Merge pull request #51065 from Orin-Thomas/orthomas-20Jun25-A

v-ccolin · web-flow · commit 11523af9e1dd · 2025-06-22T11:11:24.000+01:00
First draft of restrict azure ML workspace module
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/1-azure-machine-learning-managed-virtual-networks.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/1-azure-machine-learning-managed-virtual-networks.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.azure-machine-learning-managed-virtual-networks
+title: Azure Machine Learning managed virtual networks
+metadata:
+  title: Azure Machine Learning managed virtual networks
+  description: Understand Azure Machine Learning managed virtual networks.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 3
+content: |
+  [!include[](includes/1-azure-machine-learning-managed-virtual-networks.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/2-managed-network-isolation.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/2-managed-network-isolation.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.managed-network-isolation
+title: Managed Network isolation
+metadata:
+  title: Managed Network isolation
+  description: Understand how to use managed virtual networks in Azure Machine Learning.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 2
+content: |
+  [!include[](includes/2-managed-network-isolation.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/3-custom-network-isolation.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/3-custom-network-isolation.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.custom-network-isolation
+title: Custom network isolation
+metadata:
+  title: Custom network isolation
+  description: Learn how to isolate Azure Machine Learning workspaces in custom virtual networks.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 2
+content: |
+  [!include[](includes/3-custom-network-isolation.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/4-comparing-network-configurations.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/4-comparing-network-configurations.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.comparing-network-configurations
+title: Comparing network configurations
+metadata:
+  title: Comparing network configurations
+  description: Understand the differences between managed virtual networks and private endpoints in Azure Machine Learning.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 2
+content: |
+  [!include[](includes/4-comparing-network-configurations.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/5-configure-managed-virtual-network-approved-outbound.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/5-configure-managed-virtual-network-approved-outbound.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.configure-managed-virtual-network-approved-outbound
+title: Configure managed virtual network approved outbound
+metadata:
+  title: Configure managed virtual network approved outbound
+  description: Learn how to configure approved outbound traffic for managed virtual networks in Azure Machine Learning.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 6
+content: |
+  [!include[](includes/5-configure-managed-virtual-network-approved-outbound.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/6-knowledge-check.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/6-knowledge-check.yml
@@ -0,0 +1,47 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.knowledge-check
+title: Knowledge Check
+metadata:
+  title: Knowledge Check
+  description: Test your knowledge of Azure Machine Learning managed virtual networks.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 4
+content: Choose the best response for each question. 
+quiz:
+  questions:
+    - content: "You need to restrict the internet access of an Azure Machine Learning workspace. Which of the below will accomplish that?"
+      choices:
+        - content: "Configure the Azure virtual network for the Azure Machine Learning workspace to route all traffic to the on-premises network."
+          isCorrect: false
+          explanation: "Routing traffic to the on-premises network can be used to access on-premises resources but won't restrict internet access to the compute resources on an Azure Machine Learning workspace."
+        - content: "Set the isolation mode of the Azure Machine Learning workspace to allow_internet_outbound."
+          isCorrect: false
+          explanation: "The allow_internet_outbound setting enables compute resources on the Azure Machine Learning workspace to access the internet freely."
+        - content: "Set the isolation mode of the Azure Machine Learning workspace to allow_only_approved_outbound."
+          isCorrect: true
+          explanation: "The allow_only_approved_outbound setting restricts internet access from the compute resources in the Azure Machine Learning workspace to destinations allowed in the outbound rule."
+    - content: "Which statement from the below is a benefit of using Managed networks for isolation?"
+      choices:
+        - content: "Supports managed online endpoints."
+          isCorrect: true
+          explanation: "Managed networks support the utilization of managed online endpoints for real-time inferencing. Managed online endpoints are platform managed and require less administrative overhead."
+        - content: "Connect to on-premises resources."
+          isCorrect: false
+          explanation: "To connect to on-premises resources, you need to configure a custom virtual network or use a virtual network in between the managed network and the on-premises gateway."
+        - content: "Support for non-HTTP/S endpoint resources."
+          isCorrect: false
+          explanation: "Managed networks can only access HTTP/S endpoint resources."
+    - content: "As the cloud administrator of the Azure Machine Learning workspace, you receive a request from a data scientist to access the Python Package Index (PyPI) so the Azure Machine Learning workspace can access Python packages. As your workspace is configured to restrict access to the internet, how can you allow your data scientists to download these packages while staying compliant with your company's policies?"
