Azure 机器学习主权云平等性Azure Machine Learning sovereign cloud parity
了解主权云区域中可用的 Azure 机器学习功能。Learn what Azure Machine Learning features are available in sovereign cloud regions.
在全球 Azure 区域列表中,有多个为特定市场提供服务的“主权”区域。In the list of global Azure regions, there are several 'sovereign' regions that serve specific markets. 例如,Azure 政府和 Azure 中国世纪互联区域。For example, the Azure Government and the Azure China 21Vianet regions. 目前,Azure 机器学习部署到以下主权云区域中:Currently Azure Machine Learning is deployed into the following sovereign cloud regions:
- Azure 政府区域 美国-亚利桑那 和 美国-弗吉尼亚。Azure Government regions US-Arizona and US-Virginia.
- Azure 中国世纪互联区域 中国东部 2。Azure China 21Vianet region China-East-2.
提示
为了区分主权和非主权区域,本文将使用术语“公有云”来指代非主权区域。To differentiate between sovereign and non-sovereign regions, this article will use the term public cloud to refer to non-sovereign regions.
我们的目标是在公有云与主权区域之间提供最大的平等性。We aim to provide maximum parity between our public cloud and sovereign regions. 所有 Azure 机器学习功能在我们的公有云中正式发布后,将在 30 天内 在这些区域中提供。All Azure Machine Learning features will be available in these regions within 30 days of GA (general availability) in our public cloud. 我们还在这些区域中启用选定数量的预览功能。We also enable a select number of preview features in these regions. 下面显示了我们的主权云与公有云之间的当前平等性差异。Below display the current parity differences between our sovereign and public clouds.
Azure GovernmentAzure Government
| 功能Feature | 公有云状态Public cloud status | 美国-弗吉尼亚US-Virginia | 美国-亚利桑那US-Arizona |
|---|---|---|---|
| 自动化机器学习Automated machine learning | |||
| 在笔记本中创建和运行试验Create and run experiments in notebooks | GAGA | YESYES | YESYES |
| 在工作室 Web 体验中创建和运行试验Create and run experiments in studio web experience | 公共预览版Public Preview | YESYES | YESYES |
| 行业领先的预测功能Industry-leading forecasting capabilities | GAGA | YESYES | YESYES |
| 支持深度学习和其他高级学习器Support for deep learning and other advanced learners | GAGA | YESYES | YESYES |
| 大数据支持(最多 100 GB)Large data support (up to 100 GB) | 公共预览版Public Preview | YESYES | YESYES |
| Azure Databricks 集成Azure Databricks integration | GAGA | 是NO | 是NO |
| SQL、CosmosDB 和 HDInsight 集成SQL, CosmosDB, and HDInsight integrations | GAGA | YESYES | YESYES |
| 机器学习管道Machine Learning pipelines | |||
| 使用 Azure ML SDK 创建、运行和发布管道Create, run, and publish pipelines using the Azure ML SDK | GAGA | YESYES | YESYES |
| 使用 Azure ML SDK 创建管道终结点Create pipeline endpoints using the Azure ML SDK | GAGA | YESYES | YESYES |
| 使用 Azure ML SDK 创建、编辑和删除计划的管道运行Create, edit, and delete scheduled runs of pipelines using the Azure ML SDK | GAGA | 是*YES* | 是*YES* |
| 在工作室中查看管道运行详细信息View pipeline run details in studio | GAGA | YESYES | YESYES |
| 在 Azure ML 设计器中创建、运行、可视化和发布管道Create, run, visualize, and publish pipelines in Azure ML designer | GAGA | YESYES | YESYES |
| Azure Databricks 与 ML 管道的集成Azure Databricks Integration with ML Pipeline | GAGA | 是NO | 是NO |
| 在 Azure ML 设计器中创建管道终结点Create pipeline endpoints in Azure ML designer | GAGA | YESYES | YESYES |
| 集成式笔记本Integrated notebooks | |||
| 工作区笔记本和文件共享Workspace notebook and file sharing | GAGA | YESYES | YESYES |
