@Robina 

for the 2nd step, the organization level means Azure DevOps Organization? How to assign "Contributor" Role to service principle at the organization level?

Auzre DevOps API permission was granted to the service principle.

But I cannot find the service principle in Azure Devops organization users, project contributor, and repos security settings tab.

@bbliang 

Azure DevOps, an organization is the top-level container that holds all your projects, teams, and other resources.To assign the "Contributor" role to a service principle at the organization level in Azure DevOps, you can follow these steps:

1. Go to your Azure DevOps organization and click on the "Organization settings" gear icon in the lower left corner.
2. In the left-hand menu, click on "Permissions".
3. Click on "Security groups".
4. Create a new security group or select an existing one.
5. Click on "Members" to add members to the security group.
6. Click on "Add" and select "Service principal".
7. Type in the name or ID of the service principal and click "Add".
8. Click on the security group again and click on "Permissions".
9. Click on "Add" to add a new permission.
10. Select the "Contributor" role from the list of available roles.
11. Choose the scope of the permission (in this case, the organization).
12. Click "Add" to save the permission.

After completing these steps, the service principal should have the "Contributor" role at the organization level. If you cannot find the service principal in the Azure DevOps organization users, project contributor, and repos security settings tab, make sure that you have granted the appropriate Azure DevOps API permissions to the service principal and that it has been added to the appropriate security group with the "Contributor" role.