{"id":371,"date":"2026-04-13T20:09:30","date_gmt":"2026-04-13T20:09:30","guid":{"rendered":"https:\/\/www.devopsschool.com\/tutorials\/azure-foundry-agent-service-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-ai-machine-learning\/"},"modified":"2026-04-13T20:09:30","modified_gmt":"2026-04-13T20:09:30","slug":"azure-foundry-agent-service-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-ai-machine-learning","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/tutorials\/azure-foundry-agent-service-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-ai-machine-learning\/","title":{"rendered":"Azure Foundry Agent Service Tutorial: Architecture, Pricing, Use Cases, and Hands-On Guide for AI + Machine Learning"},"content":{"rendered":"\n

Category<\/h2>\n\n\n\n

AI + Machine Learning<\/p>\n\n\n\n

1. Introduction<\/h2>\n\n\n\n

What this service is<\/h3>\n\n\n\n

Foundry Agent Service is an Azure-managed service for building, configuring, and operating AI \u201cagents\u201d that can follow instructions, use tools, and (optionally) retrieve knowledge from enterprise data sources\u2014all while integrating with Azure identity, governance, and monitoring.<\/p>\n\n\n\n

Simple explanation (one paragraph)<\/h3>\n\n\n\n

If you want a chat assistant that does more than answer questions\u2014such as looking up information, calling APIs, and producing consistent, auditable outcomes\u2014Foundry Agent Service provides the managed \u201cagent runtime\u201d and lifecycle tools so you can create and run those agents in Azure instead of stitching everything together yourself.<\/p>\n\n\n\n

Technical explanation (one paragraph)<\/h3>\n\n\n\n

Technically, Foundry Agent Service provides an agent orchestration layer that sits between your application and foundation models. It typically manages agent configuration (instructions, tools, knowledge connections), stateful conversations (threads\/sessions), execution (tool calls, retrieval\/grounding), and operational controls (authentication, logging\/telemetry integration, governance). Your model usage and data access are mediated through Azure-based connections and policies, and you operate agents as project resources within Azure\u2019s AI platform.<\/p>\n\n\n\n

What problem it solves<\/h3>\n\n\n\n

Teams commonly struggle with:\n– Turning a model into a reliable system<\/strong> that can use tools, retrieve knowledge, and follow policies\n– Managing agent state<\/strong> (conversation history, memory, tool outputs) in a scalable and secure way\n– Integrating with Azure enterprise requirements: Microsoft Entra ID<\/strong>, RBAC, logging, network controls, cost management, and compliance<\/p>\n\n\n\n

Foundry Agent Service addresses these by providing a managed way to build and run agents as first-class Azure AI resources.<\/p>\n\n\n\n

\n

Naming note (important): Microsoft\u2019s AI platform branding has evolved (for example, \u201cAzure AI Studio\u201d vs \u201cAzure AI Foundry\u201d, and \u201cAgent Service\u201d vs \u201cAgents\u201d). Use \u201cFoundry Agent Service\u201d as the primary name, and verify the latest naming, feature availability, and GA\/preview status in the official docs:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20Azure<\/p>\n<\/blockquote>\n\n\n\n

\n\n\n\n

2. What is Foundry Agent Service?<\/h2>\n\n\n\n

Official purpose<\/h3>\n\n\n\n

Foundry Agent Service exists to help you build AI agents that can:\n– Follow system-level instructions\n– Use tools<\/strong> (for example, calling APIs, functions, or connected services)\n– Optionally ground responses in enterprise data (for example, via retrieval)\n– Maintain conversation state in a managed way\n– Be operated securely in Azure with identity, governance, and monitoring<\/p>\n\n\n\n

Because terminology and product boundaries can change, treat this as the practical \u201cwhat it does\u201d definition and verify the exact scope in the current product documentation:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20overview<\/p>\n\n\n\n

Core capabilities (practical view)<\/h3>\n\n\n\n

Common capabilities associated with an Azure-managed agent service include:\n– Agent definition<\/strong>: name, instructions, model selection, tool configuration\n– Stateful conversations<\/strong>: threads\/sessions and message history\n– Tool calling orchestration<\/strong>: structured requests from the model to tools, and returning tool results\n– Knowledge grounding<\/strong>: retrieval from configured data sources (when supported)\n– Safety and policy integration<\/strong>: aligning outputs with content filtering\/safety policies (often via Azure AI Content Safety or platform policies)\n– Operationalization<\/strong>: logging, tracing, and controlled deployment across environments<\/p>\n\n\n\n

\n

Verify in official docs which of the above are supported in your region, subscription, and service version.<\/p>\n<\/blockquote>\n\n\n\n

Major components (conceptual model)<\/h3>\n\n\n\n

While exact terms vary, agent services usually include:<\/p>\n\n\n\n

\n\n\n\n\n\n\n\n\n\n
Component<\/th>\nWhat it represents<\/th>\nWhy it matters<\/th>\n<\/tr>\n<\/thead>\n
Project \/ workspace<\/td>\nA logical container for AI assets (agents, connections, evaluations)<\/td>\nEnables separation by team\/app\/environment<\/td>\n<\/tr>\n
Agent<\/td>\nThe configured AI \u201cworker\u201d (instructions + tools + model)<\/td>\nReusable unit of behavior<\/td>\n<\/tr>\n
Thread \/ session<\/td>\nA stateful conversation container<\/td>\nEnables multi-turn workflows<\/td>\n<\/tr>\n
Messages<\/td>\nInputs\/outputs in a thread<\/td>\nAuditing and replay<\/td>\n<\/tr>\n
Runs \/ executions<\/td>\nA single agent execution cycle (model + tools)<\/td>\nOrchestrates tool usage and final output<\/td>\n<\/tr>\n
Connections<\/td>\nLinks to Azure resources (models, data sources)<\/td>\nCentralizes credentials, governance<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n

Service type<\/h3>\n\n\n\n

Foundry Agent Service is a managed AI agent orchestration service<\/strong> in Azure, aligned to the AI + Machine Learning<\/strong> category. It is not simply a model endpoint; it is the layer that coordinates tools, state, and policies around a model.<\/p>\n\n\n\n

Scope: regional vs global, project-scoped vs subscription-scoped<\/h3>\n\n\n\n

In Azure, most AI services are regional<\/strong> and tied to a project\/workspace or a resource in a resource group. In practice:\n– Expect agents to be created within an Azure AI project\/workspace<\/strong> (project-scoped)\n– Expect operations and data residency to follow the region<\/strong> of the underlying AI project and connected resources<\/p>\n\n\n\n

Because scope and region support can change, confirm for your environment:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Azure%20AI%20Foundry%20regions%20availability<\/p>\n\n\n\n

How it fits into the Azure ecosystem<\/h3>\n\n\n\n

Foundry Agent Service typically sits at the center of an \u201cagentic\u201d solution and integrates with:\n– Model providers<\/strong> in Azure (commonly Azure OpenAI models, and potentially other hosted models depending on platform support)\n– Enterprise data<\/strong> (commonly via Azure AI Search for retrieval, or storage\/databases via tools)\n– Compute for tools<\/strong>: Azure Functions, Container Apps, AKS, App Service\n– Security<\/strong>: Microsoft Entra ID, Managed Identities, Key Vault, Private Link\/VNet (where supported)\n– Observability<\/strong>: Azure Monitor, Log Analytics, Application Insights (depending on integration)<\/p>\n\n\n\n

\n\n\n\n

3. Why use Foundry Agent Service?<\/h2>\n\n\n\n

Business reasons<\/h3>\n\n\n\n
    \n
  • Faster time-to-value<\/strong>: agent building blocks (instructions, tools, state) reduce custom orchestration code<\/li>\n
  • Consistency<\/strong>: standard agent definitions and projects help teams reuse patterns across apps<\/li>\n
  • Governance<\/strong>: centrally managed connections and access control reduce shadow AI deployments<\/li>\n
  • Safer enterprise rollout<\/strong>: easier to apply policies, monitor usage, and manage secrets<\/li>\n<\/ul>\n\n\n\n

    Technical reasons<\/h3>\n\n\n\n
      \n
    • Stateful interactions<\/strong>: built-in constructs for multi-turn conversations<\/li>\n
    • Tool orchestration<\/strong>: structured tool calls reduce prompt-only \u201cbest effort\u201d integrations<\/li>\n
    • Composable design<\/strong>: connect models + data + tools with fewer moving parts than DIY frameworks<\/li>\n
    • Azure-native integration<\/strong>: aligns with Entra ID, RBAC, and standard deployment patterns<\/li>\n<\/ul>\n\n\n\n

      Operational reasons<\/h3>\n\n\n\n
        \n
      • Observability-ready<\/strong>: clearer auditing of agent runs, tool usage, and failures (capabilities vary)<\/li>\n
      • Environment separation<\/strong>: dev\/test\/prod projects with different connections and policies<\/li>\n
      • Change control<\/strong>: agent versions\/config changes can be managed like application artifacts<\/li>\n<\/ul>\n\n\n\n

        Security\/compliance reasons<\/h3>\n\n\n\n
          \n
        • Centralized identity<\/strong>: prefer Entra ID and Managed Identities over scattered API keys<\/li>\n
        • Least-privilege access<\/strong>: RBAC-based control to projects and connected resources<\/li>\n
        • Data governance<\/strong>: clearer boundaries for where prompts, outputs, and tool data flows<\/li>\n<\/ul>\n\n\n\n

          Scalability\/performance reasons<\/h3>\n\n\n\n
            \n
          • Managed scaling<\/strong>: you scale agent requests like an API rather than scaling custom orchestrators<\/li>\n
          • Backpressure and limits<\/strong>: service and model rate limits can be handled more predictably (still plan for retries)<\/li>\n<\/ul>\n\n\n\n

            When teams should choose it<\/h3>\n\n\n\n

            Choose Foundry Agent Service when:\n– You need an agent that calls tools<\/strong> (APIs, functions, workflows)\n– You need multi-turn state<\/strong> and consistent conversation handling\n– You must satisfy Azure enterprise controls<\/strong> (RBAC, network boundaries, monitoring)\n– You want a managed<\/strong> way to build agentic apps without assembling a full custom framework<\/p>\n\n\n\n

            When teams should not choose it<\/h3>\n\n\n\n

            Consider alternatives when:\n– You only need single-shot<\/strong> text generation (a simple model endpoint may be enough)\n– You require fully offline\/on-prem<\/strong> orchestration (self-managed frameworks may fit better)\n– You need features not yet supported in your region or compliance boundary (for example, strict residency constraints or missing private networking features\u2014verify availability)\n– You want deep customization of agent internals beyond what a managed service exposes<\/p>\n\n\n\n

            \n\n\n\n

            4. Where is Foundry Agent Service used?<\/h2>\n\n\n\n

            Industries<\/h3>\n\n\n\n
              \n
            • Financial services (policy Q&A, internal support, document workflows)<\/li>\n
            • Healthcare and life sciences (clinical ops knowledge assistants\u2014ensure compliance)<\/li>\n
            • Retail and e-commerce (customer support automation, catalog helpers)<\/li>\n
            • Manufacturing (maintenance copilots, SOP assistants)<\/li>\n
            • Energy (field ops troubleshooting assistants)<\/li>\n
            • Public sector (case worker guidance with strict governance)<\/li>\n
            • Technology and SaaS (developer support, internal productivity copilots)<\/li>\n<\/ul>\n\n\n\n

              Team types<\/h3>\n\n\n\n
                \n
              • Application developers adding \u201cagentic features\u201d to products<\/li>\n
              • Platform teams standardizing AI adoption with guardrails<\/li>\n
              • Data\/ML teams operationalizing retrieval and evaluation<\/li>\n
              • Security and compliance teams governing model and data access<\/li>\n
              • DevOps\/SRE teams running production agent endpoints<\/li>\n<\/ul>\n\n\n\n

