:
+```yaml
+cat > mysql-standard.yaml <<EOF
+---
+apiVersion: database.crossplane.io/v1alpha1
+kind: MySQLInstanceClass
+metadata:
+  name: mysql-standard
+  namespace: app-project1-dev
+classRef:
+  kind: SQLServerClass
+  apiVersion: database.azure.crossplane.io/v1alpha2
+  name: azure-mysql-standard
+  namespace: azure-infra-dev
+EOF
+
+kubectl apply -f mysql-standard.yaml
+```
+
+* You should see the following output:
+
+> mysqlinstanceclass.database.crossplane.io/mysql-standard created
+
+* You can verify creation with the following command and output:
+
+```bash
+$ kubectl get mysqlinstanceclasses -n app-project1-dev
+NAME             AGE
+mysql-standard   27s
+```
+
+Once again, you are free to create more `MySQLInstanceClass` instances in this
+namespace to define more classes of service. For instance, if you created
+`mysql-azure-large` above, you may want to create a `MySQLInstanceClass` named
+`mysql-large` that references it. You may also choose to create MySQL resource
+classes for other non-Azure providers, and reference them for a class of service
+in the `app-project1-dev` namespace.
+
+You may specify *one* instance of a portable class kind as *default* in each
+namespace. This means that the portable resource class instance will be applied
+to claims that do not directly reference a portable class. If we wanted to make
+our `mysql-standard` instance the default `MySQLInstanceClass` for namespace
+`app-project1-dev`, we could do so by adding a label:
+
+```yaml
+---
+apiVersion: database.crossplane.io/v1alpha1
+kind: MySQLInstanceClass
+metadata:
+  name: mysql-standard
+  namespace: app-project1-dev
+  labels:
+    default: "true"
+classRef:
+  kind: SQLServerClass
+  apiVersion: database.azure.crossplane.io/v1alpha2
+  name: azure-mysql-standard
+  namespace: azure-infra-dev
+```
+
+#### Resource Claims
+
+Resource claims are used to create external resources by referencing a class of
+service in the claim's namespace. When a claim is created, Crossplane uses the
+referenced portable class to find a cloud-specific resource class to use as the
+configuration for the external resource. We need a to create a claim to
+provision the MySQL database we will use with Azure.
+
+* Define a `MySQLInstance` claim in `mysql-claim.yaml` and create it:
+```yaml
+cat > mysql-claim.yaml <<EOF
+apiVersion: database.crossplane.io/v1alpha1
+kind: MySQLInstance
+metadata:
+  name: mysql-claim
+  namespace: app-project1-dev
+spec:
+  classRef:
+    name: mysql-standard
+  writeConnectionSecretToRef:
+    name: wordpressmysql
+  engineVersion: "5.6"
+EOF
+
+kubectl apply -f mysql-claim.yaml
+```
+
+What we are looking for is for the `STATUS` value to become `Bound` which
+indicates the managed resource was successfully provisioned and is ready for
+consumption. You can see when claim is bound using the following:
+
+```bash
+$ kubectl get mysqlinstances -n app-project1-dev
+NAME          STATUS   CLASS            VERSION   AGE
+mysql-claim   Bound    mysql-standard   5.6       11m
+```
+
+If the `STATUS` is blank, we are still waiting for the claim to become bound.