| R 和 Python 支持R and Python support | GAGA | YESYES | YESYES |
| 虚拟网络支持Virtual Network support | 公共预览版Public Preview | 是NO | 是NO |
| 计算实例Compute instance | |||
| 集成式笔记本的托管计算实例Managed compute Instances for integrated Notebooks | GAGA | YESYES | YESYES |
| Jupyter、JupyterLab 集成Jupyter, JupyterLab Integration | GAGA | YESYES | YESYES |
| 虚拟网络 (VNet) 支持Virtual Network (VNet) support | 公共预览版Public Preview | YESYES | YESYES |
| SDK 支持SDK support | |||
| R SDK 支持R SDK support | 公共预览版Public Preview | YESYES | YESYES |
| Python SDK 支持Python SDK support | GAGA | YESYES | YESYES |
| 安全性Security | |||
| 虚拟网络 (VNet) 训练支持Virtual Network (VNet) support for training | GAGA | YESYES | YESYES |
| 虚拟网络 (VNet) 推理支持Virtual Network (VNet) support for inference | GAGA | YESYES | YESYES |
| 对终结点身份验证评分Scoring endpoint authentication | 公共预览版Public Preview | YESYES | YESYES |
| 工作区专用链接Workplace Private link | 公共预览版Public Preview | 是NO | 是NO |
| VNet 后的 ACIACI behind VNet | 公共预览版Public Preview | 是NO | 是NO |
| VNet 后的 ACRACR behind VNet | 公共预览版Public Preview | 是NO | 是NO |
| AKS 群集的专用 IPPrivate IP of AKS cluster | 公共预览版Public Preview | 是NO | 是NO |
| 计算Compute | |||
| 跨工作区配额管理quota management across workspaces | GAGA | YESYES | YESYES |
| 用于机器学习的数据Data for machine learning | |||
| 通过 SDK 创建、查看或编辑数据集和数据存储Create, view, or edit datasets and datastores from the SDK | GAGA | YESYES | YESYES |
| 通过 UI 创建、查看或编辑数据集和数据存储Create, view, or edit datasets and datastores from the UI | GAGA | YESYES | YESYES |
| 通过 SDK 查看、编辑或删除数据集偏移监视器View, edit, or delete dataset drift monitors from the SDK | 公共预览版Public Preview | YESYES | YESYES |
| 通过 UI 查看、编辑或删除数据集偏移监视器View, edit, or delete dataset drift monitors from the UI | 公共预览版Public Preview | YESYES | YESYES |
| 机器学习生命周期Machine learning lifecycle | |||
| 模型分析Model profiling | GAGA | YESYES | PARTIALPARTIAL |
| 适用于机器学习和 Azure ML CLI 的 Azure DevOps 扩展The Azure DevOps extension for Machine Learning & the Azure ML CLI | GAGA | YESYES | YESYES |
| 基于 FPGA 的硬件加速模型FPGA-based Hardware Accelerated Models | GAGA | 是NO | 是NO |
| Visual Studio Code 集成Visual Studio Code integration | 公共预览版Public Preview | 是NO | 是NO |
| 事件网格集成Event Grid integration | 公共预览版Public Preview | 是NO | 是NO |
| 将 Azure 流分析与 Azure 机器学习集成Integrate Azure Stream Analytics with Azure Machine Learning | 公共预览版Public Preview | 是NO | 是NO |
| 标记Labeling | |||
| 标记项目管理门户Labeling Project Management Portal | GAGA | YESYES | YESYES |
| 标记工具门户Labeler Portal | GAGA | YESYES | YESYES |
| 使用私人劳动力进行标记Labeling using private workforce | GAGA | YESYES | YESYES |
| ML 辅助标记(图像分类和对象检测)ML assisted labeling (Image classification and object detection) | 公共预览版Public Preview | YESYES | YESYES |
| 负责的 MLResponsible ML | |||
| UI 的可说明性Explainability in UI | 公共预览版Public Preview | 是NO | 是NO |
| 差异隐私 SmartNoise 工具包Differential privacy SmartNoise toolkit | OSSOSS | 是NO | 是NO |
| Azure 机器学习中用于实现数据表的自定义标记custom tags in Azure Machine Learning to implement datasheets | GAGA | 是NO | 是NO |
| 公平 AzureML 集成Fairness AzureML Integration | 公共预览版Public Preview | 是NO | 是NO |
