category	severity	online version
Microsoft Azure DevOps Service Connections	Important	https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation

SYNOPSIS

A Service connection should use Workload Identity Federation.

DESCRIPTION

Workload Identity Federation allows you to use a service principal managed by Azure Active Directory to authenticate to Azure services instead of using a service principal managed by Azure DevOps. This is more secure as the service principal is not stored in Azure DevOps.

Mininum TokenType: ReadOnly

RECOMMENDATION

Consider using Workload Identity Federation for your service connections.

LINKS

Azure DevOps security best practices
Create a service connection

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation

SYNOPSIS

DESCRIPTION

RECOMMENDATION

LINKS

Files

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md

Latest commit

History

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md

File metadata and controls

Azure.DevOps.ServiceConnections.WorkloadIdentityFederation

SYNOPSIS

DESCRIPTION

RECOMMENDATION

LINKS