Angel Wong

Product Manager, Azure DevOps

Senior Product Manager, Azure DevOps

Post by this author

Regenerating secrets for Azure DevOps OAuth applications

You can now self-regenerate new client secrets as needed for apps made on top of the Azure DevOps' OAuth platform. A valid, active client secret is critical for getting a refresh token to continue using your app. Once the secret has expired, you will also no longer be able to get access and refresh tokens needed to access Azure Devops APIs ...

Final notice of alternate credentials deprecation

In November 2019, we announced that the alternate credentials feature will be formally deprecated in March 2020. Since then, a small number of users were grandfathered in with continued usage of existing alternate credentials, which have remained active until today. We will be discontinuing all usage of alternate credentials this month. Users...

New Azure DevOps scopes now available for Microsoft Identity OAuth delegated flow apps

We have added new Azure DevOps scopes for delegated OAuth apps on the Microsoft Identity platform, also colloquially known as Azure Active Directory OAuth apps. These new scopes will enable app developers to announce specifically which permissions they are hoping to request from the user in order to perform app duties. They may look familiar ...

Managed identity and service principal support for Azure DevOps now in General Availability (GA)

After announcing the release of Managed Identity and Service Principal support in public preview last March, we were overcome by the positive response many of you had. We’re grateful to those who have taken the time to implement a managed identity within your apps and tools. With your help, we’ve collected valuable feature feedback and ...

Introducing Service Principal and Managed Identity support on Azure DevOps

We are proud to announce that Service Principals and Managed Identities can now be used to authenticate with Azure DevOps. For those who have not heard of them before, these Azure Active Directory identities enable teams to gain access to your Azure DevOps organizations acting as their own application, not as a human user or service account...

Publishing extensions to Marketplace issue resolved

We have resolved a known issue regarding publishing extensions to the Visual Studio Marketplace. If you’ve run into the error message: “Your ability to create global personal access tokens (PATs) is restricted by your organization.”, this is likely because your administrator has enabled a policy to restrict the creation of global ...

Reconfigure Azure DevOps Server to use Kerberos instead of NTLM

Multiple on-prem customers have reported that after upgrading Git LFS to version 3.0 (or higher), they are no longer able to authenticate against Azure DevOps Server. This is because Git LFS has dropped support for NTLM authentication in version 3.0 (Changelog from 24th September 2021). While it is possible to roll back Git LFS to the last 2....

Opt-in to Auditing on Azure DevOps

Auditing has now been made an opt-in feature on Azure DevOps and will only be available to organizations that are connected to Azure Active Directory. While Auditing is still in public preview at the moment, the ability to enable and disable Auditing in your organizations is now available. You should see these changes in your settings within ...

IPv6 fencing Conditional Access Policies now supported

We are now extending our CAP support to also include IPv6 fencing policies. As we see people increasingly access Azure DevOps resources on devices from IPv6 addresses, we want to ensure that your teams are equipped to grant and remove access from any IP address.

Personal Access Token Lifecycle APIs now publicly available

Since releasing our Personal Access Token (PAT) Lifecycle Management APIs in private preview last month, we’ve received overwhelming interest from folks who are looking for a more robust alternative to the existing UI for creating and managing their PATs. We are happy to announce that these APIs are now available to the general audience.