+You can observe resource creation progression using the following:
+
+```bash
+$ kubectl describe mysqlinstance mysql-claim -n app-project1-dev
+Name:         mysql-claim
+Namespace:    app-project1-dev
+Labels:       <none>
+Annotations:  kubectl.kubernetes.io/last-applied-configuration:
+                {"apiVersion":"database.crossplane.io/v1alpha1","kind":"MySQLInstance","metadata":{"annotations":{},"name":"mysql-claim","namespace":"team..."}}
+API Version:  database.crossplane.io/v1alpha1
+Kind:         MySQLInstance
+Metadata:
+  Creation Timestamp:  2019-09-16T13:46:42Z
+  Finalizers:
+    finalizer.resourceclaim.crossplane.io
+  Generation:        2
+  Resource Version:  4256
+  Self Link:         /apis/database.crossplane.io/v1alpha1/namespaces/app-project1-dev/mysqlinstances/mysql-claim
+  UID:               6a7fe064-d888-11e9-ab90-42b6bb22213a
+Spec:
+  Class Ref:
+    Name:          mysql-standard
+  Engine Version:  5.6
+  Resource Ref:
+    API Version:  database.azure.crossplane.io/v1alpha2
+    Kind:         MysqlServer
+    Name:         mysqlinstance-6a7fe064-d888-11e9-ab90-42b6bb22213a
+    Namespace:    azure-infra-dev
+  Write Connection Secret To Ref:
+    Name:  wordpressmysql
+Status:
+  Conditions:
+    Last Transition Time:  2019-09-16T13:46:42Z
+    Reason:                Managed claim is waiting for managed resource to become bindable
+    Status:                False
+    Type:                  Ready
+    Last Transition Time:  2019-09-16T13:46:42Z
+    Reason:                Successfully reconciled managed resource
+    Status:                True
+    Type:                  Synced
+Events:                    <none>
+```
+
+*Note: You must wait until the claim becomes bound before continuing with this
+guide. It could take a few minutes for Azure to complete MySQL creation.*
+
+We referenced our portable `MySQLInstanceClass` directly in the claim above, but
+if you specified that `mysql-standard` was the default `MySQLInstanceClass` for
+namespace `app-project1-dev`, we could have omitted the claim's `classRef` and
+it would automatically be assigned:
+
+```yaml
+apiVersion: database.crossplane.io/v1alpha1
+kind: MySQLInstance
+metadata:
+  name: mysql-claim
+  namespace: app-project1-dev
+spec:
+  writeConnectionSecretToRef:
+    name: wordpressmysql
+  engineVersion: "5.6"
+```
+
+#### Virtual Network Rule
+
+Before we install Wordpress, we need establish connectivity between our MySQL
+database and our AKS cluster. We can do this by creating a [Virtual Network
+Rule][azure-vnet-rule].
+
+* Set `MYSQL_NAME` environment variable:
+```bash
+export MYSQL_NAME=$(kubectl get -o json mysqlinstance mysql-claim -n app-project1-dev | jq -j '.spec.resourceRef.name')
+```
+
+* Define a `MysqlServerVirtualNetworkRule` in `wordpress-vnet-rule.yaml` and
+  create it:
+```yaml
+cat > wordpress-vnet-rule.yaml <<EOF
+---
+apiVersion: database.azure.crossplane.io/v1alpha2
+kind: MysqlServerVirtualNetworkRule
+metadata:
+  name: wordpress-vnet-rule
+  namespace: app-project1-dev
+spec:
+  name: wordpress-vnet-rule
+    serverName: ${MYSQL_NAME
+  resourceGroupName: ${AKS_RESOURCE_GROUP}
+  properties:
+    virtualNetworkSubnetId: /subscriptions/${SUBSCRIPTION_ID}/resourceGroups/${AKS_RESOURCE_GROUP}/providers/Microsoft.Network/virtualNetworks/${AKS_VNET}/subnets/aks-subnet
+  providerRef:
+    name: demo-azure
+    namespace: azure-infra-dev
+  reclaimPolicy: Delete
+EOF
+
+kubectl apply -f wordpress-vnet-rule.yaml
+```
+
+* You can verify creation with the following command and output:
+
+```bash
+kubectl get mysqlservervirtualnetworkrules -n app-project1-dev
+NAME                  AGE
+wordpress-vnet-rule   27s
+```
+
+## Install Wordpress
+
+Installing Wordpress requires creating a Kubernetes `Deployment` and load
+balancer `Service`. We will point the deployment to the `wordpressmysql` secret
+that we specified in our claim above for the Wordpress container environment
+variables. It should have been populated with our MySQL connection details after
+the claim became `Bound`.
