This article will describe the use case and core differences between Service Principal and Managed Identities, using Key Vault and other Azure services as an example
Microsoft Azure Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution. Azure Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hun
![Jimson Chalissery [MSFT]](https://devblogs.microsoft.com/devops/wp-content/uploads/sites/6/2019/01/jimson-150x150.jpg){kind=avatar}
With the release of OpenSSH 8.2 last month, connections to SSH servers using SHA-1 was disabled by default in the OpenSSH client. We understand that this move helps improve the security of SSH connections, by encouraging all users to adopt the SHA-2 class of algorithms, generally considered safer. However, this resulted in OpenSSH users not being a...
Unlike previously announced, we will not temporarily or permanently disable TLS 1.0 and TLS 1.1 in Azure DevOps Services until further notice.
UPDATE: Based on customers' feedback, we have decided to postpone this change. We will not disable TLS 1.0/1.1 support for Azure DevOps Services until further notice.
New preview capabilities for Azure Pipelines let you define artifact policies that are enforced before deploying to critical environments such as production. You will be able to define custom policies that are evaluated against all the deployable artifacts in a given pipeline run and block the deployment if the artifacts don't comply.
Auditing for Azure DevOps is now available for all organizations as a Public Preview! A new way to monitor activities and changes throughout Azure DevOps organizations.
Azure DevOps is currently investing in enhancing its routing structure. As a result of this enhancement, our IP address space will be changing. If you're currently using firewall rules to allow traffic to Azure DevOps, please be sure to update these rules to account for our new IP ranges.
Azure DevOps now supports AzureAD (AAD) users accessing organizations that are backed by Microsoft accounts (MSA). For administrators, this means that if your organization uses MSAs for corporate users, new employees can use their AAD credentials for access instead of creating a new MSA identity.
Basic authorization is now enabled on the communication between the TFS and Search services to make it more secure.
