You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This Terraform module is composed of several submodules, which are combined in the primary module to provide a complete solution. Each submodule can also be deployed independently—see [./modules/](./modules/) for details.
|`isolation_mode`| Isolation mode for the managed network of a machine learning workspace. Possible values are `AllowOnlyApprovedOutbound`, `AllowInternetOutbound`, or `Disabled`.|
206
-
|`public_network_access`| Whether requests from Public Network are allowed.|
189
+
| Role | Scope |
190
+
| -- | -- |
191
+
| Azure AI Developer | AI Foundry Hub |
192
+
| Azure AI Developer | AI Foundry Project |
193
+
| Contributor | Developer Resource Group |
194
+
| Storage Blob Data Contributor | Storage Account |
195
+
| Storage File Data Privileged Contributor | Storage Account |
196
+
| Cognitive Services Contributor | AI Service |
197
+
| Cognitive Services OpenAI Contributor | AI Service |
198
+
| Cognitive Services User | AI Service |
199
+
| User Access Administrator | AI Service |
200
+
| Search Index Data Contributor | AI Search Service |
201
+
| Search Service Contributor | AI Search Service |
202
+
203
+
Argument | Description
204
+
-- | --
205
+
`isolation_mode` | Isolation mode for the managed network of a machine learning workspace. Possible values are `AllowOnlyApprovedOutbound`, `AllowInternetOutbound`, or `Disabled`.
206
+
`public_network_access` | Whether requests from Public Network are allowed.
207
207
208
208
**NOTE**: The `User Access Administrator` role is assigned with the condition that only the `Cognitive Services OpenAI User` role can be assigned to user principals. This is necessary to successfully deploy a Web App on top of an AI Model through the AI Foundry Hub.
209
209
@@ -223,13 +223,13 @@ Default: `[]`
223
223
224
224
Description: If set to `true` (default), the following mandatory Azure role assignments will be created:
|`isolation_mode`| Isolation mode for the managed network of a machine learning workspace. Possible values are `AllowOnlyApprovedOutbound`, `AllowInternetOutbound`, or `Disabled`.|
265
-
|`public_network_access`| Whether requests from Public Network are allowed.|
262
+
Argument | Description
263
+
-- | --
264
+
`isolation_mode` | Isolation mode for the managed network of a machine learning workspace. Possible values are `AllowOnlyApprovedOutbound`, `AllowInternetOutbound`, or `Disabled`.
265
+
`public_network_access` | Whether requests from Public Network are allowed.
266
266
267
267
**NOTE**:
268
268
@@ -299,19 +299,19 @@ Description: A list of models to deploy to the workspace.
|`deployment_name`| The name to assign to the model deployment. If not specified, the value of `name` will be used by default. This property allows you to customize the deployment resource name independently from the model name.|
311
-
|`format`| The format of the Cognitive Services Account Deployment model. Changing this forces a new resource to be created. Possible value is `OpenAI`.|
312
-
|`sku_capacity`| Tokens-per-Minute (TPM). The unit of measure for this field is in the thousands of Tokens-per-Minute. Defaults to `1` which means that the limitation is `1000` tokens per minute. If the resources SKU supports scale in/out then the capacity field should be included in the resources' configuration. If the scale in/out is not supported by the resources SKU then this field can be safely omitted. For more information about TPM please see the [product documentation](https://learn.microsoft.com/azure/ai-services/openai/how-to/quota?tabs=rest).|
313
-
|`sku_name`| The name of the SKU. Possible values include `Standard`, `DataZoneStandard`, `DataZoneProvisionedManaged`, `GlobalBatch`, `GlobalProvisionedManaged`, `GlobalStandard`, and `ProvisionedManaged`.|
314
-
|`version`| The version of Cognitive Services Account Deployment model. If `version` is not specified, the default version of the model at the time will be assigned.|
308
+
Parameter | Description
309
+
-- | --
310
+
`deployment_name` | The name to assign to the model deployment. If not specified, the value of `name` will be used by default. This property allows you to customize the deployment resource name independently from the model name.
311
+
`format` | The format of the Cognitive Services Account Deployment model. Changing this forces a new resource to be created. Possible value is `OpenAI`.
312
+
`sku_capacity` | Tokens-per-Minute (TPM). The unit of measure for this field is in the thousands of Tokens-per-Minute. Defaults to `1` which means that the limitation is `1000` tokens per minute. If the resources SKU supports scale in/out then the capacity field should be included in the resources' configuration. If the scale in/out is not supported by the resources SKU then this field can be safely omitted. For more information about TPM please see the [product documentation](https://learn.microsoft.com/azure/ai-services/openai/how-to/quota?tabs=rest).
313
+
`sku_name` | The name of the SKU. Possible values include `Standard`, `DataZoneStandard`, `DataZoneProvisionedManaged`, `GlobalBatch`, `GlobalProvisionedManaged`, `GlobalStandard`, and `ProvisionedManaged`.
314
+
`version` | The version of Cognitive Services Account Deployment model. If `version` is not specified, the default version of the model at the time will be assigned.
315
315
316
316
**Note**: `DataZoneProvisionedManaged`, `GlobalProvisionedManaged`, and `ProvisionedManaged` are purchased on-demand at an hourly basis based on the number of deployed PTUs, with substantial term discount available via the purchase of Azure Reservations. Currently, this step cannot be completed using Terraform. For more details, please refer to the [provisioned throughput onboarding documentation](https://learn.microsoft.com/en-us/azure/ai-services/openai/how-to/provisioned-throughput-onboarding).
0 commit comments