A unified Azure platform for creating and managing AI models, agents, and applications with built‑in enterprise security, monitoring, and governance
Hi Mahindra Manoj ,
That message isn't a Bicep validation failure — the CapabilityHost is the sub-resource that injects the agent runtime into your delegated subnet, and ...is not allowed, please reach out to support to enable is a service-side gating/allowlist response for VNet-injected Foundry Agent Service. Since the same template worked for you before, it's either that the subscription/region is no longer on the injection allowlist, or a prerequisite drifted since your last successful deploy.
Before you file a ticket, please re-verify the current network-secured requirements — any one of these drifting will fail the CapabilityHost:
- Standard (BYO) setup with your own Storage + Azure AI Search + Cosmos DB — all three are required.
- Public network access disabled on the Foundry account.
- Subnet delegated to
Microsoft.App/environments, ≥ /27, and not shared with another Foundry resource.- Verify:
az network vnet subnet show … --query "delegations[].serviceName"→ should returnMicrosoft.App/environments.
- RFC 1918 address space. Note 10.x is only supported in some regions — if you changed region recently, a 10.x subnet can now be rejected; try a
172.16/12or192.168/16range.
- Verify:
- Resource providers
Microsoft.AppandMicrosoft.ContainerServiceregistered.- Verify:
az provider show -n Microsoft.App --query registrationState -o tsv(repeat forMicrosoft.ContainerService) → bothRegistered.
- Foundry account and VNet/subnet in the same, supported region.
- Template uses
networkInjectionswithscenario: 'agent'and the correctsubnetArmId.
- Verify:
If all of that is already correct, please share the details requested over Private message.