| 可解释性 SDKInterpretability SDK | GAGA | YESYES | YESYES |
| 培训Training | |||
| 试验日志流式处理Experimentation log streaming | GAGA | YESYES | YESYES |
| 强化学习Reinforcement Learning | 公共预览版Public Preview | 是NO | 是NO |
| 试验 UIExperimentation UI | GAGA | YESYES | YESYES |
| .NET 集成 ML.NET 1.0.NET integration ML.NET 1.0 | GAGA | YESYES | YESYES |
| 推理Inference | |||
| 批处理推理Batch inferencing | GAGA | YESYES | YESYES |
| 带 FPGA 的 Data Box EdgeData Box Edge with FPGA | 公共预览版Public Preview | 是NO | 是NO |
| 其他Other | |||
| 开放数据集Open Datasets | 公共预览版Public Preview | YESYES | YESYES |
| 自定义认知搜索Custom Cognitive Search | 公共预览版Public Preview | YESYES | YESYES |
| 许多模型Many Models | 公共预览版Public Preview | 是NO | 是NO |
Azure 政府方案Azure Government scenarios
| 方案Scenario | 美国-弗吉尼亚US-Virginia | 美国-亚利桑那US-Arizona | 限制Limitations |
|---|---|---|---|
| 常规安全设置General security setup | |||
| 两个服务之间的专用网络通信Private network communication between services | 是NO | 是NO | 当前没有专用链接No Private Link currently |
| 禁用/控制 Internet 访问(入站和出站)和特定 VNetDisable/control internet access (inbound and outbound) and specific VNet | PARTIALPARTIAL | PARTIALPARTIAL | VNet 后的 ACR 在 Azure 政府版中不可用 - 请仔细检查 ACIACR behind VNet is not available in Azure Government - double checking on ACI |
| 所有关联资源/服务的放置Placement for all associated resources/services | YESYES | YESYES | |
| 静态加密和传输中加密。Encryption at-rest and in-transit. | YESYES | YESYES | |
| 对计算资源的 Root 和 SSH 访问。Root and SSH access to compute resources. | YESYES | YESYES | |
| 维护已部署系统(实例、终结点等)的安全性,包括终结点保护、修补和日志记录Maintain the security of deployed systems (instances, endpoints, etc.), including endpoint protection, patching, and logging | PARTIALPARTIAL | PARTIALPARTIAL | VNet 后的 ACI 和专用终结点当前不可用ACI behind VNet and private endpoint currently not available |
| 控制(禁用/限制/约束)ACI/AKS 集成的使用Control (disable/limit/restrict) the use of ACI/AKS integration | PARTIALPARTIAL | PARTIALPARTIAL | VNet 后的 ACI 和专用终结点当前不可用ACI behind VNet and private endpoint currently not available |
| Azure 基于角色的访问控制 (Azure RBAC) - 自定义角色创建Azure role-based access control (Azure RBAC) - Custom Role Creations | YESYES | YESYES | |
| 控制对 ML 服务使用的 ACR 映像的访问(Azure 提供/维护的与自定义的)Control access to ACR images used by ML Service (Azure provided/maintained versus custom) | PARTIALPARTIAL | PARTIALPARTIAL | Azure 政府版不支持专用终结点和 VNet 后的 ACRACR behind private endpoint and VNet not supported in Azure Government |
| 机器学习服务常规使用情况General Machine Learning Service Usage | |||
| 能够使用开发环境构建模型、训练该模型、将其作为终结点托管并通过 WebApp 使用它Ability to have a development environment to build a model, train that model, host it as an endpoint, and consume it via a webapp | YESYES | YESYES | |
| 能够从 ADLS (Data Lake Storage) 中拉取数据Ability to pull data from ADLS (Data Lake Storage) | YESYES | YESYES | |
| 能够从 Azure Blob 存储中拉取数据Ability to pull data from Azure Blob Storage | YESYES | YESYES |
Azure 政府版的其他限制Additional Azure Government limitations
对于 Azure 机器学习计算实例,Azure 政府版中未提供对持续时间超过 24 小时的令牌进行刷新的功能。For Azure Machine Learning compute instances, the ability to refresh a token lasting more than 24 hours is not available in Azure Government.
