Merge pull request #209397 from deeikele/master

prmerger-automator[bot] · web-flow · commit 1f347ff67522 · 2022-08-26T23:39:13.000Z
Note on using private package feeds
diff --git a/articles/machine-learning/concept-vulnerability-management.md b/articles/machine-learning/concept-vulnerability-management.md
@@ -52,6 +52,18 @@ By default, dependencies are layered on top of base images provided by Azure ML
 
 Associated to your Azure Machine Learning workspace is an Azure Container Registry instance that's used as a cache for container images. Any image materialized, is pushed to the container registry, and used if experimentation or deployment is triggered for the corresponding environment. Azure Machine Learning doesn't delete any image from your container registry, and it's your responsibility to evaluate the need of an image over time. To monitor and maintain environment hygiene, you can use [Microsoft Defender for Container Registry](../defender-for-cloud/defender-for-container-registries-usage.md) to help scan your images for vulnerabilities. To automate your processes based on triggers from Microsoft Defender, see [Automate responses to Microsoft Defender for Cloud triggers](../defender-for-cloud/workflow-automation.md).
 
+## Using a private package repository
+
+Azure Machine Learning uses Conda for package installations. By default, packages are downloaded from public repositories. In case your organization requires packages to be sourced only from private repositories, you may override the conda configuration as part of your base image. Below example configuration shows how to remove the default channels, and add your own private conda feed.
+
+```dockerfile
+RUN conda config --set offline false \
+&& conda config --remove channels defaults || true \
+&& conda config --add channels https://my.private.conda.feed/conda/feed
+```
+
+See [use your own dockerfile](how-to-use-environments.md#use-your-own-dockerfile) to learn how to specify your own base images in Azure Machine Learning. For more details on configuring Conda environments, see [Conda - Creating an environment file manually](https://docs.conda.io/projects/conda/en/4.6.1/user-guide/tasks/manage-environments.html#creating-an-environment-file-manually).
+
 ## Vulnerability management on compute hosts 
 
 Managed compute nodes in Azure Machine Learning make use of Microsoft-managed OS VM images and pull the latest updated VM image at the time that a node gets provisioned. This applies to compute instance, compute cluster, and managed inference compute SKUs. 
