![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 33%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Azure OpenAI Service
An Azure service that provides access to OpenAI’s GPT-3 models with enterprise capabilities.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
Hello RONY SANTIAGO BANOL RICO,
Welcome to Microsoft Q&A.
Thank you for providing the details and screenshots. I understand that you’ve configured your Azure AI Foundry service to allow access only via private endpoints, but you’re still seeing the public API endpoint returning a 404 response when accessed from the internet.
This behavior is expected and does not indicate that your resource is publicly accessible. Even when public network access is disabled, the DNS record for the endpoint may still resolve, but the service itself will reject any incoming requests from unauthorized networks. The 404 (“Resource not found”) response simply confirms that the endpoint exists at the DNS level but is not serving any content publicly meaning the resource is secure and inaccessible over the internet.
To ensure that your configuration is set up correctly, please review the following:
Verify that your private endpoints are correctly configured and linked to your Azure AI Foundry service and the desired virtual network.
Network Configuration –
- Go to your Azure resource → Networking.
- Confirm that public network access is disabled.
- Ensure that private endpoint connections are active and approved.
Firewall Settings –
- Navigate to Resource Management → Networking → Firewalls and virtual networks.
- Make sure access is restricted only to specific IP ranges or VNets as required.
Check if there are any overriding network or service endpoint policies that might unintentionally allow external access. Adjust these to ensure full privacy.
Double-check that all public access options are turned off under the Networking section of your resource to prevent any unintended exposure.
- Run a test using
curl -vor a browser from an external network; you should see a 404 or blocked connection, which indicates no public access. - Access the service internally via your private endpoint to confirm that it works as expected.
If you have already verified all these configurations and are still observing the same behavior, you can try removing and re-adding the private endpoints following the steps in the this documentation on configuring a private link for Azure AI Foundry.
The 404 response you’re seeing is expected and secure behavior it confirms that your service is not publicly accessible. The DNS record remains visible only for Azure routing consistency and doesn’t expose your resource in any way.
Also please refer this How to configure a private link for Azure AI Foundry
- AI Foundry Virtual Managed Network Private Endpoint Issue
- Azure AI Foundry: REST API reference
- Endpoints for Azure AI Foundry Models
I Hope this helps. Do let me know if you have any further queries.
Thank you!