                Workloads and architectures<\/h3>\n\n\n\n
                  \n
                • Internal copilots (HR, IT helpdesk, finance ops)<\/li>\n
                • Customer service agent assist<\/li>\n
                • Document processing pipelines with human-in-the-loop review<\/li>\n
                • Workflow automation (ticketing, approvals, knowledge retrieval)<\/li>\n
                • API orchestration and data enrichment<\/li>\n<\/ul>\n\n\n\n

                  Real-world deployment contexts<\/h3>\n\n\n\n
                    \n
                  • Production<\/strong>: strong RBAC, audited tool calls, controlled data connections, monitoring\/alerting, environment separation<\/li>\n
                  • Dev\/test<\/strong>: rapid experimentation with sandbox data and smaller models; cost controls and quotas<\/li>\n<\/ul>\n\n\n\n
                    \n\n\n\n

                    5. Top Use Cases and Scenarios<\/h2>\n\n\n\n

                    Below are realistic scenarios where Foundry Agent Service is commonly a good fit. For each, assume the agent uses a supported model through Azure, and uses tools\/knowledge connections where appropriate.<\/p>\n\n\n\n

                    1) IT Helpdesk Triage Agent<\/h3>\n\n\n\n
                      \n
                    • Problem<\/strong>: L1 support is overwhelmed; many tickets are repetitive.<\/li>\n
                    • Why this service fits<\/strong>: Stateful conversation + tool calls to ticketing systems.<\/li>\n
                    • Example<\/strong>: Agent asks clarifying questions, checks outage status via an API tool, and drafts a ticket with structured fields.<\/li>\n<\/ul>\n\n\n\n

                      2) Customer Support Order Lookup Agent<\/h3>\n\n\n\n
                        \n
                      • Problem<\/strong>: Customers ask \u201cWhere is my order?\u201d and \u201cCan I change my address?\u201d.<\/li>\n
                      • Why this service fits<\/strong>: Tool calling to order systems; consistent instructions for safe actions.<\/li>\n
                      • Example<\/strong>: Agent calls an order-status API tool, returns ETA, and escalates if the order is in an exception state.<\/li>\n<\/ul>\n\n\n\n

                        3) Policy and Compliance Q&A (Grounded)<\/h3>\n\n\n\n
                          \n
                        • Problem<\/strong>: Employees need accurate policy answers; hallucinations are risky.<\/li>\n
                        • Why this service fits<\/strong>: Retrieval\/grounding from approved documents; auditable sources.<\/li>\n
                        • Example<\/strong>: Agent answers travel expense policy questions and cites the exact policy sections retrieved.<\/li>\n<\/ul>\n\n\n\n

                          4) Incident Response Assistant (On-call Copilot)<\/h3>\n\n\n\n
                            \n
                          • Problem<\/strong>: During incidents, responders waste time finding runbooks and past incidents.<\/li>\n
                          • Why this service fits<\/strong>: Tool access to monitoring\/knowledge systems; stateful threads for incident timeline.<\/li>\n
                          • Example<\/strong>: Agent fetches relevant runbooks, queries recent alerts, and summarizes likely root causes.<\/li>\n<\/ul>\n\n\n\n

                            5) Sales Enablement Agent<\/h3>\n\n\n\n
                              \n
                            • Problem<\/strong>: Sales needs fast, accurate product answers tailored to customers.<\/li>\n
                            • Why this service fits<\/strong>: Grounded retrieval from approved collateral; tool to CRM for customer context.<\/li>\n
                            • Example<\/strong>: Agent pulls account notes and produces a tailored pitch and objection handling guide.<\/li>\n<\/ul>\n\n\n\n

                              6) Developer Documentation Assistant<\/h3>\n\n\n\n
                                \n
                              • Problem<\/strong>: Engineers lose time searching internal docs and code examples.<\/li>\n
                              • Why this service fits<\/strong>: Retrieval from docs; tool to internal Git search service.<\/li>\n
                              • Example<\/strong>: Agent answers \u201cHow do I rotate secrets for service X?\u201d with steps and links to internal docs.<\/li>\n<\/ul>\n\n\n\n

                                7) Procurement and Vendor Risk Assistant<\/h3>\n\n\n\n
                                  \n
                                • Problem<\/strong>: Vendor assessments require repeated checks against requirements.<\/li>\n
                                • Why this service fits<\/strong>: Tool calls to questionnaires; grounded retrieval from policy templates.<\/li>\n
                                • Example<\/strong>: Agent drafts a vendor risk summary and flags missing evidence for human review.<\/li>\n<\/ul>\n\n\n\n

                                  8) HR Onboarding Assistant<\/h3>\n\n\n\n
                                    \n
                                  • Problem<\/strong>: New hires ask the same onboarding questions.<\/li>\n
                                  • Why this service fits<\/strong>: Grounding from curated onboarding knowledge; consistent tone and disclaimers.<\/li>\n
                                  • Example<\/strong>: Agent provides day-1 checklist, benefits links, and helps schedule IT setup steps via tools.<\/li>\n<\/ul>\n\n\n\n

                                    9) Finance Close Assistant<\/h3>\n\n\n\n
                                      \n
                                    • Problem<\/strong>: Month-end close involves repetitive reconciliations and explanations.<\/li>\n
                                    • Why this service fits<\/strong>: Tooling to pull ledger data; constrained instructions to avoid unauthorized actions.<\/li>\n
                                    • Example<\/strong>: Agent fetches KPIs and drafts variance commentary with traceable calculations.<\/li>\n<\/ul>\n\n\n\n

                                      10) Field Service Troubleshooting Agent<\/h3>\n\n\n\n
                                        \n
                                      • Problem<\/strong>: Technicians need quick guidance for equipment faults.<\/li>\n
                                      • Why this service fits<\/strong>: Grounded SOP retrieval; tool to query asset history.<\/li>\n
                                      • Example<\/strong>: Agent asks for model\/serial, fetches maintenance history, and recommends next steps with safety warnings.<\/li>\n<\/ul>\n\n\n\n

                                        11) Legal Contract Review Assistant (Assistive)<\/h3>\n\n\n\n
                                          \n
                                        • Problem<\/strong>: Lawyers need faster first-pass reviews.<\/li>\n
                                        • Why this service fits<\/strong>: Tooling for clause library retrieval; auditable suggestions.<\/li>\n
                                        • Example<\/strong>: Agent highlights risky clauses and suggests alternative language, clearly labeling as non-final.<\/li>\n<\/ul>\n\n\n\n

                                          12) Product Ops \/ Release Notes Generator<\/h3>\n\n\n\n
                                            \n
                                          • Problem<\/strong>: Release notes are time-consuming and inconsistent.<\/li>\n
                                          • Why this service fits<\/strong>: Tool to pull merged PR titles\/issue summaries; consistent templates.<\/li>\n
                                          • Example<\/strong>: Agent produces customer-friendly release notes with categorized changes and links.<\/li>\n<\/ul>\n\n\n\n
                                            \n\n\n\n

                                            6. Core Features<\/h2>\n\n\n\n

                                            Because feature availability can vary by region and release stage, verify each item against the official docs for Foundry Agent Service:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20features<\/p>\n\n\n\n

                                            1) Managed agent definitions<\/h3>\n\n\n\n
                                              \n
                                            • What it does<\/strong>: Stores agent configuration (instructions, model choice, tool definitions, optional knowledge settings) as a managed resource.<\/li>\n
                                            • Why it matters<\/strong>: Avoids hardcoding prompts\/tool schemas in multiple apps.<\/li>\n
                                            • Practical benefit<\/strong>: Teams can reuse and version agent behavior across environments.<\/li>\n
                                            • Caveats<\/strong>: Versioning\/publishing workflows vary\u2014verify how changes propagate to production.<\/li>\n<\/ul>\n\n\n\n

                                              2) Stateful conversations (threads\/sessions)<\/h3>\n\n\n\n
                                                \n
                                              • What it does<\/strong>: Maintains conversation context in a structured way.<\/li>\n
                                              • Why it matters<\/strong>: Many real workflows need multi-turn clarification and memory.<\/li>\n
                                              • Practical benefit<\/strong>: Better user experience; fewer \u201cstart over\u201d interactions.<\/li>\n
                                              • Caveats<\/strong>: State retention duration, storage location, and export\/audit features vary\u2014verify retention and compliance behavior.<\/li>\n<\/ul>\n\n\n\n

                                                3) Tool calling orchestration<\/h3>\n\n\n\n
                                                  \n
                                                • What it does<\/strong>: Enables the model to request structured tool invocations; your system executes the tool and returns results.<\/li>\n
                                                • Why it matters<\/strong>: Reliable integration with external systems (CRM, ERP, ticketing, databases).<\/li>\n
                                                • Practical benefit<\/strong>: More deterministic workflows than prompt-only \u201cplease call this API\u201d.<\/li>\n
                                                • Caveats<\/strong>: You must secure and validate tool calls; never let the model execute privileged actions without authorization checks.<\/li>\n<\/ul>\n\n\n\n

                                                  4) Connections to Azure resources<\/h3>\n\n\n\n
                                                    \n
                                                  • What it does<\/strong>: Centralizes references to model endpoints and data sources.<\/li>\n
                                                  • Why it matters<\/strong>: Credentials and governance can be managed once.<\/li>\n
                                                  • Practical benefit<\/strong>: Faster onboarding, consistent security posture.<\/li>\n
                                                  • Caveats<\/strong>: Connection types and auth modes differ\u2014verify supported connectors.<\/li>\n<\/ul>\n\n\n\n

                                                    5) Grounding \/ retrieval integration (when supported)<\/h3>\n\n\n\n
                                                      \n
                                                    • What it does<\/strong>: Augments responses using enterprise knowledge sources (commonly via a search index).<\/li>\n
                                                    • Why it matters<\/strong>: Reduces hallucinations and improves factuality.<\/li>\n
                                                    • Practical benefit<\/strong>: Answers can reference approved documents and up-to-date data.<\/li>\n
                                                    • Caveats<\/strong>: Retrieval quality depends heavily on chunking, indexing, and query tuning.<\/li>\n<\/ul>\n\n\n\n

                                                      6) Safety controls integration<\/h3>\n\n\n\n
                                                        \n
                                                      • What it does<\/strong>: Applies content safety filtering and policy controls to prompts and outputs.<\/li>\n
                                                      • Why it matters<\/strong>: Required for many enterprise deployments.<\/li>\n
                                                      • Practical benefit<\/strong>: Reduce harmful content and policy violations.<\/li>\n
                                                      • Caveats<\/strong>: Safety filtering can block legitimate content; build user-friendly fallbacks and human escalation.<\/li>\n<\/ul>\n\n\n\n

                                                        7) Evaluation and testing hooks (platform-dependent)<\/h3>\n\n\n\n
                                                          \n
                                                        • What it does<\/strong>: Helps test agent behavior with test sets, metrics, or structured evaluations.<\/li>\n
                                                        • Why it matters<\/strong>: Agents regress when prompts\/tools change.<\/li>\n
                                                        • Practical benefit<\/strong>: More reliable releases, fewer production surprises.<\/li>\n
                                                        • Caveats<\/strong>: Evaluation features may live in the broader Azure AI Foundry platform rather than the agent runtime itself\u2014verify exact location.<\/li>\n<\/ul>\n\n\n\n

                                                          8) Enterprise identity (Entra ID) and RBAC alignment<\/h3>\n\n\n\n
                                                            \n
                                                          • What it does<\/strong>: Aligns access control with Azure identity and resource governance.<\/li>\n
                                                          • Why it matters<\/strong>: Avoids sharing long-lived API keys across teams.<\/li>\n
                                                          • Practical benefit<\/strong>: Centralized access reviews and auditing.<\/li>\n
                                                          • Caveats<\/strong>: Some integrations may still require keys; store them in Key Vault and use Managed Identity where possible.<\/li>\n<\/ul>\n\n\n\n

