Ensure that “Allow trusted Microsoft services to access this container registry” feature is enabled for Azure Container registries.
Enabling network firewall rules for container registry will block access to incoming requests for data, including from other Azure services. To allow certain Azure cloud services access your vault resources, add an exception so that the trusted cloud services can bypass the firewall rules.
Ensure that Azure Container registry network firewall configuration allows trusted Microsoft services to bypass the firewall.