An error occurred while creating the source control named 'devops'. Error details:SourceControl securityToken is invalid..

learner 1

I'm trying add Azure Devops repo for Runbook sync into Azure Automation Accounts. I followed steps in this guide: https://learn.microsoft.com/en-us/azure/automation/source-control-integration
System managed identity has required role assigned. After supplying values for the 'Source Control' +Add form Authentication successful but finally it fails with message:
'SourceControls securityToken in invalid'. Picture is attached. Please, help me if you have already encountered this problem and how did you resolve it?

tbgangav-MSFT 10,416 Reputation points

2022-04-16T08:39:36.813+00:00

Hi @learner ,

I have tried to reproduce the issue in my lab but it was successful as shown in below screenshot.

Looks like it is similar to this issue so if possible disable conditional access policies if you have any in your environment and test if you are able to resolve the error.

On the other hand, I will reach out to internal team to get latest update on this related feature request and will get back to you as I hear more information.
tbgangav-MSFT 10,416 Reputation points

2022-05-03T08:57:23.903+00:00

Hi @learner ,

Did you get chance to check my earlier response? Let me know if you were able to resolve the issue or else if have any further queries with regards to it.

On the other hand, I am yet to hear back from internal product team on this feature request. I will get back to you as I hear more information.
Chris Hill 196 Reputation points

2022-06-27T15:58:55.667+00:00

@tbgangav-MSFT @learner

Had the same error today - I found that I needed to enable the 'Third-party application access via OAuth' in Azure DevOps / Organization Settings / Policies / Application connection policies

Apparently this policy is 'defaulted to off for all new organizations.'

https://learn.microsoft.com/en-us/azure/devops/organizations/accounts/change-application-access-policies?view=azure-devops#application-connection-policies

It would be good if the Azure Automation documentation could be updated to reflect this necessary prerequisite.
tbgangav-MSFT 10,416 Reputation points

2022-06-28T01:41:35.243+00:00

@Chris Hill Thanks for the insights here. Sure, I will update the Azure Automation document and ping you back here in couple of days.
Tobias Soler 5 Reputation points

2024-06-11T17:56:03.5633333+00:00

Had the same issue. Can confirm the solution from Chris Hill works:

Enable the 'Third-party application access via OAuth' in Azure DevOps / Organization Settings / Policies / Application connection policies

2 answers

tbgangav-MSFT 10,416 Reputation points

2022-07-11T13:50:16.493+00:00

<<Resurfacing or summarizing the information shared over comments section, so it helps broader community users.>>

Thanks to @Chris Hill for providing insights around the error "SourceControl securityToken is invalid". As per this Azure docs github issue, this Azure document is now updated with the details around the same i.e.,

According to this Azure DevOps documentation, "Third-party application access via OAuth" policy is defaulted to "off" for all new organizations. So if you try to configure source control in Azure Automation with "Azure Devops (Git)" as source control type without enabling "Third-party application access via OAuth" under Policies tile of Organization Settings in Azure DevOps then you might get "SourceControl securityToken is invalid" error. Hence to avoid this error, make sure you first enable "Third-party application access via OAuth" under Policies tile of Organization Settings in Azure DevOps.
Please sign in to rate this answer.

0 comments No comments
Sign in to comment
Neeraj 11 Reputation points

2023-01-31T03:16:33.91+00:00

It still is an issue and gives the same error even after enabling the 'Third-party application access via OAuth' option under Application connection policies.
Please sign in to rate this answer.
ADM Ashok Kumar Jayabalan 0 Reputation points

2023-09-15T06:47:19.29+00:00

We are also facing same issue "SecurityTokenNotFound" as well as "SourceControl securityToken is invalid" .. Any solution ?

Ashish Dadhich 56 Reputation points

2023-09-19T17:02:05.6933333+00:00

We are also facing same issue.
When try to run like

New-AzAutomationSourceControl -Name SCReposGit -RepoUrl https://dev.azure.com/<accountname>/<adoprojectname>/_git/<repositoryname> -SourceType VsoGit -AccessToken <secureStringofPAT> -Branch main -ResourceGroupName <ResourceGroupName> -AutomationAccountName <AutomationAccountName> -FolderPath "/"

SourceControl securityToken is invalid.
Sign in to comment

Share via

An error occurred while creating the source control named 'devops'. Error details:SourceControl securityToken is invalid..

2 answers