模型分析在美国-亚利桑那区域不支持 4 CPU。Model Profiling does not support 4 CPUs in the US-Arizona region.
示例笔记本在需要访问公共数据的情况下可能无法在 Azure 政府版中使用。Sample notebooks may not work in Azure Government if it needs access to public data.
IP 地址:VNet 和强制隧道指令中使用的 CLI 命令不返回 IP 范围。IP addresses: The CLI command used in the VNet and forced tunneling instructions does not return IP ranges. 请改用适用于 Azure 政府版的 Azure IP 范围和服务标记。Use the Azure IP ranges and service tags for Azure Government instead.
对于计划的管道,我们还提供了基于 blob 的触发器机制。For scheduled pipelines, we also provide a blob-based trigger mechanism. CMK 工作区不支持此机制。This mechanism is not supported for CMK workspaces. 若要为 CMK 工作区启用基于 blob 的触发器,必须进行其他设置。For enabling a blob-based trigger for CMK workspaces, you have to do additional setup. 有关详细信息,请参阅从逻辑应用触发机器学习管道的运行。For more information, see Trigger a run of a machine learning pipeline from a Logic App.
防火墙:使用 Azure 政府区域时,请将下述其他主机添加到防火墙设置:Firewalls: When using an Azure Government region, add the following additional hosts to your firewall setting:
- 对于亚利桑那,请使用
usgovarizona.api.ml.azure.usFor Arizona use:usgovarizona.api.ml.azure.us - 对于弗吉尼亚,请使用
usgovvirginia.api.ml.azure.usFor Virginia use:usgovvirginia.api.ml.azure.us - 对于两者,请使用
graph.windows.netFor both:graph.windows.net
- 对于亚利桑那,请使用
Azure 中国世纪互联Azure China 21Vianet
| 功能Feature | 公有云状态Public cloud status | CH-East-2CH-East-2 | CH-North-3CH-North-3 |
|---|---|---|---|
| 自动化机器学习Automated machine learning | |||
| 在笔记本中创建和运行试验Create and run experiments in notebooks | GAGA | YESYES | 空值N/A |
| 在工作室 Web 体验中创建和运行试验Create and run experiments in studio web experience | 公共预览版Public Preview | YESYES | 空值N/A |
| 行业领先的预测功能Industry-leading forecasting capabilities | GAGA | YESYES | 空值N/A |
| 支持深度学习和其他高级学习器Support for deep learning and other advanced learners | GAGA | YESYES | 空值N/A |
| 大数据支持(最多 100 GB)Large data support (up to 100 GB) | 公共预览版Public Preview | YESYES | 空值N/A |
| Azure Databricks 集成Azure Databricks Integration | GAGA | 是NO | 空值N/A |
| SQL、CosmosDB 和 HDInsight 集成SQL, CosmosDB, and HDInsight integrations | GAGA | YESYES | 空值N/A |
| 机器学习管道Machine Learning pipelines | |||
| 使用 Azure ML SDK 创建、运行和发布管道Create, run, and publish pipelines using the Azure ML SDK | GAGA | YESYES | 空值N/A |
| 使用 Azure ML SDK 创建管道终结点Create pipeline endpoints using the Azure ML SDK | GAGA | YESYES | 空值N/A |
| 使用 Azure ML SDK 创建、编辑和删除计划的管道运行Create, edit, and delete scheduled runs of pipelines using the Azure ML SDK | GAGA | YESYES | 空值N/A |
| 在工作室中查看管道运行详细信息View pipeline run details in studio | GAGA | YESYES | 空值N/A |
| 在 Azure ML 设计器中创建、运行、可视化和发布管道Create, run, visualize, and publish pipelines in Azure ML designer | GAGA | YESYES | 空值N/A |
| Azure Databricks 与 ML 管道的集成Azure Databricks Integration with ML Pipeline | GAGA | 是NO | 空值N/A |
