You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/backup/private-endpoints.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,7 +2,7 @@
2
2
title: Create and use private endpoints for Azure Backup
3
3
description: Understand the process to creating private endpoints for Azure Backup where using private endpoints helps maintain the security of your resources.
4
4
ms.topic: how-to
5
-
ms.date: 04/01/2024
5
+
ms.date: 04/16/2024
6
6
ms.custom: devx-track-azurepowershell
7
7
ms.service: backup
8
8
author: AbhishekMallick-MS
@@ -285,8 +285,8 @@ When using the MARS Agent to back up your on-premises resources, make sure your
285
285
But if you remove private endpoints for the vault after a MARS agent has been registered to it, you'll need to re-register the container with the vault. You don't need to stop protection for them.
286
286
287
287
>[!NOTE]
288
-
>- Private endpoints are supported with only DPM server 2022 and later.
289
-
>- Private endpoints are not yet supported with MABS.
288
+
>- Private endpoints are supported with only *DPM server 2022 (10.22.123.0)* and later.
289
+
>- Private endpoints are supported with only *MABS V4 (14.0.30.0)* and later.
Copy file name to clipboardExpand all lines: articles/bastion/bastion-faq.md
+4Lines changed: 4 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -68,6 +68,10 @@ No, Azure Bastion doesn't currently support Azure Private Link.
68
68
69
69
At this time, for most address spaces, you must add a subnet named **AzureBastionSubnet** to your virtual network before you select **Deploy Bastion**.
70
70
71
+
### <aname="write-permissions"></a>Are special permissions required to deploy Bastion to the AzureBastionSubnet?
72
+
73
+
To deploy Bastion to the AzureBastionSubnet, write permissions are required. Example: **Microsoft.Network/virtualNetworks/write**.
74
+
71
75
### <aname="subnet"></a>Can I have an Azure Bastion subnet of size /27 or smaller (/28, /29, etc.)?
72
76
73
77
For Azure Bastion resources deployed on or after November 2, 2021, the minimum AzureBastionSubnet size is /26 or larger (/25, /24, etc.). All Azure Bastion resources deployed in subnets of size /27 before this date are unaffected by this change and will continue to work. However, we highly recommend increasing the size of any existing AzureBastionSubnet to /26 in case you choose to take advantage of [host scaling](./configure-host-scaling.md) in the future.
Copy file name to clipboardExpand all lines: articles/bastion/bastion-nsg.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -45,7 +45,7 @@ Azure Bastion is deployed specifically to ***AzureBastionSubnet***.
45
45
46
46
***Egress Traffic:**
47
47
48
-
***Egress Traffic to target VMs:** Azure Bastion will reach the target VMs over private IP. The NSGs need to allow egress traffic to other target VM subnets for port 3389 and 22. If you are using the custom port feature as part of Standard SKU, the NSGs will instead need to allow egress traffic to other target VM subnets for the custom value(s) you have opened on your target VMs.
48
+
***Egress Traffic to target VMs:** Azure Bastion will reach the target VMs over private IP. The NSGs need to allow egress traffic to other target VM subnets for port 3389 and 22. If you're utilizing the custom port functionality within the Standard SKU, ensure that NSGs allow outbound traffic to the service tag VirtualNetwork as the destination.
49
49
***Egress Traffic to Azure Bastion data plane:** For data plane communication between the underlying components of Azure Bastion, enable ports 8080, 5701 outbound from the **VirtualNetwork** service tag to the **VirtualNetwork** service tag. This enables the components of Azure Bastion to talk to each other.
50
50
***Egress Traffic to other public endpoints in Azure:** Azure Bastion needs to be able to connect to various public endpoints within Azure (for example, for storing diagnostics logs and metering logs). For this reason, Azure Bastion needs outbound to 443 to **AzureCloud** service tag.