                                                            9) Observability integration (logging\/metrics)<\/h3>\n\n\n\n
                                                              \n
                                                            • What it does<\/strong>: Emits operational signals about requests, failures, and latencies (capabilities vary).<\/li>\n
                                                            • Why it matters<\/strong>: Production operations require visibility.<\/li>\n
                                                            • Practical benefit<\/strong>: Faster troubleshooting; SLO\/SLA tracking.<\/li>\n
                                                            • Caveats<\/strong>: Beware logging sensitive prompts\/outputs; configure redaction and access controls.<\/li>\n<\/ul>\n\n\n\n

                                                              10) Environment separation and governance<\/h3>\n\n\n\n
                                                                \n
                                                              • What it does<\/strong>: Enables separate projects\/resources per environment.<\/li>\n
                                                              • Why it matters<\/strong>: Prevents test data and dev prompts from affecting production.<\/li>\n
                                                              • Practical benefit<\/strong>: Safer deployments and cost controls.<\/li>\n
                                                              • Caveats<\/strong>: Ensure consistent configuration promotion (IaC) and avoid manual drift.<\/li>\n<\/ul>\n\n\n\n
                                                                \n\n\n\n

                                                                7. Architecture and How It Works<\/h2>\n\n\n\n

                                                                High-level architecture<\/h3>\n\n\n\n

                                                                At a high level:\n1. Your application sends a user message to Foundry Agent Service.\n2. The agent runtime determines what to do next based on instructions and context.\n3. The runtime calls the configured model.\n4. If the model requests a tool call, the runtime (or your app, depending on the pattern) invokes the tool and returns results.\n5. The agent produces a final response, optionally grounded by data retrieval.<\/p>\n\n\n\n

                                                                Request\/data\/control flow (typical)<\/h3>\n\n\n\n
                                                                  \n
                                                                • Control plane<\/strong>: Create\/update agents, configure tools, set connections, manage access.<\/li>\n
                                                                • Data plane<\/strong>: Send messages, run agent executions, receive responses, fetch run logs\/messages.<\/li>\n<\/ul>\n\n\n\n

                                                                  Integrations with related services (common Azure patterns)<\/h3>\n\n\n\n
                                                                    \n
                                                                  • Model layer<\/strong>: Azure-hosted foundation models (commonly Azure OpenAI).\n Official entry point for Azure OpenAI docs: https:\/\/learn.microsoft.com\/azure\/ai-services\/openai\/<\/li>\n
                                                                  • Retrieval<\/strong>: Azure AI Search for indexing and retrieval.\n Docs: https:\/\/learn.microsoft.com\/azure\/search\/<\/li>\n
                                                                  • Tool execution<\/strong>: Azure Functions \/ Container Apps \/ AKS \/ Logic Apps (depending on your design).<\/li>\n
                                                                  • Secrets<\/strong>: Azure Key Vault. Docs: https:\/\/learn.microsoft.com\/azure\/key-vault\/<\/li>\n
                                                                  • Identity<\/strong>: Microsoft Entra ID + Managed Identity. Docs: https:\/\/learn.microsoft.com\/entra\/identity\/<\/li>\n
                                                                  • Monitoring<\/strong>: Azure Monitor + Application Insights. Docs: https:\/\/learn.microsoft.com\/azure\/azure-monitor\/<\/li>\n<\/ul>\n\n\n\n

                                                                    Dependency services<\/h3>\n\n\n\n

                                                                    Foundry Agent Service rarely exists alone. Plan for:\n– A model provider resource (often Azure OpenAI) with deployed models\n– A data source (optional) for grounding (often Azure AI Search + storage)\n– Compute for tools (optional) and secured connectivity to internal systems\n– Monitoring and log storage (Log Analytics workspace)<\/p>\n\n\n\n

                                                                    Security\/authentication model (typical Azure implementation)<\/h3>\n\n\n\n
                                                                      \n
                                                                    • Human admin access<\/strong>: Entra ID sign-in to Azure portal \/ Azure AI Foundry portal<\/li>\n
                                                                    • App-to-service auth<\/strong>: Entra ID (recommended) or API keys (where applicable)<\/li>\n
                                                                    • Tool auth<\/strong>: Managed Identity from tool compute (Function\/Container) to downstream resources (SQL, Storage, Key Vault)<\/li>\n<\/ul>\n\n\n\n
                                                                      \n

                                                                      Verify exactly which auth modes Foundry Agent Service supports in your tenant and region.<\/p>\n<\/blockquote>\n\n\n\n

                                                                      Networking model<\/h3>\n\n\n\n

                                                                      Networking options vary by service maturity:\n– Public endpoints with strong auth (common default)\n– Private networking via Private Link \/ VNet integration (sometimes available, sometimes limited; verify)<\/p>\n\n\n\n

                                                                      Start with public endpoints + Entra ID and then harden to private networking if and when available for your compliance needs.<\/p>\n\n\n\n

                                                                      Monitoring\/logging\/governance considerations<\/h3>\n\n\n\n
                                                                        \n
                                                                      • Capture request counts, latency, error rates<\/strong><\/li>\n
                                                                      • Correlate agent run IDs<\/strong> with application request IDs<\/li>\n
                                                                      • Decide whether to log prompts\/outputs; if you do, implement:<\/li>\n
                                                                      • PII redaction<\/li>\n
                                                                      • restricted access (RBAC)<\/li>\n
                                                                      • retention limits<\/li>\n
                                                                      • encryption and audit trails<\/li>\n<\/ul>\n\n\n\n
                                                                        \n\n\n\n

