Update Project Visibility in Azure DevOps
A Project can be either a private or public project in Azure DevOps. Since Azure DevOps is mostly used by enterprise organization, the best security practice is to change the project visibility to all...
Category: AzureDevOps Admin
Find Organization Name/Owner in Azure DevOps
Organization name is name of the Azure DevOps Organization which can be easily found from the url of an Azure DevOps organization, if the Organization has a url like https://dev.azure.com/TestDevSecOps, then the organization name...
Secrets Scanning in Azure DevOps Repositories
Sometimes Developers might be checking in secrets like passwords, usernames, API keys, client secrets, service principal and passwords into repositories. And it becomes necessary for us to detect them as having secrets like those...
How to check for TLS1.2 Readiness on Azure DevOps Build/Release agents (Self hosted agents)
Microsoft has recently announced that all connections to Azure DevOps would be switched to TLS 1.2 from older versions like TLS1.0, TLS1.1 which are not more secure when compared with TLS1.2, so let us...
Restricting Maximum Personal Access Token Lifespan
Personal Access Tokens (PAT) can be created with a maximum lifespan of 1 year. Though this would prevent users from refreshing the PAT token everynow and then, from a security perspective this is a...
Restrict full-scoped personal access token creation in Azure DevOps
Right now a PAT (Personal Access Token) can be created for all the scopes like Work items, Repositories, Build and release pipelines which literally gives unrestricted access to any PAT token created with all...
Restricting Global access PAT token creation | Azure DevOps
Right now a PAT (Personal Access Token) can be created for a single organization or for all the organizations that are under the specific Azure Active directory. This can be restricted by enabling this...
Blocking/Restricting Organization creation in Azure DevOps
Though Microsoft allows any user in Azure Active Directory to create an Azure DevOps organization, it can be still created or blocked via role in Azure Active Directory. You need to be an Azure...
Assigning a user with Azure DevOps Administrator role in Azure Active Directory
Azure DevOps Administrator role is different being owner of the organization or an Project Collection Administrator. It enables you to restrict the creation of Azure DevOps organizations within an organization which is connected to...
Who can create an Azure DevOps Organization?
Anyone with a Microsoft account can create an Azure DevOps Organization, you can also create it for free using your own Microsoft account or using a company email address that is associated with Microsoft’s...