+      choices:
+        - content: "Change the isolation mode of the Azure Machine Learning workspace to allow_internet_outbound."
+          isCorrect: false
+          explanation: "Changing the isolation mode to allow_internet_outbound allows for unrestricted internet access from the compute nodes."
+        - content: "Add a new entry to the outbound rule for a private endpoint."
+          isCorrect: false
+          explanation: "Service endpoints can be used for Azure resources."
+        - content: "Add a new entry to the outbound rule for an FQDN."
+          isCorrect: true
+          explanation: "You can add the domain of the website your compute nodes download packages from to the outbound rule."
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/7-summary.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/7-summary.yml
@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.restrict-azure-machine-learning-network-traffic.summary
+title: Summary
+metadata:
+  title: Summary
+  description: Review the key concepts of restricting network traffic in Azure Machine Learning workspaces.
+  ms.date: 06/20/2025
+  author: Orin-Thomas
+  ms.author: viniap
+  ms.topic: unit
+durationInMinutes: 1
+content: |
+  [!include[](includes/7-summary.md)]
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/1-azure-machine-learning-managed-virtual-networks.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/1-azure-machine-learning-managed-virtual-networks.md
@@ -0,0 +1,11 @@
+Network isolation is a security strategy that involves dividing a network into separate segments or subnets, each functioning as its own small network. This approach helps to improve security and performance within a larger network structure. Major enterprises require network isolation to secure their resources from unauthorized access, tampering, or leakage of data and models. They also need to adhere to the regulations and standards that apply to their industry and domain. Managed virtual network isolation streamlines allows you to automate network isolation for Azure Machine Learning workspaces.
+
+Azure Machine Learning managed virtual networks secure your managed Azure Machine Learning resources, such as compute instances, compute clusters, serverless compute, and managed online endpoints.
+
+Network isolation must be considered in three areas within Azure Machine Learning:
+
+- Inbound access to the Azure Machine Learning workspace. For example, for your Data Scientists to securely access the workspace.
+- Outbound access from the Azure Machine Learning workspace. For example, to access other Azure services.
+- Outbound access from the Azure Machine Learning compute resources. For example, to access data sources, Python package repositories, or other resources.
+
+![Diagram showing inbound and outbound communication for Azure Machine Learning.](../media/inbound-outbound-communication.png)
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/2-managed-network-isolation.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/2-managed-network-isolation.md
@@ -0,0 +1,6 @@
+Using a managed virtual network provides an easier configuration for network isolation. It automatically secures your workspace and managed compute resources in a managed virtual network. You can add private endpoint connections for other Azure services that the workspace relies on, such as Azure Storage Accounts. Depending on your needs, you can allow all outbound traffic to the public network or allow only the outbound traffic you approve. Outbound traffic required by the Azure Machine Learning service is automatically enabled for the managed virtual network. For outbound traffic, using a managed network provides two options:
+
+- **Allow internet outbound mode**: Use this option if you want to allow your machine learning engineers access the internet freely. You can create other private endpoint outbound rules to let them access your private resources on Azure.
+- **Allow only approved outbound mode**: Use this option if you want to minimize data exfiltration risk and control what your machine learning engineers can access. You can control outbound rules using private endpoint, service tag, and FQDN.
+
+![Diagram showing the contents of a managed virtual network.](../media/managed-virtual-network.svg)
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/3-custom-network-isolation.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/3-custom-network-isolation.md
@@ -0,0 +1,14 @@
+If a managed virtual network doesn't suit your needs, you can configure and manage an Azure virtual network to implement network isolation. 
+
+![Diagram of a custom network isolation configuration.](../media/custom-network-isolation.png)
+
+For scenarios using custom network isolation, Microsoft recommends the following best practices:
+
+- Put all resources in the same region.
+- A hub virtual network, which contains your firewall and custom DNS set-up.
+- A spoke virtual network, which contains the following resources:
+  - A training subnet contains compute instances and clusters used for training ML models. These resources are configured for no public IP.
+  - A scoring subnet contains an AKS cluster.
+  - A 'PE' subnet contains private endpoints that connect to the workspace and private resources used by the workspace (storage, key vault, container registry, etc.)
+
+Custom virtual networks aren't recommended as misconfigurations are more likely to occur compared to managed virtual networks.
