Add documentation for Actions: Private networking with Azure VNET (github#39075)

Co-authored-by: github-actions <[email protected]>
Co-authored-by: Kevin Heis <[email protected]>
Co-authored-by: Siara <[email protected]>

Author: 4 people

assets/images/enterprise/settings/private-networking-settings-add-network.png

@@ -7,7 +7,7 @@ versions:
   feature: actions-hosted-runners
 type: tutorial
 ---
- 
+
 {% data reusables.actions.enterprise-github-hosted-runners %}
 
 ## About runner groups
@@ -79,6 +79,16 @@ For runner groups in an organization, you can change what repositories in the or
 - [Changing which workflows can access an organization runner group](#changing-which-workflows-can-access-an-organization-runner-group)
 - [Changing which workflows can access an enterprise runner group](#changing-which-workflows-can-access-an-enterprise-runner-group)
 
+{% ifversion actions-private-networking-azure-vnet %}
+
+## Configuring private network access for larger runners
+
+{% data reusables.actions.azure-vnet-injected-runners-intro %}
+
+If you have configured your enterprise to connect to an Azure VNET, you can give runner groups access to the virtual network. For more information, see "[AUTOTITLE](/actions/using-github-hosted-runners/connecting-to-a-private-network#using-an-azure-virtual-network-vnet)."
+
+{% endif %}
+
 ### Changing which workflows can access an organization runner group
 
 {% data reusables.actions.runner-groups-org-navigation %}

content/actions/using-github-hosted-runners/connecting-to-a-private-network.md

@@ -19,7 +19,7 @@ Enterprise owners can add {% data variables.actions.hosted_runner %}s to an ente
 {% data reusables.enterprise-accounts.actions-tab %}
 {% data reusables.enterprise-accounts.actions-runners-tab %}
 {% data reusables.actions.add-hosted-runner %}
-1. To allow organizations to access your {% data variables.actions.hosted_runner %}s, specify the list of organizations that can use it. For more information, see "[Managing access to your runners](#managing-access-to-your-runners)."
+{% data reusables.actions.org-access-to-github-hosted-runners %}
 
 {% endif %}
 
@@ -37,7 +37,7 @@ You can add a {% data variables.actions.hosted_runner %} to an organization, whe
 
 ## Allowing repositories to access {% data variables.actions.hosted_runner %}s
 
-Repositories are granted access to {% data variables.actions.hosted_runner %}s through runner groups. Enterprise administrators can choose which organizations are granted access to enterprise-level runner groups, and organization administrators control repository-level access to all {% data variables.actions.hosted_runner %}s. Organization administrators can use and configure enterprise-level runner groups for the repositories in their organization, or they can create organization-level runner groups to control access. 
+Repositories are granted access to {% data variables.actions.hosted_runner %}s through runner groups. Enterprise administrators can choose which organizations are granted access to enterprise-level runner groups, and organization administrators control repository-level access to all {% data variables.actions.hosted_runner %}s. Organization administrators can use and configure enterprise-level runner groups for the repositories in their organization, or they can create organization-level runner groups to control access.
 
 - **For enterprise-level runner groups**: {% data reusables.actions.about-enterprise-level-runner-groups %}
 - **For organization-level runner groups**: {% data reusables.actions.about-organization-level-runner-groups %}

content/actions/using-github-hosted-runners/controlling-access-to-larger-runners.md

@@ -0,0 +1,4 @@
+# Reference: #9954
+# Documentation for larger-hosted runners with Azure Vnet injection public beta
+versions:
+  ghec: '*'

content/actions/using-github-hosted-runners/managing-larger-runners.md

@@ -0,0 +1 @@
+If you are using Azure and {% data variables.product.prodname_ghe_cloud %}, you can create {% data variables.product.company_short %}-hosted runners in your Azure Virtual Network(s) (VNET). This enables you to take advantage of {% data variables.product.company_short %}-managed infrastructure for your CI/CD while providing you with full control over the networking policies of your runners. For more information about Azure VNET, see [What is Azure Virtual Network?](https://learn.microsoft.com/en-us/azure/virtual-network/virtual-networks-overview) in the Azure documentation.

data/features/actions-private-networking-azure-vnet.yml

@@ -14,6 +14,6 @@ If no group is specified during the registration process, runners are automatica
 When creating a group, you must choose a policy that defines which organizations have access to the runner group.
 
 {% data reusables.actions.runner-groups-add-to-enterprise-first-steps %}
-1. To choose a policy for organization access, select the **Organization access** dropdown menu and click a policy. You can configure a runner group to be accessible to a specific list of organizations, or all organizations in the enterprise.{% ifversion ghes %} By default, only private repositories can access runners in a runner group, but you can override this.{% endif %}
+{% data reusables.actions.workflows.runner-groups-enterprise-organization-access %}
 {% data reusables.actions.runner-group-assign-policy-workflow %}
 1. Click **Save group** to create the group and apply the policy.

data/reusables/actions/azure-vnet-injected-runners-intro.md

@@ -0,0 +1 @@
+Using {% data variables.product.company_short %}-hosted larger runners with an Azure Virtual Network (VNET) is in beta and subject to change.

data/reusables/actions/creating-a-runner-group-for-an-enterprise.md

@@ -0,0 +1 @@
+1. To allow organizations to access your {% data variables.actions.hosted_runner %}s, specify the list of organizations that can use it. For more information, see "[Managing access to your runners](#managing-access-to-your-runners)."

data/reusables/actions/github-hosted-larger-runners-azure-vnet-beta.md

@@ -0,0 +1 @@
+1. To choose a policy for organization access, select the **Organization access** dropdown menu and click a policy. You can configure a runner group to be accessible to a specific list of organizations, or all organizations in the enterprise.{% ifversion ghes %} By default, only private repositories can access runners in a runner group, but you can override this.{% endif %}