Mar 11 2021
10:56 AM
- last edited on
Mar 05 2024
01:08 PM
by
TechCommunityAP
Mar 11 2021
10:56 AM
- last edited on
Mar 05 2024
01:08 PM
by
TechCommunityAP
We build our code using Azure DevOps. How can we secure Azure DevOps and our Azure tenant in order to deploy code?
The problem is the broad range of Azure DevOps US East Region IP address. Our security team is not comfortable allowing them . If its allowed, anyone who is US East can reach our Azure instance.
Lets say we have a blob store in Azure. We have a contractor who has the shared access key to the blobstore. Once he left company, he can spin his own Azure DevOps pipeline in US East and be able to read.write.delete files into the azure blobstore. How can we avoid this?
Mar 11 2021 11:52 PM