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/4-comparing-network-configurations.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/4-comparing-network-configurations.md
@@ -0,0 +1,23 @@
+A key difference between managed and custom network isolation is the location of the virtual network used for compute resources. For custom network isolation, the virtual network for compute is in your tenant. In a deployment that uses managed network isolation, the virtual network that hosts compute is located in the Microsoft tenant.
+
+| | **Managed network (recommended)** | **Custom network** |
+|---|---|---|
+| **Benefits** | - Minimize set-up and maintenance overhead.<br>- Supports managed online endpoints.<br>- Supports serverless spark.<br>- Access to HTTPS endpoint resources located on-premises or in your custom virtual network.<br>- Focus for new feature development. | - Customize network to your requirements.<br>- Bring your own non-Azure resources.<br>- Connect to on-premises resources. |
+| **Limitations** | - Extra costs for Azure Firewall and FQDN rules.<br>- Logging of the virtual network firewall and NSG rules isn't supported.<br>- Access to non-HTTPS endpoint resources isn't supported. | - New feature support might be delayed.<br>-Managed online endpoints aren't supported.<br>- Serverless spark isn't supported.<br>- Foundational models aren't supported.<br>- Implementation complexity.<br>- Maintenance overhead. |
+
+Use managed virtual network when…
+
+- You're new user to Azure Machine Learning with standard network isolation requirements
+- You're a company with standard network isolation requirements
+- You require on-premises access to resources with HTTP/S endpoints
+- You don't have many non-Azure dependencies set up yet
+- You require using Azure Machine Learning managed online endpoints and serverless spark computes
+- You have fewer management requirements for networking in your organization
+
+Use custom virtual network when…
+
+- You're a company with heavy network isolation requirements
+- You have many non-Azure dependencies previously set-up and need to access Azure Machine Learning
+- You have on-premises databases with no HTTP/S endpoints
+- You require using your own Firewall and virtual network logging and monitoring of outbound network traffic
+- You want to use Azure Kubernetes Services (AKS) for inference workloads
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/5-configure-managed-virtual-network-approved-outbound.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/5-configure-managed-virtual-network-approved-outbound.md
@@ -0,0 +1,55 @@
+To configure a managed virtual network that allows only approved outbound communications, perform the following steps:
+
+1. On Azure Cloud Shell, run the following command to update an existing Azure Machine Learning workspace: 
+
+    ```azurecli
+        az ml workspace update --name ws --resource-group rg --managed-network allow_only_approved_outbound
+    ```
+
+1. Next, you need a YAML file to configure the rules for the approved destinations. An example with sample rules for service tag, FQDN, and private endpoint is as follows:
+
+     ```yaml
+    name: myworkspace_dep
+    managed_network:
+      isolation_mode: allow_only_approved_outbound
+      outbound_rules:
+        - name: added-servicetagrule
+          destination:
+            port_ranges: [80, 8080]
+            protocol: TCP
+            service_tag: DataFactory
+          type: service_tag
+        - name: add-fqdnrule
+          destination: 'pypi.org'
+          type: fqdn
+        - name: added-perule
+          destination:
+            service_resource_id: /subscriptions/<SUBSCRIPTION_ID>/resourceGroups/<RESOURCE_GROUP>/providers/Microsoft.Storage/storageAccounts/<STORAGE_ACCOUNT_NAME>
+            spark_enabled: true
+            subresource_target: blob
+          type: private_endpoint
+    ```
+
+1. After configuring the file, you can update the workspace with the command: 
+
+    ```azurecli
+         az ml workspace update --file workspace.yaml --name ws --resource-group MyGroup
+    ```
+
+When the isolation mode of a managed virtual network is set to *Allow internet outbound*, Azure automatically creates private endpoint outbound rules. These rules are required for the workspace and its associated resources, such as Key Vault, Storage Account, Container Registry, and Azure Machine Learning workspace, when public network access is disabled.
+
+When the isolation mode is set to *Allow only approved outbound*, Azure also automatically creates private endpoint outbound rules for the workspace and its associated resources. However, in this case, the rules are created regardless of whether public network access is enabled or disabled for those resources. These rules are added only to managed virtual networks, not to custom networks.
+
+To ensure Azure Machine Learning functions properly, certain required service tags must be configured in both managed and custom virtual network setups. These service tags are essential and can't be substituted. The following table outlines each required service tag and its role in Azure Machine Learning.