                                                                        Simple architecture diagram (Mermaid)<\/h3>\n\n\n\n
                                                                        flowchart LR\n  U[User] --> A[Your App<br\/>Web\/API]\n  A --> F[Foundry Agent Service]\n  F --> M[Model Endpoint<br\/>(e.g., Azure OpenAI)]\n  F --> T[Tools<br\/>(Functions\/APIs)]\n  F --> R[Retrieval Source<br\/>(e.g., Azure AI Search)]\n  F --> A\n  A --> U\n<\/code><\/pre>\n\n\n\n
                                                                        Production-style architecture diagram (Mermaid)<\/h3>\n\n\n\n
                                                                        flowchart TB\n  subgraph Client\n    U[Users]\n    B[Browser\/Mobile]\n    U --> B\n  end\n\n  subgraph AppTier[\"Application Tier (Your Subscription)\"]\n    APIM[API Management<br\/>(optional)]\n    WEB[App Service \/ Container Apps]\n    FUNC[Azure Functions<br\/>Tool Endpoints]\n    KV[Key Vault]\n    MON[App Insights \/ Azure Monitor]\n  end\n\n  subgraph AIFoundry[\"Azure AI Foundry (Project)\"]\n    FAS[Foundry Agent Service]\n    CONN[Connections<br\/>(Models\/Data)]\n  end\n\n  subgraph DataTier[\"Data Tier\"]\n    AIS[Azure AI Search<br\/>Index]\n    STG[Storage Account<br\/>(Docs)]\n    SQL[(Azure SQL \/ Cosmos DB<br\/>(optional))]\n  end\n\n  subgraph ModelTier[\"Model Tier\"]\n    AOAI[Azure OpenAI Resource<br\/>(Deployed Model)]\n  end\n\n  B --> APIM --> WEB\n  WEB --> FAS\n  FAS --> AOAI\n  FAS --> AIS\n  WEB --> FUNC\n  FUNC --> SQL\n  FUNC --> KV\n  WEB --> KV\n  WEB --> MON\n  FUNC --> MON\n\n  STG --> AIS\n  FAS --> CONN\n<\/code><\/pre>\n\n\n\n
                                                                        \n\n\n\n
                                                                        8. Prerequisites<\/h2>\n\n\n\n
                                                                        Account\/subscription\/tenant requirements<\/h3>\n\n\n\n
                                                                          \n
                                                                        • An active Azure subscription<\/strong><\/li>\n
                                                                        • Access to Azure AI Foundry<\/strong> \/ Foundry Agent Service in your tenant (availability varies)<\/li>\n
                                                                        • If using Azure OpenAI as the model provider: an Azure OpenAI-enabled subscription\/region (access requirements may apply)<\/li>\n<\/ul>\n\n\n\n
                                                                          Start here to locate the current official onboarding path:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Azure%20AI%20Foundry%20get%20started<\/p>\n\n\n\n
                                                                          Permissions \/ IAM roles<\/h3>\n\n\n\n
                                                                          You typically need:\n– Resource Group<\/strong>: Contributor (or Owner) to create resources\n– Azure AI project\/workspace<\/strong>: permissions to create agents and connections\n– Model resource (Azure OpenAI)<\/strong>: permissions to deploy and use models\n– Azure AI Search<\/strong> (optional): permissions to create index and query<\/p>\n\n\n\n
                                                                          Because role names differ across services and evolve, verify the required built-in roles in docs for:\n– Azure AI Foundry project access\n– Azure OpenAI RBAC (if using Entra-based auth)\n– Azure AI Search RBAC<\/p>\n\n\n\n
                                                                          Billing requirements<\/h3>\n\n\n\n
                                                                            \n
                                                                          • A subscription with billing enabled<\/li>\n
                                                                          • Budget\/alerts recommended for cost containment<\/li>\n<\/ul>\n\n\n\n
                                                                            CLI\/SDK\/tools<\/h3>\n\n\n\n
                                                                            For this tutorial, you should have:\n– Azure CLI: https:\/\/learn.microsoft.com\/cli\/azure\/install-azure-cli\n– Git (optional)\n– Python 3.10+ (optional, for scripting data upload)\n– Access to Azure portal and the Azure AI Foundry portal (often at https:\/\/ai.azure.com\/ \u2014 verify in your tenant)<\/p>\n\n\n\n
                                                                            Region availability<\/h3>\n\n\n\n
                                                                              \n
                                                                            • Foundry Agent Service availability is region-dependent.<\/li>\n
                                                                            • Your model (for example, Azure OpenAI deployments) is also region-dependent.<\/li>\n<\/ul>\n\n\n\n
                                                                              Verify region support before provisioning:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Azure%20AI%20Foundry%20region%20availability<\/p>\n\n\n\n
                                                                              Quotas\/limits<\/h3>\n\n\n\n
                                                                              Plan for:\n– Model token and rate limits\n– Search query limits (if using Azure AI Search)\n– Agent\/project quotas (if applicable)<\/p>\n\n\n\n
                                                                              Always check:\n– Quotas in Azure portal for the relevant service\n– Product documentation for service-specific caps<\/p>\n\n\n\n
                                                                              Prerequisite services (for the lab)<\/h3>\n\n\n\n
                                                                              Minimum viable lab:\n– Resource Group\n– Azure AI Foundry project\/workspace with Foundry Agent Service access\n– A supported model connection (commonly via Azure OpenAI)<\/p>\n\n\n\n
                                                                              Optional (recommended for grounding lab):\n– Azure AI Search\n– Storage account (for documents)<\/p>\n\n\n\n
                                                                              \n\n\n\n
                                                                              9. Pricing \/ Cost<\/h2>\n\n\n\n
                                                                              Current pricing model (how to think about it)<\/h3>\n\n\n\n
                                                                              Foundry Agent Service cost is typically a combination of:\n1. Model usage costs<\/strong> (tokens, input\/output) from the underlying model provider (commonly Azure OpenAI)\n2. Tool execution costs<\/strong> (Azure Functions\/Container Apps compute, database queries, API Management calls)\n3. Retrieval costs<\/strong> (Azure AI Search indexing + query units; storage for documents)\n4. Observability costs<\/strong> (Log Analytics ingestion, retention, Application Insights telemetry)<\/p>\n\n\n\n
                                                                              Whether Foundry Agent Service itself has an additional standalone charge (per agent, per run, per request) depends on its current SKU\/GA status. Verify on the official pricing page<\/strong> (if available) or the Azure Pricing Calculator.<\/p>\n\n\n\n
                                                                              Official pricing sources<\/h3>\n\n\n\n
                                                                                \n
                                                                              • Azure Pricing Calculator: https:\/\/azure.microsoft.com\/pricing\/calculator\/<\/li>\n
                                                                              • Azure OpenAI pricing (official): https:\/\/azure.microsoft.com\/pricing\/details\/cognitive-services\/openai-service\/  <\/li>\n
                                                                              • Azure AI Search pricing (official): https:\/\/azure.microsoft.com\/pricing\/details\/search\/<\/li>\n<\/ul>\n\n\n\n
                                                                                For Foundry Agent Service pricing specifically, use Microsoft documentation search to find the current pricing page (if published):\nhttps:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20pricing<\/p>\n\n\n\n
                                                                                Pricing dimensions (common)<\/h3>\n\n\n\n
                                                                                  \n
                                                                                • Tokens<\/strong>: input + output tokens per model call<\/li>\n
                                                                                • Number of model calls<\/strong> per conversation (agents often do multiple calls per user request)<\/li>\n
                                                                                • Tool calls<\/strong>: quantity and duration (compute time), plus downstream API costs<\/li>\n
                                                                                • Retrieval queries<\/strong>: per request, potentially multiple queries per response<\/li>\n
                                                                                • Index size and replicas\/partitions<\/strong> for search<\/li>\n
                                                                                • Logs<\/strong>: volume of telemetry and retention duration<\/li>\n<\/ul>\n\n\n\n
                                                                                  Free tier<\/h3>\n\n\n\n
                                                                                    \n
                                                                                  • Some Azure services offer free tiers; Azure OpenAI typically does not include a general free tier.<\/li>\n
                                                                                  • Preview services sometimes have limited free usage, but do not assume this\u2014verify in official docs<\/strong>.<\/li>\n<\/ul>\n\n\n\n
                                                                                    Cost drivers (what actually increases your bill)<\/h3>\n\n\n\n
                                                                                      \n
                                                                                    1. \n
                                                                                      Multi-step agent runs<\/strong>\n   One \u201cuser question\u201d can become:\n   – model call to interpret request\n   – retrieval query\n   – model call to write grounded answer\n   – one or more tool calls + follow-up model call<\/p>\n<\/li>\n
                                                                                    2. \n
                                                                                      Large context windows<\/strong>\n   Long conversations and large retrieved document chunks increase input tokens.<\/p>\n<\/li>\n
                                                                                    3. \n
                                                                                      High concurrency<\/strong>\n   Parallel agent runs may cause rate-limit retries and additional costs if not controlled.<\/p>\n<\/li>\n
                                                                                    4. \n
                                                                                      Verbose logging<\/strong>\n   Logging full prompts\/outputs can dramatically increase Log Analytics ingestion.<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                      Hidden\/indirect costs<\/h3>\n\n\n\n
                                                                                        \n
                                                                                      • Networking egress if tools call external endpoints or cross-region resources<\/li>\n
                                                                                      • Private networking features (Private Link) may add costs<\/li>\n
                                                                                      • CI\/CD runners and test environments<\/li>\n
                                                                                      • Data preparation and indexing pipelines (compute)<\/li>\n<\/ul>\n\n\n\n
                                                                                        Network\/data transfer implications<\/h3>\n\n\n\n
                                                                                          \n
                                                                                        • Keep model, agent runtime, retrieval, and tool compute in the same region<\/strong> when possible.<\/li>\n
                                                                                        • Minimize cross-region calls to reduce latency and egress.<\/li>\n<\/ul>\n\n\n\n
                                                                                          How to optimize cost<\/h3>\n\n\n\n
                                                                                            \n
                                                                                          • Use smaller\/cheaper models for most traffic; reserve larger models for escalation paths<\/li>\n
                                                                                          • Apply retrieval only when needed; avoid retrieving for trivial questions<\/li>\n
                                                                                          • Limit maximum tool calls per run; add guardrails<\/li>\n
                                                                                          • Summarize or truncate conversation history intentionally<\/li>\n
                                                                                          • Use caching for stable answers and repeated retrieval queries<\/li>\n
                                                                                          • Configure log sampling and reduce prompt\/response logging in production<\/li>\n<\/ul>\n\n\n\n
                                                                                            Example low-cost starter estimate (non-numeric)<\/h3>\n\n\n\n
                                                                                            A \u201cstarter\u201d setup usually includes:\n– One small chat model deployment\n– A single agent\n– Low-volume dev\/test usage\n– Optional basic Azure AI Search tier for small documents<\/p>\n\n\n\n
                                                                                            Your primary costs will likely be:\n– Model tokens\n– Search indexing\/query (if used)\n– Minimal monitoring ingestion<\/p>\n\n\n\n
                                                                                            Because prices vary by region\/model\/tier, build an estimate in the calculator using:\n– Expected daily users\n– Avg messages per session\n– Avg tokens per message (input + output)\n– Tool calls per message (if any)\n– Search queries per message (if any)<\/p>\n\n\n\n
                                                                                            Example production cost considerations (non-numeric)<\/h3>\n\n\n\n
                                                                                            For production:\n– Provision for peak concurrency and higher token throughput\n– Add redundancy for retrieval and tools\n– Budget for monitoring retention, audit needs, and alerting\n– Expect higher per-request cost due to multi-step orchestration<\/p>\n\n\n\n
                                                                                            \n\n\n\n
                                                                                            10. Step-by-Step Hands-On Tutorial<\/h2>\n\n\n\n
                                                                                            This lab is designed to be beginner-friendly<\/strong> and low-risk<\/strong>. It focuses on creating a basic agent and testing it safely. Because portal workflows and API surfaces can change, you will copy the exact endpoint\/code snippets from your Azure AI Foundry environment where available.<\/p>\n\n\n\n
                                                                                            Objective<\/h3>\n\n\n\n
                                                                                            Create a \u201cPolicy Helper\u201d agent using Foundry Agent Service in Azure, connect it to a chat model, test it in the Azure AI Foundry playground, and validate secure access patterns. Optionally, add a retrieval source using Azure AI Search.<\/p>\n\n\n\n
                                                                                            Lab Overview<\/h3>\n\n\n\n
                                                                                            You will:\n1. Create an Azure resource group.\n2. Ensure you have a model endpoint available (commonly Azure OpenAI).\n3. Create or open an Azure AI Foundry project that supports Foundry Agent Service.\n4. Create an agent with clear instructions and a narrow scope.\n5. Test the agent in the portal and validate behavior.\n6. (Optional) Add grounding via Azure AI Search and validate citations\/grounding behavior.\n7. Clean up resources.<\/p>\n\n\n\n
                                                                                            \n\n\n\n
                                                                                            Step 1: Create a resource group<\/h3>\n\n\n\n
                                                                                            What you\u2019ll do<\/strong>: Create a dedicated resource group so cleanup is easy.<\/p>\n\n\n\n
                                                                                              \n
                                                                                            1. Open a terminal and sign in:<\/li>\n<\/ol>\n\n\n\n
                                                                                              az login\naz account show\n<\/code><\/pre>\n\n\n\n
                                                                                                \n
                                                                                              1. Set variables (edit location to a region that supports your services):<\/li>\n<\/ol>\n\n\n\n
                                                                                                RG=\"rg-foundry-agent-lab\"\nLOC=\"eastus\"   # change to a supported region\naz group create -n \"$RG\" -l \"$LOC\"\n<\/code><\/pre>\n\n\n\n
                                                                                                Expected outcome<\/strong>: Resource group created successfully.<\/p>\n\n\n\n
                                                                                                Verification<\/strong>:<\/p>\n\n\n\n
                                                                                                az group show -n \"$RG\" --query \"{name:name, location:location, provisioningState:properties.provisioningState}\"\n<\/code><\/pre>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 2: Ensure you have a supported model endpoint (commonly Azure OpenAI)<\/h3>\n\n\n\n
                                                                                                What you\u2019ll do<\/strong>: Confirm you have access to a deployed chat model that Foundry Agent Service can use.<\/p>\n\n\n\n
                                                                                                You have two common paths:<\/p>\n\n\n\n
                                                                                                Path A (existing Azure OpenAI resource)<\/h4>\n\n\n\n
                                                                                                  \n
                                                                                                • In Azure portal, find your Azure OpenAI<\/strong> resource.<\/li>\n
                                                                                                • Confirm you have at least one deployed chat model<\/strong> in a supported region.<\/li>\n<\/ul>\n\n\n\n
                                                                                                  Path B (create Azure OpenAI resource)<\/h4>\n\n\n\n
                                                                                                  Provisioning Azure OpenAI can require approval depending on your subscription. Follow the official docs:\nhttps:\/\/learn.microsoft.com\/azure\/ai-services\/openai\/how-to\/create-resource<\/p>\n\n\n\n
                                                                                                  Expected outcome<\/strong>: You have a model deployment ready to use.<\/p>\n\n\n\n
                                                                                                  Verification checklist<\/strong>:\n– You know the resource name<\/strong> and region<\/strong>\n– You can see at least one deployment<\/strong> for a chat model\n– You have permissions to use it<\/p>\n\n\n\n
                                                                                                  \n
                                                                                                  Model names and availability change frequently. Choose a generally available chat-capable model in your region and subscription and verify it works in a simple test in the Azure OpenAI playground (if applicable).<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                  \n\n\n\n
                                                                                                  Step 3: Create\/open an Azure AI Foundry project with Foundry Agent Service<\/h3>\n\n\n\n
                                                                                                  What you\u2019ll do<\/strong>: Use Azure AI Foundry to create a project that will hold your agent.<\/p>\n\n\n\n
                                                                                                    \n
                                                                                                  1. \n
                                                                                                    Open the Azure AI Foundry portal (commonly): https:\/\/ai.azure.com\/\n   If your tenant uses a different entry point, locate it via Azure portal or docs search:\n   https:\/\/learn.microsoft.com\/search\/?terms=Azure%20AI%20Foundry%20portal<\/p>\n<\/li>\n
                                                                                                  2. \n
                                                                                                    Create a new Project<\/strong> (or select an existing one dedicated to this lab).<\/p>\n<\/li>\n
                                                                                                  3. Confirm the project is in the same region (or a compatible region) as your model and any data services.<\/li>\n<\/ol>\n\n\n\n
