Skip to main content

Default permissions and access levels for Azure DevOps

To use Azure DevOps features, users must be added to a security group with the appropriate permissions and granted access to the web portal. Limitations to select features are based on the access level and security group to which a user is assigned. The Basic access level and higher supports full access to all Azure Boards features. Stakeholder access level provides partial support to select features, allowing users to view and modify work items, but not use all features. Stakeholder access is available to support free access to a limited set of features by an unlimited set of stakeholders.

Get hands-on experience on Azure DevOps from live experts at DevOps Online Training India 

The most common built-in security groups—ReadersContributors, and Project Administrators— and team administrator role grant permissions to specific features.


In general, use the following guidance when assigning users to an access level and security group:

  • Grant Basic access or higher and add to the Contributors security group full-time workers who contribute to the code base or manage projects.
  • Grant Stakeholder access and add to the Contributors security group managers or users who don't actively contribute to the code base but want to check project status and provide direction, feedback, feature ideas, and business alignment to a team.
  • Grant Stakeholder access and add to the Project Administrators security group users tasked with managing project resources. If they also need to contribute to the code base, then you must assign them Basic or higher-level access.
  • Grant Stakeholder access and add to the Project Collection Administrators security group users tasked with managing organization or collection resources. If they also need to contribute to the code base, then you must assign them Basic or higher-level access.

In the tables provided in this article, a  checkmark indicates that the corresponding access level or security group has access to a feature by default.

For a comparison chart of Stakeholder versus Basic access, see the Feature matrix. To assign or change an access level, see Add users and assign licenses. If you need to grant specific users select permissions, you can do so.

Dashboards, charts, reports, and widgets

You can define and manage team and project dashboards from the web portal, Dashboards. For an overview of dashboard and chart features, see Dashboards. You can set individual dashboard permissions to grant or restrict the ability to edit or delete dashboards.

Users granted Stakeholder access to private projects can't view or create query charts. Stakeholder access to public projects can view and create query charts.

TABLE 1
TaskStakeholdersReadersContributorsTeam adminsProject Admins
View work item query charts (from the Queries page)checkmarkcheckmarkcheckmarkcheckmark
Create work item query and test tracking charts 1checkmarkcheckmarkcheckmark
View team and project dashboards (including work item query charts added to dashboards)checkmarkcheckmarkcheckmarkcheckmarkcheckmark
Add and configure team dashboards 1checkmarkcheckmarkcheckmark
Add and configure project dashboards 1checkmarkcheckmarkcheckmark

Notes:

  1. Public project Stakeholders have full access to all features.

Power BI Integration and Analytics views

From the web portal Analytics views, you can create and manage Analytics views. An Analytics view provides a simplified way to specify the filter criteria for a Power BI report based on the Analytics Service data store. The Analytics Service is the reporting platform for Azure DevOps. 

                    To learn more, visit DevOps Online Training India 

You set permissions for the service at the project level, and for shared Analytics views at the object level. Users with Stakeholder access have no access to view or edit Analytics views.

TABLE 7
TaskReadersContributorsProject admins
View Analyticscheckmarkcheckmarkcheckmark
View a shared Analytics viewcheckmarkcheckmark
Edit and delete Analytics viewscheckmark

Azure Boards

You can plan and track work from the web portal Boards hub, and using Eclipse, Visual Studio, Excel, Project, and other clients. For an overview of work tracking features, 

Users granted Stakeholder access are granted different access to features depending on whether it is a private or a public project. For private projects, Stakeholders have limited access to select work tracking functions, whereas for public projects, Stakeholders enjoy full access to work tracking features. 

Comments

Popular posts from this blog

Azure Devops Services puts devops in the cloud

Microsoft has launched its Azure DevOps platform, featuring a set of cloud-hosted services including CI/CD, testing, and kanban project boards. It is free for open source projects and for teams of five or fewer people; use by larger teams starts at $3 per user per month, with discounts. Azure DevOps works with any language, targeting any platform, with extensible services. Azure DevOps services include: Azure Pipelines, offering CI/CD that can work with multiple languages and connecting to GitHub. The code can be pulled from popular source-control systems. Hosted MacOS, Linux, and Windows build agents are offered. Also, integration with Visual Studio App Center enables mobile deployments. Artifacts can be pulled from other CI systems such as Jenkins. Azure Boards, to track work with Kanban boards, backlogs, team dashboards, and custom reporting. Work can be tracked across teams. Azure Artifacts, providing Maven, NPM, and NuGet package feed from the public and private sources, for...

Electric Cloud Extends Continuous Delivery Platform

Electric Cloud is making accessible a product as-a-benefit (SaaS) evaluating alternative accessible for its ElectricFlow application discharge the board and persistent conveyance (CD) stage.  Furthermore, rendition 8.5 of ElectricFlow includes bolster for a Kanban-style pipeline see, protest labeling for custom detailing and enhanced accessibility and a nonstop coordination (CI) dashboard to track and break down form procedures, disappointments, and victories.  The SaaS choice doesn't on a very basic level change the current Electric Cloud evaluating model as much as it provides an alternate area to have ElectricFlow, said Electric Cloud CTO Anders Wallgren. Estimating for ElectricFlow is as yet dependent on hubs and the quantity of clients as opposed to utilization.  Get the best information on DevOps through Devops Online Training  The CI dashboard, in the interim, gives associations that have at least one sorts of CI stages being utilized with permeabili...