+
+| **Service tag rule** | **Inbound or Outbound** | **Purpose** |
+|---|---|---|
+| **AzureMachineLearning** | Inbound | Create, update, and delete of Azure Machine Learning compute instance/cluster. |
+| **AzureMachineLearning** | Outbound | Using Azure Machine Learning services. Python intellisense in notebooks uses port 18881. Creating, updating, and deleting an Azure Machine Learning compute instance uses port 5831. |
+| **AzureActiveDirectory** | Outbound | Authentication using Microsoft Entra ID. |
+| **BatchNodeManagement.region** | Outbound | Communication with Azure Batch back-end for Azure Machine Learning compute instances/clusters. |
+| **AzureResourceManager** | Outbound | Creation of Azure resources with Azure Machine Learning, Azure CLI, and Azure Machine Learning SDK. |
+| **AzureFrontDoor.FirstParty** | Outbound | Access docker images provided by Microsoft. |
+| **MicrosoftContainerRegistry** | Outbound | Access docker images provided by Microsoft. Setup of the Azure Machine Learning router for Azure Kubernetes Service. |
+| **AzureMonitor** | Outbound | Used to log monitoring and metrics to Azure Monitor. Only needed if the Azure Monitor for the workspace isn't secured. This outbound is also used to log information for support incidents. |
+| **VirtualNetwork** | Outbound | Required when private endpoints are present in the virtual network or peered virtual networks. |
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/7-summary.md b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/includes/7-summary.md
@@ -0,0 +1,7 @@
+In this module, you learned Azure Machine Learning networking concepts, how to plan for networking isolation for Azure Machine Learning workspaces and how to secure Azure Machine Learning workspaces networking.
+
+## Learn More:
+
+- [Secure Azure Machine Learning workspace resources using virtual networks](/azure/machine-learning/how-to-network-security-overview)
+- [Plan for network isolation](/azure/machine-learning/how-to-network-isolation-planning)
+- [Workspace Managed Virtual Network Isolation](/azure/machine-learning/how-to-managed-network)
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/index.yml b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/index.yml
@@ -0,0 +1,39 @@
+### YamlMime:Module
+uid: learn.restrict-azure-machine-learning-network-traffic
+metadata:
+  ms.author: viniap
+  author: Orin-Thomas
+  ms.date: 06/20/2025
+  title: Restrict Azure Machine Learning workspace network traffic 
+  description: Overview of planning and securing Azure Machine Learning networking
+  ms.topic: module
+  ms.service: artificial-intelligence
+  ms.collection: ce-advocates-ai-copilot
+title: Restrict Azure Machine Learning workspace network traffic
+summary: Learn how to secure Azure Machine Learning workspaces.
+abstract: |
+  After completing this module, you'll be able to:
+  -	Understand Azure Machine Learning networking concepts
+  -	Plan for networking isolation for Azure Machine Learning workspaces
+  -	Secure Azure Machine Learning workspaces networking
+prerequisites: |
+  To get the best learning experience from this module, you should have knowledge of and experience with:
+  - Fundamental monitoring concepts.
+  - Fundamental Azure Machine Learning concepts.
+iconUrl: /learn/achievements/generic-badge.svg
+levels:
+- beginner
+roles:
+- developer
+products:
+- azure
+units:
+- learn.restrict-azure-machine-learning-network-traffic.azure-machine-learning-managed-virtual-networks
+- learn.restrict-azure-machine-learning-network-traffic.managed-network-isolation
+- learn.restrict-azure-machine-learning-network-traffic.custom-network-isolation
+- learn.restrict-azure-machine-learning-network-traffic.comparing-network-configurations
+- learn.restrict-azure-machine-learning-network-traffic.configure-managed-virtual-network-approved-outbound
+- learn.restrict-azure-machine-learning-network-traffic.knowledge-check
+- learn.restrict-azure-machine-learning-network-traffic.summary
+badge:
+  uid: learn.restrict-azure-machine-learning-network-traffic-badge
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/custom-network-isolation.png b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/custom-network-isolation.png
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/inbound-outbound-communication.png b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/inbound-outbound-communication.png
diff --git a/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/managed-virtual-network.svg b/learn-pr/advocates/restrict-azure-machine-learning-workspace-network/media/managed-virtual-network.svg
