Environment Setup Error in Azure AI Foundry Code Section with managed network Isolation

Amir Zareie 0 Reputation points
2024-12-17T20:30:09.4133333+00:00

I am encountering an error message when attempting to use my compute in the code section of AI Foundry. The error message states: "Environment setup error: Environment for this compute is not in a healthy state (report-api-error). Trace ID: xxxxx". I am using the "only allowed outbound connection" isolation for the Azure AI Foundry hub. I have already added the list of required connections mentioned in the documentation (Configure Managed Network) to the allowed list. Could you please assist me in resolving this issue?

Azure AI services
Azure AI services
A group of Azure services, SDKs, and APIs designed to make apps more intelligent, engaging, and discoverable.
3,002 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Sina Salam 14,626 Reputation points
    2024-12-22T17:39:32.8133333+00:00

    Hello Amir Zareie,

    Welcome to the Microsoft Q&A and thank you for posting your questions here.

    I understand that you are having environment "Setup Error" in Azure AI Foundry Code Section with managed network Isolation.

    Firstly, double-check the Azure AI Foundry documentation for any additional steps or updates related to managed network isolation and compute instance setup.

    Regarding your response and highlighted issues, you should be able to resolve the environment setup error and ensure that your compute instance is in a healthy state with the followings:

    1. Check your private endpoints and ensure that all required FQDNs are correctly configured as per the documentation.
    2. Since FQDN rules do not support specifying ports, you need to use Network Security Groups (NSGs) or Azure Firewall to allow traffic on ports 8704 to 8710.
    • If you are using Network Security Groups (NSGs):
    • Create an NSG and associate it with the subnet where your compute instance is deployed.
    • Add inbound and outbound security rules to allow traffic on ports 8704 to 8710.
    • If you would like to use Azure Firewall:
      • If you are using Azure Firewall, create rules to allow traffic on ports 8704 to 8710.
    1. For your compute instance health, ensure that the compute instance is in a running state and not in a failed or stopped state. You can use the az ml compute show command to check the status of your compute instance.
    2. Also, you can use the az ml compute connect-ssh command to connect to the compute instance and verify its connectivity and configuration.

    I hope this is helpful! Do not hesitate to let me know if you have any other questions.


    Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.