                                                                                                    Expected outcome<\/strong>: You can access a project dashboard where you can create agents and manage connections.<\/p>\n\n\n\n
                                                                                                    Verification<\/strong>:\n– You can navigate to sections like Agents<\/strong>, Connections<\/strong>, or Models<\/strong> (names vary).\n– You can create new assets inside the project.<\/p>\n\n\n\n
                                                                                                    \n\n\n\n
                                                                                                    Step 4: Create a connection to your model provider (if required)<\/h3>\n\n\n\n
                                                                                                    What you\u2019ll do<\/strong>: Ensure the project can use your model deployment.<\/p>\n\n\n\n
                                                                                                    In the project:\n1. Go to Connections<\/strong> (or equivalent).\n2. Add a connection to your model provider resource (commonly Azure OpenAI).\n3. Select the specific deployment you want to use.<\/p>\n\n\n\n
                                                                                                    Expected outcome<\/strong>: Your project can reference the deployment when creating an agent.<\/p>\n\n\n\n
                                                                                                    Verification<\/strong>:\n– The connection shows as \u201cHealthy\/Connected\u201d (wording varies).\n– You can see the model deployment as selectable when configuring the agent.<\/p>\n\n\n\n
                                                                                                    \n
                                                                                                    If you don\u2019t see your deployment, it is usually due to region mismatch, missing permissions, or the deployment being in a different subscription. Fix those before proceeding.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                    \n\n\n\n
                                                                                                    Step 5: Create your first agent in Foundry Agent Service<\/h3>\n\n\n\n
                                                                                                    What you\u2019ll do<\/strong>: Create an agent with narrow scope and safe instructions.<\/p>\n\n\n\n
                                                                                                      \n
                                                                                                    1. Navigate to Agents<\/strong> (or equivalent).<\/li>\n
                                                                                                    2. Select Create agent<\/strong>.<\/li>\n
                                                                                                    3. \n
                                                                                                      Configure fields similar to:\n   – Name<\/strong>: policy-helper<\/code>\n   – Instructions<\/strong> (example\u2014keep it short and strict):<\/p>\n
                                                                                                        \n
                                                                                                      • Only answer questions about the \u201cContoso Travel Policy (Lab)\u201d.<\/li>\n
                                                                                                      • If you don\u2019t have enough information, ask a clarifying question.<\/li>\n
                                                                                                      • Do not invent policy rules.<\/li>\n
                                                                                                      • If asked for legal advice, respond that you are not a lawyer and recommend contacting the compliance team.<\/li>\n<\/ul>\n<\/li>\n
                                                                                                      • \n
                                                                                                        Choose your model deployment<\/strong> from the connection you created.<\/p>\n<\/li>\n
                                                                                                      • Save the agent.<\/li>\n<\/ol>\n\n\n\n
                                                                                                        Expected outcome<\/strong>: The agent is created and appears in your project.<\/p>\n\n\n\n
                                                                                                        Verification<\/strong>:\n– The agent details page shows the configured model and instructions.\n– You can open a test\/playground experience for the agent.<\/p>\n\n\n\n
                                                                                                        \n\n\n\n
                                                                                                        Step 6: Test the agent in the portal (baseline behavior)<\/h3>\n\n\n\n
                                                                                                        What you\u2019ll do<\/strong>: Validate that instructions are followed before adding data sources.<\/p>\n\n\n\n
                                                                                                        In the agent playground\/test UI:\n1. Ask a question the agent should refuse<\/strong> (because we haven\u2019t provided policy docs yet), for example:\n   \u201cWhat\u2019s the hotel reimbursement limit?\u201d<\/p>\n\n\n\n
                                                                                                          \n
                                                                                                        1. Ask a question outside scope:\n   \u201cWrite me a poem about space.\u201d<\/li>\n<\/ol>\n\n\n\n
                                                                                                          Expected outcome<\/strong>:\n– For policy-specific questions, the agent should ask for policy text or admit it lacks information (depending on how it\u2019s designed).\n– For out-of-scope questions, the agent should refuse or redirect based on your instructions.<\/p>\n\n\n\n
                                                                                                          Verification tip<\/strong>: If it confidently invents policy limits, tighten the instructions and retest.<\/p>\n\n\n\n
                                                                                                          \n\n\n\n
                                                                                                          Step 7 (Optional, recommended): Add grounding with Azure AI Search<\/h3>\n\n\n\n
                                                                                                          This step depends on whether your Foundry Agent Service experience supports adding a retrieval\/grounding source directly. If your UI supports it, do the following.<\/p>\n\n\n\n
                                                                                                          7A) Create Azure AI Search<\/h4>\n\n\n\n
                                                                                                            \n
                                                                                                          1. Create an Azure AI Search service in the same region (or a supported region):<\/li>\n<\/ol>\n\n\n\n
                                                                                                            Azure portal path:\n– Create a resource \u2192 Azure AI Search<\/strong><\/p>\n\n\n\n
                                                                                                            Docs:\nhttps:\/\/learn.microsoft.com\/azure\/search\/search-create-service-portal<\/p>\n\n\n\n
                                                                                                              \n
                                                                                                            1. Choose a cost-effective tier for a lab (verify tier availability and features).<\/li>\n<\/ol>\n\n\n\n
                                                                                                              Expected outcome<\/strong>: Search service created.<\/p>\n\n\n\n
                                                                                                              7B) Create an index and load a small policy document<\/h4>\n\n\n\n
                                                                                                              There are multiple ways (portal, REST API, SDK). The simplest for beginners is portal-based import, but it depends on supported data sources.<\/p>\n\n\n\n
                                                                                                              A minimal approach:\n– Create a small text document named contoso-travel-policy.txt<\/code> with a few bullet rules (no sensitive data).\n– Upload it into a storage account container.\n– Use supported ingestion\/indexing flow to create an index.<\/p>\n\n\n\n
                                                                                                              Docs entry point:\nhttps:\/\/learn.microsoft.com\/azure\/search\/search-what-is-azure-search<\/p>\n\n\n\n
                                                                                                              Expected outcome<\/strong>: You have an index containing your policy text.<\/p>\n\n\n\n
                                                                                                              7C) Connect the agent to the search index (grounding)<\/h4>\n\n\n\n
                                                                                                              In your agent configuration:\n1. Add a knowledge source \/ grounding data source<\/strong>.\n2. Select your Azure AI Search index via a connection.\n3. Configure retrieval parameters if exposed (topK, filters, etc.).<\/p>\n\n\n\n
                                                                                                              Expected outcome<\/strong>: The agent can answer policy questions using retrieved content.<\/p>\n\n\n\n
                                                                                                              Verification<\/strong>:\nAsk: \u201cWhat\u2019s the hotel reimbursement limit?\u201d\n– Expected: It answers using your uploaded policy text (and may show citations depending on UI\/support).<\/p>\n\n\n\n
                                                                                                              \n
                                                                                                              If citations are not shown, you can still validate grounding by changing the policy text and verifying the answer changes accordingly.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                              \n\n\n\n
                                                                                                              Step 8: Validate access and least privilege (quick check)<\/h3>\n\n\n\n
                                                                                                              What you\u2019ll do<\/strong>: Confirm only authorized users can access the project\/agent.<\/p>\n\n\n\n
                                                                                                                \n
                                                                                                              1. In Azure portal, review project\/resource IAM:\n   – Ensure only intended users\/groups have access.<\/li>\n
                                                                                                              2. If your organization requires it:\n   – Use a dedicated Entra ID group for AI project admins\n   – Separate \u201cagent developers\u201d from \u201cagent operators\u201d<\/li>\n<\/ol>\n\n\n\n
                                                                                                                Expected outcome<\/strong>: Access is restricted to your lab account\/team.<\/p>\n\n\n\n
                                                                                                                \n\n\n\n
                                                                                                                Validation<\/h3>\n\n\n\n
                                                                                                                Use this checklist:<\/p>\n\n\n\n
                                                                                                                \n\n\n\n\n\n\n\n
                                                                                                                Validation item<\/th>\nHow to verify<\/th>\nExpected result<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                Agent exists<\/td>\nAgent list in project<\/td>\npolicy-helper<\/code> visible<\/td>\n<\/tr>\n
                                                                                                                Baseline instruction following<\/td>\nAsk out-of-scope questions<\/td>\nRefusal\/redirect per instructions<\/td>\n<\/tr>\n
                                                                                                                Grounding works (optional)<\/td>\nAsk policy question answered by uploaded doc<\/td>\nAnswer matches doc; minimal hallucination<\/td>\n<\/tr>\n
                                                                                                                Permissions<\/td>\nTry from unauthorized account (if possible)<\/td>\nAccess denied<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                \n\n\n\n
                                                                                                                Troubleshooting<\/h3>\n\n\n\n
                                                                                                                Issue: \u201cI can\u2019t see Foundry Agent Service \/ Agents in the portal\u201d<\/h4>\n\n\n\n
                                                                                                                Common causes:\n– Feature not enabled in your tenant\/region\n– You are using a project type that doesn\u2019t support agents\n– Lack of permissions<\/p>\n\n\n\n
                                                                                                                Fix:\n– Verify availability and onboarding in docs search:\n  https:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20availability\n– Confirm you are Owner\/Contributor on the project\/resource group.<\/p>\n\n\n\n
                                                                                                                Issue: \u201cModel deployment not selectable\u201d<\/h4>\n\n\n\n
                                                                                                                Common causes:\n– Region mismatch\n– Missing permissions to the model resource\n– Unsupported model type for the agent runtime<\/p>\n\n\n\n
                                                                                                                Fix:\n– Ensure the model deployment is in a supported region and you have access.\n– Test the model in its own playground first (where applicable).<\/p>\n\n\n\n
                                                                                                                Issue: \u201cGrounding returns irrelevant snippets\u201d<\/h4>\n\n\n\n
                                                                                                                Fixes:\n– Improve chunking and indexing strategy\n– Add metadata filters\n– Reduce topK or adjust query strategy\n– Ensure the document text is clean and unambiguous<\/p>\n\n\n\n
                                                                                                                Issue: \u201cCosts are higher than expected\u201d<\/h4>\n\n\n\n
                                                                                                                Common causes:\n– Too many tool calls or retrieval steps per user message\n– Large conversation history included each time\n– Verbose logging to Log Analytics<\/p>\n\n\n\n
                                                                                                                Fix:\n– Limit tool calls, truncate\/summarize history, reduce logging volume, and set budgets\/alerts.<\/p>\n\n\n\n
                                                                                                                \n\n\n\n
                                                                                                                Cleanup<\/h3>\n\n\n\n
                                                                                                                To avoid ongoing charges, remove lab resources.<\/p>\n\n\n\n
                                                                                                                  \n
                                                                                                                1. If you created a dedicated resource group for everything, delete it:<\/li>\n<\/ol>\n\n\n\n
                                                                                                                  az group delete -n \"$RG\" --yes --no-wait\n<\/code><\/pre>\n\n\n\n
                                                                                                                    \n
                                                                                                                  1. If you used shared resources (existing Azure OpenAI), only remove:\n– The agent and project assets created for the lab\n– Optional Azure AI Search and storage resources created specifically for this lab<\/li>\n<\/ol>\n\n\n\n
                                                                                                                    Expected outcome<\/strong>: No billable lab resources remain.<\/p>\n\n\n\n
                                                                                                                    \n\n\n\n
                                                                                                                    11. Best Practices<\/h2>\n\n\n\n
                                                                                                                    Architecture best practices<\/h3>\n\n\n\n
                                                                                                                      \n
                                                                                                                    • Design for \u201cagent steps\u201d<\/strong>: Assume one user input may trigger multiple model calls, retrieval calls, and tool calls.<\/li>\n
                                                                                                                    • Separate concerns<\/strong>:<\/li>\n
                                                                                                                    • Agent: reasoning + orchestration<\/li>\n
                                                                                                                    • Tools: deterministic actions and data access<\/li>\n
                                                                                                                    • Retrieval: factual grounding<\/li>\n
                                                                                                                    • Fail safely<\/strong>: If a tool fails, return a safe error and ask the user for next steps rather than guessing.<\/li>\n
                                                                                                                    • Prefer structured outputs<\/strong> for tool calls and intermediate steps.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                      IAM\/security best practices<\/h3>\n\n\n\n
                                                                                                                        \n
                                                                                                                      • Use Microsoft Entra ID<\/strong> for human and workload identity where supported.<\/li>\n
                                                                                                                      • Use Managed Identity<\/strong> for tool compute to access Key Vault, Search, Storage, databases.<\/li>\n
                                                                                                                      • Apply least privilege<\/strong> to:<\/li>\n
                                                                                                                      • project access<\/li>\n
                                                                                                                      • model usage<\/li>\n
                                                                                                                      • search query permissions<\/li>\n
                                                                                                                      • tool endpoints and downstream APIs<\/li>\n
                                                                                                                      • Separate roles:<\/li>\n
                                                                                                                      • Agent developers (can edit instructions\/tools)<\/li>\n
                                                                                                                      • Operators (can view health\/metrics)<\/li>\n
                                                                                                                      • Security reviewers (can audit logs)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                        Cost best practices<\/h3>\n\n\n\n
                                                                                                                          \n
                                                                                                                        • Choose the smallest model that meets quality targets; route complex queries to larger models.<\/li>\n
                                                                                                                        • Implement:<\/li>\n
                                                                                                                        • token limits<\/li>\n
                                                                                                                        • max tool calls<\/li>\n
                                                                                                                        • timeouts and retries with jitter<\/li>\n
                                                                                                                        • Cache stable results (policy answers, product specs) where allowed.<\/li>\n
