![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 16%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVT%3C/text%3E%3C/svg%3E)
Azure OpenAI in Foundry Models
An Azure service that provides access to OpenAI’s GPT-3 models with enterprise capabilities.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
Hello @Vu Thanh Trung
Based on the currently available documentation for Azure AI Content Safety and Azure AI Foundry, there are some important distinctions between content filtering, abuse monitoring, and customer-accessible audit logging.
1. Can resource owners access Microsoft's abuse-monitoring data?
Microsoft documentation indicates that:
- Azure AI services do not store prompts and completions for the purpose of content filtering.
- For abuse monitoring, prompts and completions that are flagged may be preserved in secure, isolated storage within the customer's Azure geography for a limited retention period (for example, up to 60 days depending on the service and configuration).
However, the available documentation does not indicate that customers can access this internal abuse-monitoring store.
Based on the published guidance, there is currently no documented mechanism that allows resource owners to retrieve:
- Raw prompt text captured by Microsoft's abuse-monitoring systems
- Raw completions captured by Microsoft's abuse-monitoring systems
- Internal moderation review records
- Internal abuse-monitoring decisions
Therefore, we cannot confirm that any portion of Microsoft's internal abuse-monitoring data is exposed to customers through APIs, Azure Portal, Azure Monitor, Log Analytics, or other first-party interfaces.
2. Is there a first-party prompt-level audit log for blocked content?
Based on the available documentation, there does not appear to be a Microsoft-provided audit repository that exposes:
- Original prompt text
- Blocked completion text
- Harm category
- Severity level
- Detailed filter trigger information
as a customer-readable audit log.
In other words, there is currently no documented first-party feature that allows customers to retrieve historical blocked prompts and associated moderation details for compliance review.
3. What visibility is available today?
When content is filtered or blocked, Azure AI services can provide filter-related information as part of the API response.
Examples include:
-
finish_reason = content_filter -
content_filter_resultor similar filter metadata returned with the request
These response fields can provide insight into moderation outcomes and should be captured by your application if auditing is required.
However, the documentation does not guarantee that these response objects will serve as a long-term, customer-accessible audit repository.
4. Can Azure Monitor help?
Yes, to some extent.
Microsoft provides monitoring capabilities through:
- Azure Monitor
- Azure AI Foundry Risks & Safety Monitoring
- Diagnostic settings and monitoring dashboards
These tools can help organizations:
- Track content filtering activity
- Analyze filtering trends
- Monitor blocked requests
- Review moderation-related metrics
However, the available documentation does not state that these tools expose the complete raw prompt content and filter details required for compliance-grade prompt auditing.
5. What is the recommended approach for compliance auditing?
Based on the current documentation, the most reliable approach is to implement your own audit logging before requests reach the model.
This typically involves:
- Logging the prompt at the application layer
- Capturing API response metadata, including:
-
finish_reason-
content_filter_result- Request identifiers
- Timestamps
- Storing audit records in your own compliant logging solution
- Request identifiers
-
-
Many customers implement this through:
- Application-level logging
- Azure API Management
- Middleware services
- Custom compliance and governance pipelines
This ensures full control over:
- Prompt retention
- Audit access
- Compliance reporting
- Governance workflows
6. Is API Management the only supported solution?
The documentation does not state that Azure API Management is the only supported approach.
However, based on the currently documented capabilities:
- There is no documented Microsoft-managed audit store exposing blocked prompts.
- There is no documented API to retrieve Microsoft's internal abuse-monitoring records.
As a result, if you require:
- Raw prompt auditing
- Historical review of blocked content
- Compliance evidence
- Long-term retention of moderation outcomes
then customer-controlled logging whether through API Management, middleware, or application-level logging is the recommended and most reliable approach.
Please refer this
Content filter configurability (severity thresholds; prompts vs completions; approval notes) https://learn.microsoft.com/azure/ai-foundry/openai/concepts/content-filter-configurability
Use Risks & Safety monitoring in Azure AI Foundry (preview) https://learn.microsoft.com/azure/ai-foundry/openai/how-to/risks-safety-monitor
I Hope this helps. Do let me know if you have any further queries.
If this answers your query, please do click Accept Answer and Yes for was this answer helpful.
Thank you!