Sharing the learning along the way we been gathering to enable Azure OpenAI at enterprise scale in a secure manner. GPT-RAG core is a Retrieval-Augmented Generation pattern running in Azure, using Azure Cognitive Search for retrieval and Azure OpenAI large language models to power ChatGPT-style and Q&A experiences.
Zero Trust provisioning Error: "Network security group bastion-nsg does not have necessary rules for Azure Bastion Subnet AzureBastionSubnet. (Code: NetworkSecurityGroupNotCompliantForAzureBastionSubnet)"
Zero Trust provisioning Error: "Network security group bastion-nsg does not have necessary rules for Azure Bastion Subnet AzureBastionSubnet. (Code: NetworkSecurityGroupNotCompliantForAzureBastionSubnet)"
Troubleshooting - https://learn.microsoft.com/en-us/azure/bastion/troubleshoot#nsg Documentation - https://learn.microsoft.com/en-us/azure/bastion/bastion-nsg#nsg
Solution: Add the required rules to the Bastion NSG. Template: https://github.com/Azure/azure-quickstart-templates/blob/master/quickstarts/microsoft.network/azure-bastion-nsg/main.bicep