                                                                                                                        • Use budgets, alerts, and tagging for chargeback.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                          Performance best practices<\/h3>\n\n\n\n
                                                                                                                            \n
                                                                                                                          • Keep agent, model, retrieval, and tools in the same region.<\/li>\n
                                                                                                                          • Reduce token usage:<\/li>\n
                                                                                                                          • concise system instructions<\/li>\n
                                                                                                                          • summarize long threads<\/li>\n
                                                                                                                          • keep retrieved chunks small but meaningful<\/li>\n
                                                                                                                          • Tune retrieval:<\/li>\n
                                                                                                                          • relevant fields<\/li>\n
                                                                                                                          • filters<\/li>\n
                                                                                                                          • topK based on latency targets<\/li>\n<\/ul>\n\n\n\n
                                                                                                                            Reliability best practices<\/h3>\n\n\n\n
                                                                                                                              \n
                                                                                                                            • Build idempotent tools (safe to retry).<\/li>\n
                                                                                                                            • Implement circuit breakers for downstream systems.<\/li>\n
                                                                                                                            • Provide graceful degradation:<\/li>\n
                                                                                                                            • If retrieval fails, respond with \u201cI can\u2019t access the knowledge base right now.\u201d<\/li>\n
                                                                                                                            • If tool fails, offer manual steps or escalation.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                              Operations best practices<\/h3>\n\n\n\n
                                                                                                                                \n
                                                                                                                              • Track:<\/li>\n
                                                                                                                              • request rate<\/li>\n
                                                                                                                              • latency<\/li>\n
                                                                                                                              • tool error rate<\/li>\n
                                                                                                                              • retrieval latency<\/li>\n
                                                                                                                              • model throttling\/rate limiting<\/li>\n
                                                                                                                              • Add run correlation IDs across app logs and agent runs.<\/li>\n
                                                                                                                              • Establish incident playbooks for:<\/li>\n
                                                                                                                              • rate limit spikes<\/li>\n
                                                                                                                              • tool endpoint outages<\/li>\n
                                                                                                                              • search index failures<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                Governance\/tagging\/naming best practices<\/h3>\n\n\n\n
                                                                                                                                  \n
                                                                                                                                • Tag resources: app<\/code>, env<\/code>, owner<\/code>, costCenter<\/code>, dataClass<\/code><\/li>\n
                                                                                                                                • Naming conventions:<\/li>\n
                                                                                                                                • Resource group: rg-{app}-{env}-{region}<\/code><\/li>\n
                                                                                                                                • Agent: {app}-{purpose}-{env}<\/code><\/li>\n
                                                                                                                                • Promote configuration through environments using IaC when supported; avoid manual edits in production.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                  \n\n\n\n
                                                                                                                                  12. Security Considerations<\/h2>\n\n\n\n
                                                                                                                                  Identity and access model<\/h3>\n\n\n\n
                                                                                                                                    \n
                                                                                                                                  • Prefer Entra ID<\/strong> authentication and RBAC.<\/li>\n
                                                                                                                                  • Restrict who can:<\/li>\n
                                                                                                                                  • create\/update agents (prompt\/tool changes are effectively \u201ccode changes\u201d)<\/li>\n
                                                                                                                                  • create connections (these can unlock data\/model access)<\/li>\n
                                                                                                                                  • read logs (may contain sensitive content)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                    Encryption<\/h3>\n\n\n\n
                                                                                                                                      \n
                                                                                                                                    • Azure services encrypt data at rest by default in most cases; confirm for each connected service:<\/li>\n
                                                                                                                                    • Azure AI Search<\/li>\n
                                                                                                                                    • Storage accounts<\/li>\n
                                                                                                                                    • Log Analytics<\/li>\n
                                                                                                                                    • Any state stores used by agent workflows (if applicable)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                      Verify encryption and customer-managed key (CMK) options where needed:\nhttps:\/\/learn.microsoft.com\/azure\/security\/fundamentals\/encryption-overview<\/p>\n\n\n\n
                                                                                                                                      Network exposure<\/h3>\n\n\n\n
                                                                                                                                        \n
                                                                                                                                      • Start with public endpoints only if:<\/li>\n
                                                                                                                                      • strong auth is enforced (Entra ID)<\/li>\n
                                                                                                                                      • IP restrictions are applied at ingress layers (APIM, App Gateway) where appropriate<\/li>\n
                                                                                                                                      • For regulated environments:<\/li>\n
                                                                                                                                      • Evaluate Private Link\/VNet integration availability for Foundry Agent Service and dependencies (verify support)<\/li>\n
                                                                                                                                      • Keep data sources private where possible<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                        Secrets handling<\/h3>\n\n\n\n
                                                                                                                                          \n
                                                                                                                                        • Store secrets in Azure Key Vault<\/strong>.<\/li>\n
                                                                                                                                        • Avoid embedding keys in:<\/li>\n
                                                                                                                                        • agent instructions<\/li>\n
                                                                                                                                        • code repositories<\/li>\n
                                                                                                                                        • CI logs<\/li>\n
                                                                                                                                        • Use Managed Identity to fetch secrets at runtime.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                          Audit\/logging<\/h3>\n\n\n\n
                                                                                                                                            \n
                                                                                                                                          • Decide what to log:<\/li>\n
                                                                                                                                          • For debugging: sample prompts\/outputs in dev only<\/li>\n
                                                                                                                                          • For production: metadata + redacted content<\/li>\n
                                                                                                                                          • Restrict log access with RBAC.<\/li>\n
                                                                                                                                          • Implement retention policies and deletion workflows aligned with compliance.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                            Compliance considerations<\/h3>\n\n\n\n
                                                                                                                                              \n
                                                                                                                                            • Data classification: determine if prompts and outputs may contain PII\/PHI.<\/li>\n
                                                                                                                                            • Residency: ensure region selection meets your legal requirements.<\/li>\n
                                                                                                                                            • Vendor risk: document where data flows (model provider, retrieval store, tool endpoints).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                              Common security mistakes<\/h3>\n\n\n\n
                                                                                                                                                \n
                                                                                                                                              • Allowing the model to call tools that perform privileged actions without authorization checks<\/li>\n
                                                                                                                                              • Logging full prompts\/outputs containing PII to shared workspaces<\/li>\n
                                                                                                                                              • Using one shared API key across many apps\/teams<\/li>\n
                                                                                                                                              • Connecting agents directly to production databases without a read-only, audited API layer<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                Secure deployment recommendations<\/h3>\n\n\n\n
                                                                                                                                                  \n
                                                                                                                                                • Put tools behind an authenticated API layer (APIM, OAuth, mTLS if needed).<\/li>\n
                                                                                                                                                • Validate tool call parameters server-side.<\/li>\n
                                                                                                                                                • Use allowlists for tool actions (for example, read-only vs write).<\/li>\n
                                                                                                                                                • Add human approval for high-risk actions (refunds, account changes).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                  \n\n\n\n
                                                                                                                                                  13. Limitations and Gotchas<\/h2>\n\n\n\n
                                                                                                                                                  Because the service evolves, treat these as common gotchas and verify specifics in official docs.<\/p>\n\n\n\n
                                                                                                                                                  Known limitations (typical for managed agent services)<\/h3>\n\n\n\n
                                                                                                                                                    \n
                                                                                                                                                  • Region availability<\/strong>: may be limited to certain regions.<\/li>\n
                                                                                                                                                  • Feature gaps<\/strong>: some features may be preview-only or not available in sovereign clouds.<\/li>\n
                                                                                                                                                  • Networking<\/strong>: Private Link\/VNet support may be limited or require specific configuration.<\/li>\n
                                                                                                                                                  • Observability<\/strong>: full tracing of tool calls and retrieval steps may require additional setup.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                    Quotas<\/h3>\n\n\n\n
                                                                                                                                                      \n
                                                                                                                                                    • Model rate limits and token throughput limits often dominate.<\/li>\n
                                                                                                                                                    • Search service quotas apply if using retrieval.<\/li>\n
                                                                                                                                                    • Agent\/project limits may exist (number of agents, runs, threads)\u2014verify.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                      Regional constraints<\/h3>\n\n\n\n
                                                                                                                                                        \n
                                                                                                                                                      • Your agent runtime, model resource, and retrieval should be co-located when possible.<\/li>\n
                                                                                                                                                      • Some model deployments are only available in certain regions.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                        Pricing surprises<\/h3>\n\n\n\n
                                                                                                                                                          \n
                                                                                                                                                        • Agents can multiply costs by doing multiple calls per user message.<\/li>\n
                                                                                                                                                        • Retrieval + tool calls add costs beyond model tokens.<\/li>\n
                                                                                                                                                        • Logging and retention can become significant.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                          Compatibility issues<\/h3>\n\n\n\n
                                                                                                                                                            \n
                                                                                                                                                          • Some models may not support tool calling consistently.<\/li>\n
                                                                                                                                                          • Some tool schemas may cause unreliable tool selection if too complex.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                            Operational gotchas<\/h3>\n\n\n\n
                                                                                                                                                              \n
                                                                                                                                                            • Downstream tool failures can cause user-visible agent failures unless you handle errors gracefully.<\/li>\n
                                                                                                                                                            • Silent policy blocks (content safety) can appear as \u201cempty\u201d or refused outputs\u2014monitor for safety-trigger rates.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                              Migration challenges<\/h3>\n\n\n\n
                                                                                                                                                                \n
                                                                                                                                                              • If you started with an open-source agent framework, migrating to a managed service may require:<\/li>\n
                                                                                                                                                              • refactoring tool interfaces<\/li>\n
                                                                                                                                                              • changing how state is stored<\/li>\n
                                                                                                                                                              • adapting to platform evaluation\/monitoring tooling<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                Vendor-specific nuances<\/h3>\n\n\n\n
                                                                                                                                                                  \n
                                                                                                                                                                • Azure RBAC, Entra ID integration, and enterprise governance are strengths\u2014but they require careful role design and operational discipline.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                  \n\n\n\n
