| title | titleSuffix | description | services | ms.service | ms.subservice | ms.author | ms.reviewer | author | ms.date | ms.topic | ms.custom |
|---|---|---|---|---|---|---|---|---|---|---|---|
Safe rollout for online endpoints |
Azure Machine Learning |
Roll out newer versions of ML models without disruption. |
machine-learning |
machine-learning |
mlops |
seramasu |
larryfr |
rsethur |
04/29/2022 |
how-to |
how-to, devplatv2, cliv2, event-tier1-build-2022 |
[!INCLUDE cli v2]
You've an existing model deployed in production and you want to deploy a new version of the model. How do you roll out your new ML model without causing any disruption? A good answer is blue-green deployment, an approach in which a new version of a web service is introduced to production by rolling out the change to a small subset of users/requests before rolling it out completely. This article assumes you're using online endpoints; for more information, see What are Azure Machine Learning endpoints?.
In this article, you'll learn to:
[!div class="checklist"]
- Deploy a new online endpoint called "blue" that serves version 1 of the model
- Scale this deployment so that it can handle more requests
- Deploy version 2 of the model to an endpoint called "green" that accepts no live traffic
- Test the green deployment in isolation
- Send 10% of live traffic to the green deployment
- Fully cut-over all live traffic to the green deployment
- Delete the now-unused v1 blue deployment
-
To use Azure machine learning, you must have an Azure subscription. If you don't have an Azure subscription, create a free account before you begin. Try the free or paid version of Azure Machine Learning today.
-
You must install and configure the Azure CLI and ML extension. For more information, see Install, set up, and use the CLI (v2).
-
You must have an Azure Resource group, in which you (or the service principal you use) need to have
Contributoraccess. You'll have such a resource group if you configured your ML extension per the above article. -
You must have an Azure Machine Learning workspace. You'll have such a workspace if you configured your ML extension per the above article.
-
If you've not already set the defaults for Azure CLI, you should save your default settings. To avoid having to repeatedly pass in the values, run:
az account set --subscription <subscription id> az configure --defaults workspace=<azureml workspace name> group=<resource group> -
An existing online endpoint and deployment. This article assumes that your deployment is as described in Deploy and score a machine learning model with an online endpoint.
-
If you haven't already set the environment variable $ENDPOINT_NAME, do so now:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="set_endpoint_name":::
-
(Recommended) Clone the samples repository and switch to the repository's
cli/directory:git clone https://github.com/Azure/azureml-examples cd azureml-examples/cli
The commands in this tutorial are in the file deploy-safe-rollout-online-endpoints.sh and the YAML configuration files are in the endpoints/online/managed/sample/ subdirectory.
You can view the status of your existing endpoint and deployment by running:
az ml online-endpoint show --name $ENDPOINT_NAME
az ml online-deployment show --name blue --endpoint $ENDPOINT_NAME
You should see the endpoint identified by $ENDPOINT_NAME and, a deployment called blue.
In the deployment described in Deploy and score a machine learning model with an online endpoint, you set the instance_count to the value 1 in the deployment yaml file. You can scale out using the update command:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="scale_blue" :::
Note
Notice that in the above command we use --set to override the deployment configuration. Alternatively you can update the yaml file and pass it as an input to the update command using the --file input.
Create a new deployment named green:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="create_green" :::
Since we haven't explicitly allocated any traffic to green, it will have zero traffic allocated to it. You can verify that using the command:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="get_traffic" :::
Though green has 0% of traffic allocated, you can invoke it directly by specifying the --deployment name:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="test_green" :::
If you want to use a REST client to invoke the deployment directly without going through traffic rules, set the following HTTP header: azureml-model-deployment: <deployment-name>. The below code snippet uses curl to invoke the deployment directly. The code snippet should work in Unix/WSL environments:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="test_green_using_curl" :::
[!INCLUDE preview disclaimer]
Once you've tested your green deployment, you can copy (or 'mirror') a percentage of the live traffic to it. Mirroring traffic doesn't change results returned to clients. Requests still flow 100% to the blue deployment. The mirrored percentage of the traffic is copied and submitted to the green deployment so you can gather metrics and logging without impacting your clients. Mirroring is useful when you want to validate a new deployment without impacting clients. For example, to check if latency is within acceptable bounds and that there are no HTTP errors.
Warning
Mirroring traffic uses your endpoint bandwidth quota (default 5 MBPS). Your endpoint bandwidth will be throttled if you exceed the allocated quota. For information on monitoring bandwidth throttling, see Monitor managed online endpoints.
The following command mirrors 10% of the traffic to the green deployment:
az ml online-endpoint update --name $ENDPOINT_NAME --mirror-traffic "green=10"
Important
Mirroring has the following limitations:
- You can only mirror traffic to one deployment.
- A deployment can only be set to live or mirror traffic, not both.
- Mirrored traffic is not currently supported with K8s.
- The maximum mirrored traffic you can configure is 50%. This limit is to reduce the impact on your endpoint bandwidth quota.
:::image type="content" source="./media/how-to-safely-rollout-managed-endpoints/endpoint-concept-mirror.png" alt-text="Diagram showing 10% traffic mirrored to one deployment.":::
After testing, you can set the mirror traffic to zero to disable mirroring:
az ml online-endpoint update --name $ENDPOINT_NAME --mirror-traffic "green=0"
Once you've tested your green deployment, allocate a small percentage of traffic to it:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="green_10pct_traffic" :::
Now, your green deployment will receive 10% of requests.
:::image type="content" source="./media/how-to-safely-rollout-managed-endpoints/endpoint-concept.png" alt-text="Diagram showing traffic split between deployments.":::
Once you're satisfied that your green deployment is fully satisfactory, switch all traffic to it.
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="green_100pct_traffic" :::
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="delete_blue" :::
If you aren't going use the deployment, you should delete it with:
:::code language="azurecli" source="~/azureml-examples-main/cli/deploy-safe-rollout-online-endpoints.sh" ID="delete_endpoint" :::
- Deploy models with REST
- Create and use online endpoints in the studio
- Access Azure resources with a online endpoint and managed identity
- Monitor managed online endpoints
- Manage and increase quotas for resources with Azure Machine Learning
- View costs for an Azure Machine Learning managed online endpoint
- Managed online endpoints SKU list
- Troubleshooting online endpoints deployment and scoring
- Online endpoint YAML reference