az search service show --name <search-service> --resource-group <resource-group>AI connection
AI connection is a Microsoft Foundry project connection that links the project to an external or Azure resource such as models, storage, search, or services. In everyday Azure work, teams use it to let AI applications and agents use approved resources without every prototype hardcoding endpoints and credentials. The useful evidence is connection name, target
Source: Microsoft Learn - Add a new connection to your project - Microsoft Foundry Reviewed 2026-05-09
- Exam trap
- Treating AI connection as a label instead of checking the Azure output that proves its current state.
- Production check
- What resource scope owns this AI connection entry, and who is accountable for it?
Article details and learning context
- Aliases
- Foundry connection, AI project connection, connected resource, AI service connection
- Difficulty
- intermediate
- CLI mappings
- 4
- Last verified
- 2026-05-09
Understand the concept
In plain English
AI connection is a Microsoft Foundry project connection that links the project to an external or Azure resource such as models, storage, search, or services. In everyday Azure work, teams use it to let AI applications and agents use approved resources without every prototype hardcoding endpoints and credentials. The useful evidence is connection name, target resource, authentication type, project, role assignments, endpoint, secret reference, and owner. Treat the term as an operating handle, not trivia: know who owns it, which boundary it affects, what could break, and which Azure output proves the current state before a production decision.
Why it matters
AI connection matters because it turns an Azure label into a decision point that operators can inspect, govern, and improve. Used well, it keeps work tied to evidence such as connection name, target resource, authentication type, project, role assignments, endpoint, secret reference, and owner. Used poorly, uncontrolled connections can point to the wrong environment, expose secrets, or let experiments depend on unapproved production resources. The practical value is judgment: knowing which setting or record proves reality, which team owns the next action, and which failure mode to check first during a release, audit, incident, or cost review. Good entries make that decision path clear enough for production use.
Official wording and source
An AI connection is a configured link from a Microsoft Foundry project to an external or Azure resource, such as Azure AI Search, Storage, model resources, or other services. The connection stores the resource reference and authentication choice so agents, tools, flows, or applications can use that resource.
Technical context
In Azure architecture, AI connection sits in the project integration layer that connects Foundry workspaces or projects to model, data, and service dependencies. It works with Foundry projects, Azure AI services, Foundry Models, Azure AI Search, Storage, Key Vault, managed identities, project roles, and SDK configuration. The important distinction is whether the reader is inspecting configuration, runtime behavior, identity, billing, or observability evidence. A strong design records scope, owner, permissions, monitoring signal, and rollback path so the term can be checked consistently across development, test, and production environments.
Exam context
Compare with
Where it is used
Where you see it
- In the Azure portal or Microsoft Foundry/Azure service UI where Foundry project, connected resource, authentication method, endpoint, identity, secret, and consumer workload is configured.
- In Azure CLI, SDK, REST, or ARM/Bicep evidence used to inspect the supporting resources.
- In governance workbooks, incident reviews, architecture diagrams, and runbooks where ownership and state are documented.
Common situations
- Connect Foundry projects to Azure AI Search
- Attach Storage or Key Vault to AI workflows
- Configure tool access to external services
- Manage authentication for agent tools
Illustrative Azure scenarios
These examples show how the concept can affect design and operations. They are illustrative scenarios, not customer claims.
Scenario 01 AI connection in action Scenario, objectives, solution, measured impact, and takeaway.
Alpine Energy Analytics, a energy analytics company, had multiple AI prototypes connecting directly to storage accounts and search indexes with inconsistent credentials.
- Centralize approved project connections for AI experiments
- Remove hardcoded endpoints and secrets from notebooks
- Give each team access only to its assigned data sources
- Reduce environment setup time for new prototypes
The AI platform team created Foundry project connections for Azure AI Search, storage, and model resources used by forecasting prototypes. Connections were named by environment and owner, and access required Azure AI User or higher project permissions plus resource-level roles. Secrets moved into managed configuration instead of notebooks, and developers used SDK code that referenced connection names rather than raw endpoints. The team reviewed connections monthly and removed stale links to retired test resources.
The team also added owner tags, a rollback note, and a validation checklist so support, security, and finance reviewers could repeat the pattern without rebuilding the design from memory.
