You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: learn-pr/wwl-data-ai/secure-ai-services/includes/2-authentication.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,4 +1,4 @@
1
-
In the past, access to Azure AI services resources is restricted by using subscription keys by default. When using keys for authentication, management of access to these keys is a primary consideration for security.
1
+
In the past, access to Azure AI services resources is restricted by using subscription keys by default. When developers use keys for authentication, management of access to these keys is a primary consideration for security.
2
2
3
3
Some services, most notably when working with Azure AI Foundry, depend on Azure credentials for authentication through Microsoft Entra. This module focuses mostly on keys for security, while other modules focusing on Azure AI Foundry show examples of using Azure credentials for access to you AI services.
4
4
@@ -21,7 +21,7 @@ For example, to regenerate keys in the Azure portal, you can do the following:
21
21
22
22
## Protect keys with Azure Key Vault
23
23
24
-
Azure Key Vault is an Azure service in which you can securely store secrets (such as passwords and keys). Access to the key vault is granted to *security principals*, which you can think of user identities that are authenticated using Microsoft Entra ID. Administrators can assign a security principal to an application (in which case it is known as a *service principal*) to define a *managed identity* for the application. The application can then use this identity to access the key vault and retrieve a secret to which it has access. Controlling access to the secret in this way minimizes the risk of it being compromised by being hard-coded in an application or saved in a configuration file.
24
+
Azure Key Vault is an Azure service in which you can securely store secrets (such as passwords and keys). Access to the key vault is granted to *security principals*, which you can think of user identities that are authenticated using Microsoft Entra ID. Administrators can assign a security principal to an application (in which case it's known as a *service principal*) to define a *managed identity* for the application. The application can then use this identity to access the key vault and retrieve a secret to which it has access. Controlling access to the secret in this way minimizes the risk of it being compromised by being hard-coded in an application or saved in a configuration file.
25
25
26
26
You can store the subscription keys for an AI services resource in Azure Key Vault, and assign a managed identity to client applications that need to use the service. The applications can then retrieve the key as needed from the key vault, without risk of exposing it to unauthorized users.
27
27
@@ -36,7 +36,7 @@ When using the REST interface, some AI services support (or even *require*) toke
36
36
37
37
## Microsoft Entra ID authentication
38
38
39
-
Azure AI services supports Microsoft Entra ID authentication, enabling you to grant access to specific service principals or managed identities for apps and services running in Azure.
39
+
Azure AI services support Microsoft Entra ID authentication, enabling you to grant access to specific service principals or managed identities for apps and services running in Azure.
40
40
41
41
> [!NOTE]
42
42
> For more information about authentication options for AI services, see the [AI services documentation](/azure/ai-services/authentication).
Copy file name to clipboardExpand all lines: learn-pr/wwl-data-ai/translate-text-with-translator-service/includes/2-provision-translator-resource.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -4,13 +4,13 @@
4
4
- One-to-many translation.
5
5
- Script transliteration (converting text from its native script to an alternative script).
6
6
7
-
:::image type="content" source="../media/translator-resource.png" alt-text="Diagram showing an Azure AI Translator resource performing language detection, one-to-many translation and transliteration.":::
7
+
:::image type="content" source="../media/translator-resource.png" alt-text="Diagram showing an Azure AI Translator resource performing language detection, one-to-many translation, and transliteration.":::
8
8
9
9
## Azure resource for Azure AI Translator
10
10
11
11
To use the Azure AI Translator service, you must provision a resource for it in your Azure subscription. You can provision a single-service Azure AI Translator resource, or you can use the Text Translation API in a multi-service Azure AI Services resource.
12
12
13
-
After you have provisioned a suitable resource in your Azure subscription, you can use the **location** where you deployed the resource and one of its **subscription keys** to call the Azure AI Translator APIs from your code. You can call the APIs by submitting requests in JSON format to the REST interface, or by using any of the available programming language-specific SDKs.
13
+
After you provision a suitable resource in your Azure subscription, you can use the **location** where you deployed the resource and one of its **subscription keys** to call the Azure AI Translator APIs from your code. You can call the APIs by submitting requests in JSON format to the REST interface, or by using any of the available programming language-specific SDKs.
14
14
15
15
> [!NOTE]
16
16
> The code examples in the subsequent units in this module show the JSON requests and responses exchanged with the REST interface. When using an SDK, the JSON requests are abstracted by appropriate objects and methods that encapsulate the same data values. You'll get a chance to try the SDK for C# or Python for yourself in the exercise later in the module.
0 commit comments