                                                                                                                                                                  14. Comparison with Alternatives<\/h2>\n\n\n\n
                                                                                                                                                                  Nearest services in Azure<\/h3>\n\n\n\n
                                                                                                                                                                    \n
                                                                                                                                                                  • Azure OpenAI (direct model endpoints)<\/strong>: best for simple chat\/completions without managed agent orchestration.<\/li>\n
                                                                                                                                                                  • Azure AI Search + custom RAG<\/strong>: best when you want full control over retrieval and prompting.<\/li>\n
                                                                                                                                                                  • Microsoft Copilot Studio<\/strong>: best for low-code business copilots with connectors and governance (different target audience).<\/li>\n
                                                                                                                                                                  • Azure Bot Service<\/strong>: best for traditional bot channel integration; you can still use agents\/models behind it.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                    Nearest services in other clouds<\/h3>\n\n\n\n
                                                                                                                                                                      \n
                                                                                                                                                                    • AWS Bedrock Agents<\/strong>: managed agent orchestration in AWS.<\/li>\n
                                                                                                                                                                    • Google Vertex AI Agent Builder<\/strong>: managed agent-building experience in Google Cloud.<\/li>\n
                                                                                                                                                                    • OpenAI Assistants API (non-Azure)<\/strong>: similar concepts, but different governance and Azure integration story.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                      Open-source \/ self-managed alternatives<\/h3>\n\n\n\n
                                                                                                                                                                        \n
                                                                                                                                                                      • Semantic Kernel<\/strong>, LangChain<\/strong>, LlamaIndex<\/strong>, AutoGen<\/strong>: flexible frameworks for building agents, but you operate orchestration, state, security integration, and monitoring yourself.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                        Comparison table<\/h4>\n\n\n\n
                                                                                                                                                                        \n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                        Option<\/th>\nBest For<\/th>\nStrengths<\/th>\nWeaknesses<\/th>\nWhen to Choose<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                        Foundry Agent Service (Azure)<\/td>\nEnterprise-grade agent apps with Azure governance<\/td>\nManaged agent lifecycle, Azure integration, project-based organization<\/td>\nAvailability and features may vary; platform constraints<\/td>\nWhen you want managed orchestration + Azure controls<\/td>\n<\/tr>\n
                                                                                                                                                                        Azure OpenAI (direct)<\/td>\nSimple chat, single-turn generation<\/td>\nSimpler architecture, fewer moving parts<\/td>\nYou build state + tools orchestration yourself<\/td>\nWhen you don\u2019t need a managed agent runtime<\/td>\n<\/tr>\n
                                                                                                                                                                        Custom RAG (Azure AI Search + app logic)<\/td>\nHighly customized retrieval and prompting<\/td>\nMaximum control, transparent retrieval pipeline<\/td>\nMore engineering, more ops<\/td>\nWhen you need bespoke retrieval logic and full control<\/td>\n<\/tr>\n
                                                                                                                                                                        Copilot Studio<\/td>\nBusiness users, low-code copilots<\/td>\nFast to build, connectors, governance<\/td>\nLess code-level control; different runtime model<\/td>\nWhen low-code is primary requirement<\/td>\n<\/tr>\n
                                                                                                                                                                        AWS Bedrock Agents<\/td>\nAWS-first organizations<\/td>\nManaged agents in AWS ecosystem<\/td>\nCross-cloud governance complexity<\/td>\nWhen your workloads and governance are AWS-centric<\/td>\n<\/tr>\n
                                                                                                                                                                        Vertex AI Agent Builder<\/td>\nGoogle Cloud-first organizations<\/td>\nIntegrated agent building in GCP<\/td>\nCross-cloud governance complexity<\/td>\nWhen your workloads and governance are GCP-centric<\/td>\n<\/tr>\n
                                                                                                                                                                        Semantic Kernel \/ LangChain (self-managed)<\/td>\nTeams needing portability and customization<\/td>\nFlexible, open ecosystem<\/td>\nYou own security, scale, state, monitoring<\/td>\nWhen you need maximum portability and control<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                        \n\n\n\n
                                                                                                                                                                        15. Real-World Example<\/h2>\n\n\n\n
                                                                                                                                                                        Enterprise example: Bank internal policy copilot with audited tool calls<\/h3>\n\n\n\n
                                                                                                                                                                          \n
                                                                                                                                                                        • Problem<\/strong>: Employees need accurate answers about policies (travel, procurement, security). Hallucinations and unauthorized data access are unacceptable.<\/li>\n
                                                                                                                                                                        • Proposed architecture<\/strong>:<\/li>\n
                                                                                                                                                                        • Foundry Agent Service hosts the policy agent<\/li>\n
                                                                                                                                                                        • Model connection to an approved enterprise model deployment<\/li>\n
                                                                                                                                                                        • Grounding via Azure AI Search indexing approved policy documents stored in a secured storage account<\/li>\n
                                                                                                                                                                        • Tools:
                                                                                                                                                                            \n
                                                                                                                                                                          • Read-only API to policy exception workflow status<\/li>\n
                                                                                                                                                                          • Ticket creation tool for compliance questions (human review)<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                          • Security:
                                                                                                                                                                              \n
                                                                                                                                                                            • Entra ID group-based access to the agent<\/li>\n
                                                                                                                                                                            • Managed Identity from tools to Key Vault and databases<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                            • Monitoring:
                                                                                                                                                                                \n
                                                                                                                                                                              • Azure Monitor dashboards for usage, failures, safety blocks<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                              • Why Foundry Agent Service was chosen<\/strong>:<\/li>\n
                                                                                                                                                                              • Managed state and tool orchestration reduces custom code<\/li>\n
                                                                                                                                                                              • Strong alignment with Azure IAM\/governance and enterprise monitoring<\/li>\n
                                                                                                                                                                              • Expected outcomes<\/strong>:<\/li>\n
                                                                                                                                                                              • Reduced compliance team load from repetitive questions<\/li>\n
                                                                                                                                                                              • Better accuracy due to grounding<\/li>\n
                                                                                                                                                                              • Auditable trail of tool calls and data access patterns<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                Startup\/small-team example: E-commerce support agent with order lookup<\/h3>\n\n\n\n
                                                                                                                                                                                  \n
                                                                                                                                                                                • Problem<\/strong>: A small support team can\u2019t handle growing ticket volume; they need automated order status responses and returns guidance.<\/li>\n
                                                                                                                                                                                • Proposed architecture<\/strong>:<\/li>\n
                                                                                                                                                                                • Foundry Agent Service for agent configuration and state<\/li>\n
                                                                                                                                                                                • Model connection to a cost-effective chat model deployment<\/li>\n
                                                                                                                                                                                • Tool: HTTPS function to query the order system (read-only), behind API Management<\/li>\n
                                                                                                                                                                                • Optional retrieval: index the FAQ and returns policy in Azure AI Search<\/li>\n
                                                                                                                                                                                • Basic monitoring and budget alerts<\/li>\n
                                                                                                                                                                                • Why Foundry Agent Service was chosen<\/strong>:<\/li>\n
                                                                                                                                                                                • Avoid building custom orchestration and state management<\/li>\n
                                                                                                                                                                                • Faster iteration on agent instructions and behavior<\/li>\n
                                                                                                                                                                                • Expected outcomes<\/strong>:<\/li>\n
                                                                                                                                                                                • Faster first response time<\/li>\n
                                                                                                                                                                                • Fewer repetitive tickets<\/li>\n
                                                                                                                                                                                • Controlled costs by limiting tool calls and using a smaller model<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                  \n\n\n\n
                                                                                                                                                                                  16. FAQ<\/h2>\n\n\n\n
                                                                                                                                                                                    \n
                                                                                                                                                                                  1. \n
                                                                                                                                                                                    Is Foundry Agent Service the same as calling a chat model directly?<\/strong>\n   No. Calling a model directly gives you text generation. Foundry Agent Service focuses on agent configuration, stateful interactions, and orchestrating tools\/grounding around model calls.<\/p>\n<\/li>\n
                                                                                                                                                                                  2. \n
                                                                                                                                                                                    Do I need Azure OpenAI to use Foundry Agent Service?<\/strong>\n   Often, a model provider is required, and Azure OpenAI is a common choice. Supported model providers depend on your Azure AI Foundry environment\u2014verify in official docs.<\/p>\n<\/li>\n
                                                                                                                                                                                  3. \n
                                                                                                                                                                                    Can I run agents privately (no public internet)?<\/strong>\n   It depends on whether Foundry Agent Service supports Private Link\/VNet integration in your region and SKU. Verify current networking features and design with APIM + private tools\/data sources.<\/p>\n<\/li>\n
                                                                                                                                                                                  4. \n
                                                                                                                                                                                    Where is conversation state stored?<\/strong>\n   Managed agent services typically store thread\/session state as part of the service. Retention and residency must be verified in the official documentation for compliance.<\/p>\n<\/li>\n
                                                                                                                                                                                  5. \n
                                                                                                                                                                                    Does it support grounding with my documents?<\/strong>\n   Many Azure agent patterns use Azure AI Search for retrieval\/grounding. Whether it\u2019s integrated directly in your Foundry Agent Service UI\/API depends on feature availability\u2014verify.<\/p>\n<\/li>\n
                                                                                                                                                                                  6. \n
                                                                                                                                                                                    How do I prevent hallucinations?<\/strong>\n   Use grounding with curated sources, constrain instructions, require citations, and design the agent to ask clarifying questions when data is missing.<\/p>\n<\/li>\n
                                                                                                                                                                                  7. \n
                                                                                                                                                                                    How do I keep the agent from performing dangerous actions?<\/strong>\n   Put privileged actions behind secured tools, validate requests server-side, enforce allowlists, and require human approval for high-risk steps.<\/p>\n<\/li>\n
                                                                                                                                                                                  8. \n
                                                                                                                                                                                    What is the biggest production risk?<\/strong>\n   Uncontrolled tool access (security) and unpredictable cost (multi-step runs) are two of the most common risks.<\/p>\n<\/li>\n
                                                                                                                                                                                  9. \n
                                                                                                                                                                                    How do I estimate cost?<\/strong>\n   Estimate model tokens per user message multiplied by the average number of model calls per run, then add retrieval queries and tool compute costs. Use Azure Pricing Calculator.<\/p>\n<\/li>\n
                                                                                                                                                                                  10. \n
                                                                                                                                                                                    Should I log prompts and outputs?<\/strong>\n   In production, avoid logging sensitive content unless necessary. If you must, redact PII, restrict access, and define retention policies.<\/p>\n<\/li>\n
                                                                                                                                                                                  11. \n
                                                                                                                                                                                    How do I do environment separation (dev\/test\/prod)?<\/strong>\n   Use separate Azure AI Foundry projects and separate model deployments and data connections per environment.<\/p>\n<\/li>\n
                                                                                                                                                                                  12. \n
                                                                                                                                                                                    Can multiple apps share one agent?<\/strong>\n   Yes, but it can complicate change management and access control. Many teams prefer per-app agents or strict versioning\/promotion processes.<\/p>\n<\/li>\n
                                                                                                                                                                                  13. \n
