AzureDevOpsAR is simply the name of the app registration AzureDevOps will be associated with, don't like the name? Simply change the references below.
- Create an App Registration to act as a Service Principal:
- Log in to portal.azure.com
- Azure Active Directory => App Registrations => New Application Registration
- Name: AzureDevOpsAR, Type: Web app/API, Url: http://azuredevopsar (Url isn't important as it won't be used)
- Copy the Application ID as this will be the Service principal client ID
- Settings => Keys => Add
- Name: 'AzureDevOps', Expiry: Never => Save (Name isn't important as long as it is unique)
- Copy the Key as this will be the Service principal key
- Grant the App Registration appropriate permissions to the Resource Group or Subscription:
- Navigate to the appropriate Item
- Access control (IAM)
- Add => 'AzureDevOpsAR' => Contributor
- Complete the dialog
- Service Principal Authentication
- Connection Name: => Reference only, though Subscription Name + App Registration scope is a good start
- Environment: Azure Cloud
- Scope level: Subscription
- Subscription ID: => portal.azure.com => search => 'subscriptions' => copy the ID
- Subscription Name: => as above => copy the name
- Service principal client ID: => the application ID copied earlier
- Service principal key: => the key generated earlier
- Tenant Id: =>
- Azure Active Directory
- Properties
- Copy the Directory ID
- Clicking verify connection doesn't work?
- Ensure that the Application Registration has been granted permissions on a resource
- Didn't copy/forgot the App Reg password?
- The password can be removed and recreated again, so long as any external references are updated accordingly