| 在 Azure ML 设计器中创建管道终结点Create pipeline endpoints in Azure ML designer | GAGA | YESYES | 空值N/A |
| 集成式笔记本Integrated notebooks | |||
| 工作区笔记本和文件共享Workspace notebook and file sharing | GAGA | YESYES | 空值N/A |
| R 和 Python 支持R and Python support | GAGA | YESYES | 空值N/A |
| 虚拟网络支持Virtual Network support | 公共预览版Public Preview | 是NO | 空值N/A |
| 计算实例Compute instance | |||
| 集成式笔记本的托管计算实例Managed compute Instances for integrated Notebooks | GAGA | 是NO | 空值N/A |
| Jupyter、JupyterLab 集成Jupyter, JupyterLab Integration | GAGA | YESYES | 空值N/A |
| 虚拟网络 (VNet) 支持Virtual Network (VNet) support | 公共预览版Public Preview | YESYES | 空值N/A |
| SDK 支持SDK support | |||
| R SDK 支持R SDK support | 公共预览版Public Preview | YESYES | 空值N/A |
| Python SDK 支持Python SDK support | GAGA | YESYES | 空值N/A |
| 安全性Security | |||
| 虚拟网络 (VNet) 训练支持Virtual Network (VNet) support for training | GAGA | YESYES | 空值N/A |
| 虚拟网络 (VNet) 推理支持Virtual Network (VNet) support for inference | GAGA | YESYES | 空值N/A |
| 对终结点身份验证评分Scoring endpoint authentication | 公共预览版Public Preview | YESYES | 空值N/A |
| 工作区专用链接Workplace Private link | 公共预览版Public Preview | 是NO | 空值N/A |
| VNet 后的 ACIACI behind VNet | 公共预览版Public Preview | 是NO | 空值N/A |
| VNet 后的 ACRACR behind VNet | 公共预览版Public Preview | 是NO | 空值N/A |
| AKS 群集的专用 IPPrivate IP of AKS cluster | 公共预览版Public Preview | 是NO | 空值N/A |
| 计算Compute | |||
| 跨工作区配额管理quota management across workspaces | GAGA | YESYES | 空值N/A |
| 用于机器学习的数据Data for machine learning | |||
| 通过 SDK 创建、查看或编辑数据集和数据存储Create, view, or edit datasets and datastores from the SDK | GAGA | YESYES | 空值N/A |
| 通过 UI 创建、查看或编辑数据集和数据存储Create, view, or edit datasets and datastores from the UI | GAGA | YESYES | 空值N/A |
| 通过 SDK 查看、编辑或删除数据集偏移监视器View, edit, or delete dataset drift monitors from the SDK | 公共预览版Public Preview | YESYES | 空值N/A |
| 通过 UI 查看、编辑或删除数据集偏移监视器View, edit, or delete dataset drift monitors from the UI | 公共预览版Public Preview | YESYES | 空值N/A |
| 机器学习生命周期Machine learning lifecycle | |||
| 模型分析Model profiling | GAGA | PARTIALPARTIAL | 空值N/A |
| 适用于机器学习和 Azure ML CLI 的 Azure DevOps 扩展The Azure DevOps extension for Machine Learning & the Azure ML CLI | GAGA | YESYES | 空值N/A |
| 基于 FPGA 的硬件加速模型FPGA-based Hardware Accelerated Models | GAGA | 是NO | 空值N/A |
| Visual Studio Code 集成Visual Studio Code integration | 公共预览版Public Preview | 是NO | 空值N/A |
| 事件网格集成Event Grid integration | 公共预览版Public Preview | YESYES | 空值N/A |
| 将 Azure 流分析与 Azure 机器学习集成Integrate Azure Stream Analytics with Azure Machine Learning | 公共预览版Public Preview | 是NO | 空值N/A |
| 标记Labeling | |||
| 标记项目管理门户Labeling Project Management Portal | GAGA | YESYES | 空值N/A |
| 标记工具门户Labeler Portal | GAGA | YESYES | 空值N/A |
| 使用私人劳动力进行标记Labeling using private workforce | GAGA | YESYES | 空值N/A |
