Required permissions

The account used for integration must have an appropriate access level assigned within Azure DevOps:

Xopero ONE can only protect projects that the integrated user account has explicit access to.

OAuth Integration

Xopero supports only organizational accounts (Microsoft Entra ID)—personal accounts are not supported. For private accounts, use PAT instead.

To integrate Azure DevOps with Xopero ONE using OAuth, make sure the account has an administrator role. Otherwise, you may encounter permission errors or find that the approval button is inactive.

When integrating Azure DevOps via OAuth, the following scopes are required:

Personal Access Token (PAT)

Prerequisites:

Required scopes:

When performing a backup with minimal permissions, some metadata might be excluded. To ensure complete protection, select the permissions based on your data protection needs. Note that with read-only permissions, backups can be made, but restoring requires a new token or password with write access.

Granular permission settings

To ensure both backup and restore operations succeed, verify the following settings in your Azure DevOps security configuration.

Organization level

Project level

Repositories level

Azure DevOps Server

Personal Access Token (PAT)

Prerequisites:

Required scopes:

Required permissions for Azure DevOps and Azure DevOps Server specify the access levels Xopero ONE needs to securely back up and restore your data. To ensure successful operations, permissions must be configured at the User, Organization, Project, and Repository levels.

Azure DevOps

User Access Levels

OAuth Integration

Personal Access Token (PAT)

Prerequisites:

Required scopes:

Granular permission settings

Organization level

Project level

Repositories level

Azure DevOps Server

Personal Access Token (PAT)

Prerequisites:

Required scopes:

hashtagRequired permissions for Azure DevOps and Azure DevOps Server specify the access levels Xopero ONE needs to securely back up and restore your data. To ensure successful operations, permissions must be configured at the User, Organization, Project, and Repository levels.

hashtagAzure DevOps

hashtagUser Access Levels

hashtagOAuth Integration

hashtagPersonal Access Token (PAT)

hashtagPrerequisites:

hashtagRequired scopes:

hashtagGranular permission settings

hashtagOrganization level

hashtagProject level

hashtagRepositories level

hashtagAzure DevOps Server

hashtagPersonal Access Token (PAT)

hashtagPrerequisites:

hashtagRequired scopes:

Required permissions for Azure DevOps and Azure DevOps Server specify the access levels Xopero ONE needs to securely back up and restore your data. To ensure successful operations, permissions must be configured at the User, Organization, Project, and Repository levels.

Azure DevOps

User Access Levels

OAuth Integration

Personal Access Token (PAT)

Prerequisites:

Required scopes:

Granular permission settings

Organization level

Project level

Repositories level

Azure DevOps Server

Personal Access Token (PAT)

Prerequisites:

Required scopes: