Hi,
We use ISIM to govern accounts and accesses in different target systems.
We have developers starting to use Azure DevOps and we need to have control of the identities and accesses.
After some investigation it doesn't seem that Azure DevOps is integrated to Azure AD, except reading Azure AD upon creation of the account in Azure DevOps.
Azure DevOps creates its own user account based on what it reads from Azure AD.
Based on this, we cannot govern the accounts and accesses through Azure AD.
Ie when an account is deleted in Azure AD, it doesn't get deleted in Azure DevOps.
My thought is to develop an adapter against Azure DevOps Graph API directly for this.
I'm curious to know if anyone of you have run into the same problem and how you solved it.
------------------------------
Michael Ohgami
------------------------------