                                                                                                                                                                                    Does Foundry Agent Service execute my tools automatically?<\/strong>\n   Tool execution patterns differ: some platforms orchestrate tool calls but you still host the tool endpoint. Verify how tool invocation and authentication are implemented.<\/p>\n<\/li>\n
                                                                                                                                                                                  14. \n
                                                                                                                                                                                    What happens if my tool endpoint is down?<\/strong>\n   The agent run may fail or degrade. Implement retries, fallbacks, and clear user messaging, and monitor tool error rates.<\/p>\n<\/li>\n
                                                                                                                                                                                  15. \n
                                                                                                                                                                                    How do I roll out prompt\/tool changes safely?<\/strong>\n   Treat agent configuration as code: use approvals, staged rollouts, test suites, and monitoring for regressions.<\/p>\n<\/li>\n
                                                                                                                                                                                  16. \n
                                                                                                                                                                                    Can I use it for regulated data (PII\/PHI)?<\/strong>\n   Possibly, but only after validating data handling, residency, retention, and compliance controls for every connected service (model, retrieval, logs). Engage your compliance team early.<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    17. Top Online Resources to Learn Foundry Agent Service<\/h2>\n\n\n\n
                                                                                                                                                                                    Use the table below as a curated starting point. Because naming and URLs can evolve, the Microsoft Learn search links are included as stable entry points.<\/p>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                                    Resource Type<\/th>\nName<\/th>\nWhy It Is Useful<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                    Official documentation (search)<\/td>\nMicrosoft Learn search: Foundry Agent Service<\/td>\nFastest way to find the current overview, quickstarts, and API references: https:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20Azure<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official portal<\/td>\nAzure AI Foundry portal<\/td>\nWhere you create projects, connections, and agents (tenant-dependent): https:\/\/ai.azure.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official docs (Azure OpenAI)<\/td>\nAzure OpenAI documentation<\/td>\nModel deployments, auth, quotas, pricing considerations: https:\/\/learn.microsoft.com\/azure\/ai-services\/openai\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official pricing<\/td>\nAzure OpenAI pricing<\/td>\nModel token pricing (key input to agent cost): https:\/\/azure.microsoft.com\/pricing\/details\/cognitive-services\/openai-service\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official pricing<\/td>\nAzure AI Search pricing<\/td>\nRetrieval cost driver: https:\/\/azure.microsoft.com\/pricing\/details\/search\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Pricing tool<\/td>\nAzure Pricing Calculator<\/td>\nBuild a scenario-based estimate: https:\/\/azure.microsoft.com\/pricing\/calculator\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official docs (Search)<\/td>\nAzure AI Search documentation<\/td>\nIndexing, retrieval tuning, security: https:\/\/learn.microsoft.com\/azure\/search\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official docs (Identity)<\/td>\nMicrosoft Entra ID documentation<\/td>\nAuth and enterprise access control patterns: https:\/\/learn.microsoft.com\/entra\/identity\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official docs (Key Vault)<\/td>\nAzure Key Vault documentation<\/td>\nSecret management best practices: https:\/\/learn.microsoft.com\/azure\/key-vault\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official docs (Monitoring)<\/td>\nAzure Monitor documentation<\/td>\nLogging, metrics, alerts for production operations: https:\/\/learn.microsoft.com\/azure\/azure-monitor\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    18. Training and Certification Providers<\/h2>\n\n\n\n
                                                                                                                                                                                    The following providers may offer training relevant to Azure, AI + Machine Learning, and agentic solutions. Verify current syllabi and delivery modes on each website.<\/p>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n\n\n\n\n\n
                                                                                                                                                                                    Institute<\/th>\nSuitable Audience<\/th>\nLikely Learning Focus<\/th>\nMode<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                    DevOpsSchool.com<\/td>\nDevOps engineers, architects, developers<\/td>\nCloud DevOps, Azure fundamentals, deployment practices that support AI apps<\/td>\nCheck website<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    ScmGalaxy.com<\/td>\nBeginners to intermediate<\/td>\nSoftware configuration management, DevOps foundations useful for operating AI services<\/td>\nCheck website<\/td>\nhttps:\/\/www.scmgalaxy.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    CLoudOpsNow.in<\/td>\nCloud ops and platform teams<\/td>\nCloud operations practices, monitoring, reliability patterns<\/td>\nCheck website<\/td>\nhttps:\/\/www.cloudopsnow.in\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    SreSchool.com<\/td>\nSREs, ops leads, platform engineers<\/td>\nSRE practices, observability, incident response for production AI systems<\/td>\nCheck website<\/td>\nhttps:\/\/www.sreschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    AiOpsSchool.com<\/td>\nOps + AI practitioners<\/td>\nAIOps concepts, operating AI\/ML services with automation<\/td>\nCheck website<\/td>\nhttps:\/\/www.aiopsschool.com\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    19. Top Trainers<\/h2>\n\n\n\n
                                                                                                                                                                                    These sites are presented as training resources\/platforms. Verify current offerings directly.<\/p>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n\n\n\n\n
                                                                                                                                                                                    Platform\/Site<\/th>\nLikely Specialization<\/th>\nSuitable Audience<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                    RajeshKumar.xyz<\/td>\nDevOps\/cloud training content<\/td>\nBeginners to intermediate engineers<\/td>\nhttps:\/\/rajeshkumar.xyz\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    devopstrainer.in<\/td>\nDevOps tooling and practices<\/td>\nDevOps engineers and sysadmins<\/td>\nhttps:\/\/www.devopstrainer.in\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    devopsfreelancer.com<\/td>\nPractical DevOps consulting\/training content<\/td>\nTeams needing hands-on guidance<\/td>\nhttps:\/\/www.devopsfreelancer.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    devopssupport.in<\/td>\nDevOps support and training-style resources<\/td>\nOps teams and engineers<\/td>\nhttps:\/\/www.devopssupport.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    20. Top Consulting Companies<\/h2>\n\n\n\n
                                                                                                                                                                                    These companies may help with cloud architecture, DevOps enablement, and productionizing AI workloads. Validate scope, references, and contracts directly.<\/p>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n\n\n\n
                                                                                                                                                                                    Company<\/th>\nLikely Service Area<\/th>\nWhere They May Help<\/th>\nConsulting Use Case Examples<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                    cotocus.com<\/td>\nCloud\/DevOps consulting<\/td>\nArchitecture, migrations, automation<\/td>\nAzure landing zone setup, CI\/CD for AI apps, monitoring rollout<\/td>\nhttps:\/\/cotocus.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    DevOpsSchool.com<\/td>\nDevOps and cloud consulting\/training<\/td>\nPlatform enablement, engineering upskilling<\/td>\nOperating model for AI projects, DevSecOps pipelines, IaC standards<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    DEVOPSCONSULTING.IN<\/td>\nDevOps consulting<\/td>\nDelivery pipelines, reliability practices<\/td>\nSRE-aligned ops for AI services, cost controls, observability<\/td>\nhttps:\/\/www.devopsconsulting.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    21. Career and Learning Roadmap<\/h2>\n\n\n\n
                                                                                                                                                                                    What to learn before this service<\/h3>\n\n\n\n
                                                                                                                                                                                      \n
                                                                                                                                                                                    1. Azure fundamentals<\/strong>\n   – Resource groups, regions, RBAC, networking basics<\/li>\n
                                                                                                                                                                                    2. Identity and security<\/strong>\n   – Microsoft Entra ID, Managed Identity, Key Vault<\/li>\n
                                                                                                                                                                                    3. API fundamentals<\/strong>\n   – REST, auth, retry strategies, rate limits<\/li>\n
                                                                                                                                                                                    4. Basics of LLMs<\/strong>\n   – Tokens, context windows, temperature, system vs user prompts<\/li>\n
                                                                                                                                                                                    5. RAG fundamentals (optional but recommended)<\/strong>\n   – Embeddings, indexing, retrieval evaluation, chunking strategies<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                      What to learn after this service<\/h3>\n\n\n\n
                                                                                                                                                                                        \n
                                                                                                                                                                                      • Production RAG optimization and evaluation<\/li>\n
                                                                                                                                                                                      • Observability for AI systems (tracing, redaction, governance)<\/li>\n
                                                                                                                                                                                      • Advanced tool security: authorization, approvals, policy engines<\/li>\n
                                                                                                                                                                                      • CI\/CD for agent configuration (if supported): promotion, rollback, regression testing<\/li>\n
                                                                                                                                                                                      • Multi-agent patterns (only if supported and needed)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                        Job roles that use it<\/h3>\n\n\n\n
                                                                                                                                                                                          \n
                                                                                                                                                                                        • Cloud Solutions Architect (AI)<\/li>\n
                                                                                                                                                                                        • AI Engineer \/ Applied AI Engineer<\/li>\n
                                                                                                                                                                                        • Platform Engineer (AI enablement)<\/li>\n
                                                                                                                                                                                        • DevOps Engineer \/ SRE supporting AI services<\/li>\n
                                                                                                                                                                                        • Security Engineer (AI governance)<\/li>\n
                                                                                                                                                                                        • Backend Developer integrating agent endpoints<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                          Certification path (if available)<\/h3>\n\n\n\n
                                                                                                                                                                                          There may not be a Foundry Agent Service\u2013specific certification. Typical relevant Azure certifications to consider:\n– Azure fundamentals and architecture certifications\n– Azure AI-focused certifications (verify current Microsoft certification lineup)<\/p>\n\n\n\n
                                                                                                                                                                                          Start here:\nhttps:\/\/learn.microsoft.com\/credentials\/<\/p>\n\n\n\n
                                                                                                                                                                                          Project ideas for practice<\/h3>\n\n\n\n
                                                                                                                                                                                            \n
                                                                                                                                                                                          • Build an internal \u201cRunbook Agent\u201d grounded in Markdown runbooks with a safe escalation workflow<\/li>\n
                                                                                                                                                                                          • Create a \u201cCustomer Support Agent\u201d with read-only tools and strict authorization checks<\/li>\n
                                                                                                                                                                                          • Build evaluation harnesses: regression tests for 30 common queries and track answer quality over time<\/li>\n
                                                                                                                                                                                          • Implement cost dashboards: tokens\/user\/day, tool calls\/user\/day, retrieval queries\/user\/day<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                            \n\n\n\n
                                                                                                                                                                                            22. Glossary<\/h2>\n\n\n\n
                                                                                                                                                                                            \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                                            Term<\/th>\nDefinition<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                            Agent<\/td>\nAn AI-driven component configured with instructions, tools, and (optionally) knowledge sources to complete tasks.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Tool calling<\/td>\nA pattern where the model requests a structured call to an external function\/API, which your system executes.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Grounding<\/td>\nConstraining responses using retrieved enterprise data to reduce hallucinations.<\/td>\n<\/tr>\n
                                                                                                                                                                                            RAG (Retrieval-Augmented Generation)<\/td>\nArchitecture that retrieves relevant documents and supplies them to the model to improve accuracy.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Thread \/ Session<\/td>\nA stateful conversation container holding message history and execution context.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Run \/ Execution<\/td>\nA single cycle where the agent processes messages, calls tools, and returns an output.<\/td>\n<\/tr>\n
                                                                                                                                                                                            RBAC<\/td>\nRole-Based Access Control in Azure.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Managed Identity<\/td>\nAn Azure identity for workloads that allows access to resources without storing secrets.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Azure AI Search<\/td>\nAzure service for indexing and searching content, commonly used for RAG.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Azure Monitor \/ Application Insights<\/td>\nAzure observability services for metrics, logs, and distributed tracing.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Token<\/td>\nThe basic unit of text processed by many language models; used for billing and context limits.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Rate limit<\/td>\nService-enforced limit on requests\/tokens per time window.<\/td>\n<\/tr>\n
                                                                                                                                                                                            Least privilege<\/td>\nSecurity principle of granting only the minimum permissions required to perform a task.<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                            \n\n\n\n
                                                                                                                                                                                            23. Summary<\/h2>\n\n\n\n
                                                                                                                                                                                            Foundry Agent Service (Azure) is a managed way to build and operate AI agents\u2014systems that combine a foundation model with stateful conversation handling, tool usage, and (optionally) grounded enterprise knowledge. It matters because most production AI solutions require more than a model endpoint: they need secure integrations, reliable orchestration, governance, and observability.<\/p>\n\n\n\n
                                                                                                                                                                                            From a cost perspective, the biggest drivers are model tokens and the \u201cmultipliers\u201d introduced by agent steps (retrieval + tool calls + additional model calls), plus indirect costs like search, tool compute, and logging. From a security perspective, success depends on Entra ID\/RBAC, tight tool authorization, careful logging\/redaction, and disciplined environment separation.<\/p>\n\n\n\n
                                                                                                                                                                                            Use Foundry Agent Service when you want Azure-native agent orchestration with enterprise controls. If you only need simple text generation, call a model endpoint directly; if you need maximum orchestration control, consider a self-managed framework\u2014accepting the added operational burden.<\/p>\n\n\n\n
                                                                                                                                                                                            Next step: follow the official Microsoft Learn documentation trail for the exact Foundry Agent Service capabilities in your region and build a small grounded agent with one safe, read-only tool:\nhttps:\/\/learn.microsoft.com\/search\/?terms=Foundry%20Agent%20Service%20Azure<\/p>\n","protected":false},"excerpt":{"rendered":"
                                                                                                                                                                                            AI + Machine Learning<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,40],"tags":[],"class_list":["post-371","post","type-post","status-publish","format-standard","hentry","category-ai-machine-learning","category-azure"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/371","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/comments?post=371"}],"version-history":[{"count":0,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/371\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/media?parent=371"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/categories?post=371"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/tags?post=371"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}