- Prototype setup time fell from 2 days to 3 hours
- Hardcoded endpoint findings dropped to zero in reviewed notebooks
- Stale test-resource connections were reduced by 71 percent
- Access reviews confirmed each team had only approved data connections
An AI connection keeps project integrations governed, discoverable, and reusable instead of scattering credentials across prototypes.
Scenario 02 AI connection in action Scenario, objectives, solution, measured impact, and takeaway.
WillowTree Diagnostics, a medical-device software company, needed to connect a Foundry project to approved model and search resources for regulated product-support workflows.
- Use only validated model and search resources in the project
- Document ownership and authentication for each connection
- Prevent development connections from reaching production data
- Create evidence for quality-management review
The platform owner added AI connections in Microsoft Foundry for the validated model deployment, Azure AI Search index, and secure storage account used by support workflows. Each connection had an owner, environment label, role assignment, and review note. Development projects received separate connections to non-production resources, while production connections were restricted to the support-agent deployment team. Quality reviewers could inspect the connection list and confirm that workflows used approved dependencies rather than ad hoc endpoints.
The team also added owner tags, a rollback note, and a validation checklist so support, security, and finance reviewers could repeat the pattern without rebuilding the design from memory.
- Quality review preparation time fell by 56 percent
- No development project could reach production search data
- Connection ownership reached 100 percent of in-scope resources
- Support workflow deployment defects dropped by 22 percent
AI connections give regulated teams a concrete control point for proving which model, data, and service dependencies an AI app is allowed to use.
Scenario 03 AI connection in action Scenario, objectives, solution, measured impact, and takeaway.
PeakRoute Logistics, a supply-chain optimization provider, wanted a consistent way for agents and prompt flows to use shared model, search, and storage resources across regions.
- Standardize connection names across development and production
- Support regional resource choices without code rewrites
- Track which AI workloads depend on each connected resource
- Reduce broken deployments caused by missing endpoints
The cloud architecture team defined an AI connection naming standard for Foundry projects and created separate connections for East US and West Europe model, search, and storage resources. Application configuration selected the correct connection by environment instead of embedding regional endpoints in code. Deployment checks verified that required connections existed before releasing prompt flows or agents. Operators documented dependent workloads for each connection, so planned maintenance on a search resource included a clear impact list.
The team also added owner tags, a rollback note, and a validation checklist so support, security, and finance reviewers could repeat the pattern without rebuilding the design from memory.
- Broken AI deployments from missing endpoints fell 63 percent
- Regional rollout time improved by 41 percent
- Maintenance impact analysis for connected resources dropped to under 30 minutes
- Developers reused the same connection pattern across five projects
AI connections make Azure AI projects easier to move, audit, and operate because dependencies are named and governed at the project level.
Azure CLI
Azure CLI is useful for AI connection because it turns portal knowledge into repeatable evidence. Connection creation is usually portal/SDK based; Azure CLI helps verify target resources, roles, identities, and network settings. Use CLI when you need inventory, comparison between environments, release notes, audit proof, or a safe pre-change check. Prefer read-only commands first, save structured output when possible, and treat mutating commands as change-controlled work with subscription, resource group, identity, and rollback details verified before execution.
Useful for
- Inventory the Azure resources or records related to AI connection and confirm the expected scope.
- Inspect connection name, target resource, authentication type, project, role assignments, endpoint, secret reference, and owner before a release, audit, incident review, or cost discussion.
- Compare development, test, and production settings so drift is visible before users are affected.
- Export structured evidence for tickets, runbooks, compliance reviews, or post-incident timelines.
Before you run a command
- Confirm the signed-in tenant, subscription, resource group, and target resource name before trusting output.
- Check whether the command is read-only, mutating, credential-revealing, or potentially destructive.
- Use the least-privileged identity that can inspect the resource and avoid pasting secrets into shared channels.
- Decide the output format first, usually table for humans and JSON for automation or saved evidence.
- Know the rollback or revoke path before running any command that changes state or permissions.
What the output tells you
- The output should identify the current Azure scope and show whether AI connection is configured, active, enabled, or producing evidence.