| ML 辅助标记(图像分类和对象检测)ML assisted labeling (Image classification and object detection) | 公共预览版Public Preview | YESYES | 空值N/A |
| 负责的 MLResponsible ML | |||
| UI 的可说明性Explainability in UI | 公共预览版Public Preview | 是NO | 空值N/A |
| 差异隐私 SmartNoise 工具包Differential privacy SmartNoise toolkit | OSSOSS | 是NO | 空值N/A |
| Azure 机器学习中用于实现数据表的自定义标记custom tags in Azure Machine Learning to implement datasheets | GAGA | 是NO | 空值N/A |
| 公平 AzureML 集成Fairness AzureML Integration | 公共预览版Public Preview | 是NO | 空值N/A |
| 可解释性 SDKInterpretability SDK | GAGA | YESYES | 空值N/A |
| 培训Training | |||
| 试验日志流式处理Experimentation log streaming | GAGA | YESYES | 空值N/A |
| 强化学习Reinforcement Learning | 公共预览版Public Preview | 是NO | 空值N/A |
| 试验 UIExperimentation UI | GAGA | YESYES | 空值N/A |
| .NET 集成 ML.NET 1.0.NET integration ML.NET 1.0 | GAGA | YESYES | 空值N/A |
| 推理Inference | |||
| 批处理推理Batch inferencing | GAGA | YESYES | 空值N/A |
| 带 FPGA 的 Data Box EdgeData Box Edge with FPGA | 公共预览版Public Preview | 是NO | 空值N/A |
| 其他Other | |||
| 开放数据集Open Datasets | 公共预览版Public Preview | YESYES | 空值N/A |
| 自定义认知搜索Custom Cognitive Search | 公共预览版Public Preview | YESYES | 空值N/A |
| 许多模型Many Models | 公共预览版Public Preview | 是NO | 空值N/A |
Azure 中国的其他限制Additional Azure China limitations
Azure 中国具有有限的 VM SKU(特别是对于 GPU SKU 而言)。Azure China has limited VM SKU, especially for GPU SKU. 它仅包含 NCv3 系列 (V100)。It only has NCv3 family (V100).
REST API 终结点不同于全局 Azure。REST API Endpoints are different from global Azure. 请使用下表查找 Azure 中国区域的 REST API 终结点:Use the following table to find the REST API endpoint for Azure China regions:
REST 终结点REST endpoint 全球 AzureGlobal Azure 中国-政府China-Government 管理平面Management plane https://management.chinacloudapi.cn/https://management.chinacloudapi.cn/数据平面Data plane https://{location}.experiments.ml.azure.cnhttps://{location}.experiments.ml.azure.cnAzure Active DirectoryAzure Active Directory https://login.chinacloudapi.cnhttps://login.chinacloudapi.cn示例笔记本在需要访问公共数据的情况下可能无法使用。Sample notebook may not work, if it needs access to public data.
IP 地址范围:VNet 强制隧道指令中使用的 CLI 命令不返回 IP 范围。IP address ranges: The CLI command used in the VNet forced tunneling instructions does not return IP ranges. 请改用适用于 Azure 中国版的 Azure IP 范围和服务标记。Use the Azure IP ranges and service tags for Azure China instead.
目前,启用了专用链接的工作区中不支持 Azure 机器学习计算实例 (CI) 预览版,但在下一次将服务扩展部署到所有 AML 区域时,会支持 CI。Azure Machine Learning compute instances preview is not supported in a workspace where Private Link is enabled for now, but CI will be supported in the next deployment for the service expansion to all AML regions.
后续步骤Next steps
若要详细了解提供 Azure 机器学习的区域,请参阅各区域的产品。To learn more about the regions that Azure Machine learning is available in, see Products by region.