This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 25%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWS%3C/text%3E%3C/svg%3E)
When creating An Azure VM I am getting errors in deployment failed. Is there a comprehensive tutorial on how to create the correct network rules and protocols. I dont recall creating any and am now confused at to how they are neither there or conflicting with one another.
Error:
*{"code":"DeploymentFailed","message":"At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/DeployOperations for usage details.","details":[{"code":"ConflictWithNetworkIntentPolicy","message":"Found conflicts with NetworkIntentPolicy. Details: NetworkInterface cannot have resources which conflict with subnet's network intent policy.\r\nNetwork Security Group: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkSecurityGroups/DevTestVM-NSG conflicts with Network Intent Policy: mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-sqlmgmt-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-sqlmgmt-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: SqlManagement, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003;1438;1440;1452\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-corpsaw-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-corpsaw-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: CorpNetSaw, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003;1440\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-corppublic-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-corppublic-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: Tcp, SourceAddressPrefix: CorpNetPublic, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: 9000;9003\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-internal-in-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-internal-in-10-0-0-0-24-v10, Access: Allow, Direction: Inbound, Protocol: *, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: *\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-services-out-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-services-out-10-0-0-0-24-v10, Access: Allow, Direction: Outbound, Protocol: Tcp, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: AzureCloud, DestinationPortRange: 443;12000\r\n ----\r\n Network Security Group doesn't have supporting Security Rule for Network Intent Policy Security Rule: Name: mi-internal-out-10-0-0-0-24-v10, Id: /subscriptions/cf4be82e-f5d9-46f2-986b-64bf53362634/resourceGroups/DevResources/providers/Microsoft.Network/networkIntentPolicies/mi_default_45ef21f5-e1ff-4f18-a10b-f0908726e0e8_10-0-0-0-24/securityRules/mi-internal-out-10-0-0-0-24-v10, Access: Allow, Direction: Outbound, Protocol: *, SourceAddressPrefix: 10.0.0.0/24, SourcePortRange: *, DestinationAddressPrefix: 10.0.0.0/24, DestinationPortRange: \r\n ----\r\n---- ----"}]}
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
Azure Virtual Machine images that are pre-installed, configured, and tested with several commonly used tools for data analytics, machine learning, and artificial intelligence training.
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
Answer accepted by question author
Are you trying to deploy the VM in the same subnet as that of your SQLMi ?
If yes, that is the reason you are getting this error. Try to deploy it in another subnet. It should work.
Regards,
Karthik Srinivas
Created and connected.Thank you @msrini-MSFT , I have ingested everything I could find about creating this VM and nothing mentioned a different subnet.