51
51
***Egress Traffic to Internet:** Azure Bastion needs to be able to communicate with the Internet for session, Bastion Shareable Link, and certificate validation. For this reason, we recommend enabling port 80 outbound to the **Internet.**
Copy file name to clipboardExpand all lines: articles/deployment-environments/configure-environment-definition.md
+21-6Lines changed: 21 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -7,7 +7,7 @@ author: RoseHJM
7
7
ms.author: rosemalcolm
8
8
ms.service: deployment-environments
9
9
ms.topic: how-to
10
-
ms.date: 12/05/2023
10
+
ms.date: 03/29/2024
11
11
ms.custom: devdivchpfy22, build-2023
12
12
---
13
13
@@ -43,11 +43,11 @@ In this article, you learn how to:
43
43
44
44
## Add an environment definition
45
45
46
-
To add an environment definition to a catalog in Azure Deployment Environments, you first add the files to the repository. You then synchronize the dev center catalog with the updated repository.
46
+
To add an environment definition to a catalog in Azure Deployment Environments (ADE), you first add the files to the repository. You then synchronize the dev center catalog with the updated repository.
47
47
48
48
To add an environment definition:
49
49
50
-
1. In your repository that's hosted in [GitHub](https://github.com) or [Azure DevOps](https://dev.azure.com), create a subfolder in the repository folder path.
50
+
1. In your [GitHub](https://github.com) or [Azure DevOps](https://dev.azure.com) repository, create a subfolder in the repository folder path.
51
51
52
52
1. Add two files to the new repository subfolder:
53
53
@@ -78,8 +78,6 @@ To add an environment definition:
78
78
> [!NOTE]
79
79
> The `version` field is optional. Later, the field will be used to support multiple versions of environment definitions.
80
80
81
-
:::image type="content" source="../deployment-environments/media/configure-environment-definition/create-subfolder-path.png" alt-text="Screenshot that shows a folder path with a subfolder that contains an ARM template and an environment file." lightbox="../deployment-environments/media/configure-environment-definition/create-subfolder-path.png":::
82
-
83
81
To learn more about the options and data types you can use in *environment.yaml*, see [Parameters and data types in environment.yaml](concept-environment-yaml.md#what-is-environmentyaml).
84
82
85
83
1. In your dev center, go to **Catalogs**, select the repository, and then select **Sync**.
@@ -88,6 +86,23 @@ To add an environment definition:
88
86
89
87
The service scans the repository to find new environment definitions. After you sync the repository, new environment definitions are available to all projects in the dev center.
90
88
89
+
### Specify an ARM or Bicep runner for a custom image
90
+
91
+
The ADE extensibility model enables you to reference your own container image and execute deployments. You can store your container image in a container repository and directly reference it by providing the URI.
92
+
93
+
The following example shows how to reference a custom image in an environment definition:
The ADE team provides sample ARM and Bicep templates accessible through the Microsoft Artifact registry (also known as the Microsoft Container Registry) to help you get started. When you perform deployments by using ARM or Bicep, you can use the standard image that is published on [Microsoft Artifact Registry](https://mcr.microsoft.com/) (previously known as the Microsoft Container Registry).
100
+
101
+
To use the sample image published on the Microsoft Artifact Registry, use the respective identifiers `runner: ARM` for ARM and `runner:Bicep` for Bicep deployments.
102
+
103
+
For more information how to build and utilize ARM or Bicep container images within environment definitions, see [Configure container image to execute deployments with ARM and Bicep](https://aka.ms/deployment-environments/container-image-bicep).
104
+
105
+
91
106
### Specify parameters for an environment definition
92
107
93
108
You can specify parameters for your environment definitions to allow developers to customize their environments.
@@ -121,7 +136,7 @@ To learn more about the parameters and their data types that you can use in *env
121
136
122
137
Developers can supply values for specific parameters for their environments through the [developer portal](https://devportal.microsoft.com).
123
138
124
-
:::image type="content" source="media/configure-environment-definition/parameters.png" alt-text="Screenshot showing the parameters pane." lightbox="media/configure-environment-definition/parameters.png":::
139
+
:::image type="content" source="media/configure-environment-definition/parameters.png" alt-text="Screenshot of the developer portal showing the parameters pane." lightbox="media/configure-environment-definition/parameters.png":::
125
140
126
141
Developers can also supply values for specific parameters for their environments through the CLI.
Copy file name to clipboardExpand all lines: articles/operator-nexus/how-to-validate-cables.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -32,7 +32,7 @@ This article explains the Fabric cable validation, where the primary function o
32
32
The following (truncated) output appears. Copy the URL through **private preview**. This portion of the URL is used in the following step to check the status of the operation.
0 commit comments