+
+* Check to make sure `wordpressmysql` exists and is populated:
+
+```bash
+$ kubectl describe secret wordpressmysql -n app-project1-dev
+Name:         wordpressmysql
+Namespace:    app-project1-dev
+Labels:       <none>
+Annotations:  <none>
+
+Type:  Opaque
+
+Data
+====
+endpoint:  75 bytes
+password:  27 bytes
+username:  58 bytes
+```
+
+* Define the `Deployment` and `Service` in `wordpress-app.yaml` and create it:
+```yaml
+cat > wordpress-app.yaml <<EOF
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  namespace: app-project1-dev
+  name: wordpress
+  labels:
+    app: wordpress
+spec:
+  selector:
+    matchLabels:
+      app: wordpress
+  template:
+    metadata:
+      labels:
+        app: wordpress
+    spec:
+      containers:
+        - name: wordpress
+          image: wordpress:4.6.1-apache
+          env:
+            - name: WORDPRESS_DB_HOST
+              valueFrom:
+                secretKeyRef:
+                  name: wordpressmysql
+                  key: endpoint
+            - name: WORDPRESS_DB_USER
+              valueFrom:
+                secretKeyRef:
+                  name: wordpressmysql
+                  key: username
+            - name: WORDPRESS_DB_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: wordpressmysql
+                  key: password
+          ports:
+            - containerPort: 80
+              name: wordpress
+---
+apiVersion: v1
+kind: Service
+metadata:
+  namespace: app-project1-dev
+  name: wordpress
+  labels:
+    app: wordpress
+spec:
+  ports:
+    - port: 80
+  selector:
+    app: wordpress
+  type: LoadBalancer
+EOF
+
+kubectl apply -f wordpress-app.yaml
+```
+
+* You can verify creation with the following command and output:
+
+```bash
+$ kubectl get -f wordpress-app.yaml 
+NAME                        READY   UP-TO-DATE   AVAILABLE   AGE
+deployment.apps/wordpress   1/1     1            1           11m
+
+NAME                TYPE           CLUSTER-IP    EXTERNAL-IP   PORT(S)        AGE
+service/wordpress   LoadBalancer   10.0.128.30   52.168.69.6   80:32587/TCP   11m
+```
+
+If the `EXTERNAL-IP` field of the `LoadBalancer` is `<pending>`, wait until it
+becomes available, then navigate to the address. You should see the following:
+
+![alt wordpress](wordpress-start.png)
+
+## Uninstall
+
+### Wordpress
+
+All Wordpress components that we installed can be deleted with one command:
+
+```bash
+kubectl delete -f wordpress-app.yaml
+```
+
+### Crossplane Configuration
+
+To delete all created resources, but leave Crossplane and the Azure stack
+running, execute the following commands:
+```bash
+kubectl delete -f wordpress-vnet-rule.yaml
+kubectl delete -f mysql-claim.yaml
+kubectl delete -f mysql-standard.yaml
+kubectl delete -f azure-mysql-standard.yaml
+kubectl delete -f app-project1-dev-namespace.yaml
+kubectl delete -f azure-provider.yaml
+kubectl delete -f azure-infra-dev-namespace.yaml
+```
+
+## Conclusion and Next Steps
+
+In this guide we:
+
+* Setup an AKS Cluster using the Azure CLI
+* Installed Crossplane from alpha channel
+* Installed the Azure stack
+* Created an infrastructure (`azure-infra-dev`) and application
+  (`app-project1-dev`) namespace
+* Setup an Azure `Provider` with our account
+* Created a `SQLServerClass` in the ` with configuration for a MySQL database on
+  Azure
+* Created a `MySQLInstanceClass` that specified the `SQLServerClass` as
+  `mysql-standard` in the `app-project1-dev` namespace
+* Created a `MySQLInstance` claim in the `app-project1-dev1` namespace that
+  referenced `mysql-standard`
+* Created a `MysqlServerVirtualNetworkRule` to establish secure connectivity
+  between our AKS Cluster and MySQL database
+* Created a `Deployment` and `Service` to run Wordpress on our AKS Cluster and
+  assign an external IP address to it
+
+If you would like to try out a similar workflow using a different cloud
+provider, take a look at the other [services guides][serives]. If you would like
+to learn more about stacks, checkout the [stacks guide][stacks]
+
+<!-- Named links -->
+[azure-cli]: https://docs.microsoft.com/en-us/cli/azure/?view=azure-cli-latest
+[azure-login]: https://docs.microsoft.com/en-us/cli/azure/authenticate-azure-cli?view=azure-cli-latest
+[install-kubectl]: https://kubernetes.io/docs/tasks/tools/install-kubectl/
+[using-helm]: https://docs.helm.sh/using_helm/
+[jq-docs]: https://stedolan.github.io/jq/
+
+[aks-walthrough]: https://docs.microsoft.com/en-us/azure/aks/kubernetes-walkthrough
+
+[crossplane-install]: ../install-crossplane.md#alpha
+[azure-stack-install]: ../install-crossplane.md#azure-stack
+[cloud-creds]: ../cloud-providers.md
+
+[azure-provider-guide]: ../cloud-providers/azure/azure-provider.md
+
+[azure-mysql]: https://azure.microsoft.com/en-us/services/mysql/
+[azure-vnet-rule]: https://docs.microsoft.com/en-us/azure/mysql/concepts-data-access-and-security-vnet
+
+[services]: ../services-guide.md
+[stacks]: ../stacks-guide.md
\ No newline at end of file
diff --git a/docs/master/services/wordpress-start.png b/docs/master/services/wordpress-start.png
new file mode 100644
index 00000000..e21ad0f6
Binary files /dev/null and b/docs/master/services/wordpress-start.png differ