- Status, timestamps, IDs, names, and related resource references help connect AI connection to a real owner and workload.
- Empty output is still evidence: it may mean the feature is disabled, the wrong scope was queried, or the caller lacks permission.
- Differences between environments usually point to drift, incomplete deployment, stale configuration, or an undocumented exception.
Mapped commands
AI connection operator commands
directaz storage account show --name <storage-account> --resource-group <resource-group>az keyvault show --name <key-vault> --resource-group <resource-group>az cognitiveservices account show --name <account> --resource-group <resource-group>Architecture context
In Azure architecture, AI connection sits in the project integration layer that connects Foundry workspaces or projects to model, data, and service dependencies. It works with Foundry projects, Azure AI services, Foundry Models, Azure AI Search, Storage, Key Vault, managed identities, project roles, and SDK configuration. The important distinction is whether the reader is inspecting configuration, runtime behavior, identity, billing, or observability evidence. A strong design records scope, owner, permissions, monitoring signal, and rollback path so the term can be checked consistently across development, test, and production environments.
- Security
- Security for AI connection starts with knowing the access boundary it creates or exposes. Review role-based access, project permissions, managed identity, secret handling, network restrictions, and connection review before sharing before trusting the configuration in production. Least privilege, source verification, and clear ownership matter because a small Azure setting can change who can read data, trigger actions, approve permissions, or serve user traffic. Security teams should capture evidence in tickets or runbooks without leaking secrets, tokens, sensitive payloads, or customer data. When possible, pair the term with Microsoft Entra roles, managed identities, policy, logging, and alerting so changes are visible, reviewable, and reversible.
- Cost
- Cost impact for AI connection may be direct or indirect, but it should still be explicit. The main cost consideration is that connections can enable use of billable models, search, storage, or APIs, so ownership and environment tagging matter. Even when the term is not a billing meter, it can influence the services, retries, alerts, storage, model tokens, compute, or operations effort consumed around it. FinOps review should ask whether the setting is needed, who pays for it, how long evidence is retained, and whether tags, budgets, exports, or Advisor data make the spend explainable. Review the pattern whenever environments are cloned, scaled, or retired.
- Reliability
- Reliability depends on how AI connection behaves during failure, scale, retries, and change windows. The main reliability concern is stable connections reduce broken demos and production failures by centralizing endpoint and authentication details. Operators should know whether the term affects runtime traffic, orchestration state, alert delivery, recovery evidence, or only management-plane reporting. Before changing it, confirm the rollback path, expected health signal, blast radius, and dependency map. During incidents, use the term to narrow the question: what changed, what is active, what failed, and what evidence proves that the system can safely continue or recover? Keep that evidence close to the change record.
- Performance
- Performance impact for AI connection depends on where it sits in the workload path. The main performance factor is target resource region, model latency, search capacity, network path, and authentication overhead affect connected AI workflows. Some terms do not speed the application directly, but they improve operational performance by reducing investigation time, noisy processing, or manual triage. Review latency, throughput, queue depth, query shape, token usage, retry behavior, and data volume where they apply. The best test is practical: can the team prove the term improves user experience, deployment speed, incident response, or processing efficiency without hiding a new bottleneck? Measure before and after; assumptions are not evidence.
- Operations
- Operationally, AI connection should be part of a repeatable runbook, not a portal-only memory. Teams need a standard way of creating connections, validating access, rotating secrets, documenting owners, and reviewing which agents or apps depend on each connection. The runbook should name the Azure scope, owner, required role, normal state, change procedure, evidence to collect, and escalation path. Good operators also record why a value exists, not just what it is. That context prevents accidental cleanup, noisy alerts, unsafe reruns, stale dashboards, and confusing handoffs between platform, application, data, security, and finance teams. It also makes later reviews faster and less political.
Common mistakes
- Treating AI connection as a label instead of checking the Azure output that proves its current state.
- Using the wrong tenant, subscription, project, database, or resource group and then trusting misleading results.
- Saving sensitive keys, payloads, user data, or permission details in screenshots instead of sanitized evidence.
- Changing production configuration without documenting the owner, rollback path, alert impact, and expected verification signal.