This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 25%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWS%3C/text%3E%3C/svg%3E)
When creating An Azure VM I am getting errors in deployment failed. Is there a comprehensive tutorial on how to create the correct network rules and protocols. I dont recall creating any and am now confused at to how they are neither there or conflicting with one another.
Error:
*{"code":"DeploymentFailed","message":"At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/DeployOperations for usage details.","details":[{"code":"ConflictWithNetworkIntentPolicy","message":"Found conflicts with NetworkIntentPolicy. Details: NetworkInterface cannot have resources which conflict with subnet's network intent policy.\r\nNetwork Security Group: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkSecurityGroups/DevTestVM-NSG conflicts with Network Intent Policy: mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-sqlmgmt-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-sqlmgmt-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: SqlManagement, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003;1438;1440;1452\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-corpsaw-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-corpsaw-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: CorpNetSaw, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003;1440\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-corppublic-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-corppublic-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: CorpNetPublic, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-internal-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-internal-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: *, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: *\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-services-out-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-services-out-10-0-0-0-24-v10, Access: Allow, Direction: Outbound, Protocol: Tcp, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: AzureCloud, DestinationPortRange: 443;12000\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-internal-out-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-internal-out-10-0-0-0-24-v10, Access: Allow, Direction: Outbound, Protocol: *, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: \r\n ----\r\n---- ----"}]}
Are you trying to deploy the VM in the same subnet as that of your SQLMi ?
If yes, that is the reason you are getting this error. Try to deploy it in another subnet. It should work.
Regards,
Karthik Srinivas
Created and connected.Thank you @msrini-MSFT , I have ingested everything I could find about creating this VM and nothing mentioned a different subnet.