Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Bicep resource definition
The securityConnectors/devops resource type can be deployed with operations that target:
- Resource groups - See resource group deployment commands
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Security/securityConnectors/devops resource, add the following Bicep to your template.
resource symbolicname 'Microsoft.Security/securityConnectors/devops@2025-11-01-preview' = {
parent: resourceSymbolicName
name: 'default'
properties: {
agentlessConfiguration: {
agentlessAutoDiscovery: 'string'
agentlessEnabled: 'string'
inventoryList: [
{
inventoryKind: 'string'
value: 'string'
}
]
inventoryListType: 'string'
scanners: [
'string'
]
}
authorization: {
code: 'string'
}
autoDiscovery: 'string'
topLevelInventoryList: [
'string'
]
}
}
Property Values
Microsoft.Security/securityConnectors/devops
| Name | Description | Value |
|---|---|---|
| name | The resource name | 'default' (required) |
| parent | In Bicep, you can specify the parent resource for a child resource. You only need to add this property when the child resource is declared outside of the parent resource. For more information, see Child resource outside parent resource. |
Symbolic name for resource of type: securityConnectors |
| properties | DevOps Configuration properties. | DevOpsConfigurationProperties |
AgentlessConfiguration
| Name | Description | Value |
|---|---|---|
| agentlessAutoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| agentlessEnabled | Agentless Enablement states. | 'Disabled' 'Enabled' 'NotApplicable' |
| inventoryList | Gets or sets the inventory list for inclusion or exclusion from Agentless. Will be ignored if agentless auto-discovery is enabled. |
InventoryList[] |
| inventoryListType | Types for inventory list. | 'Exclusion' 'Inclusion' |
| scanners | Gets or sets the scanners for the connector. | string[] |
Authorization
| Name | Description | Value |
|---|---|---|
| code | Gets or sets one-time OAuth code to exchange for refresh and access tokens. Only used during PUT/PATCH operations. The secret is cleared during GET. |
string Constraints: Sensitive value. Pass in as a secure parameter. |
DevOpsConfigurationProperties
| Name | Description | Value |
|---|---|---|
| agentlessConfiguration | Details about Agentless configuration. | AgentlessConfiguration |
| authorization | Authorization payload. | Authorization |
| autoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| topLevelInventoryList | List of top-level inventory to select when AutoDiscovery is disabled. This field is ignored when AutoDiscovery is enabled. |
string[] |
InventoryList
| Name | Description | Value |
|---|---|---|
| inventoryKind | Types for inventory kind. | 'AzureDevOpsOrganization' 'AzureDevOpsProject' 'AzureDevOpsRepository' 'GitHubOwner' 'GitHubRepository' |
| value | Gets or sets the value for inventory type. | string |
ARM template resource definition
The securityConnectors/devops resource type can be deployed with operations that target:
- Resource groups - See resource group deployment commands
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Security/securityConnectors/devops resource, add the following JSON to your template.
{
"type": "Microsoft.Security/securityConnectors/devops",
"apiVersion": "2025-11-01-preview",
"name": "string",
"properties": {
"agentlessConfiguration": {
"agentlessAutoDiscovery": "string",
"agentlessEnabled": "string",
"inventoryList": [
{
"inventoryKind": "string",
"value": "string"
}
],
"inventoryListType": "string",
"scanners": [ "string" ]
},
"authorization": {
"code": "string"
},
"autoDiscovery": "string",
"topLevelInventoryList": [ "string" ]
}
}
Property Values
Microsoft.Security/securityConnectors/devops
| Name | Description | Value |
|---|---|---|
| apiVersion | The api version | '2025-11-01-preview' |
| name | The resource name | 'default' (required) |
| properties | DevOps Configuration properties. | DevOpsConfigurationProperties |
| type | The resource type | 'Microsoft.Security/securityConnectors/devops' |
AgentlessConfiguration
| Name | Description | Value |
|---|---|---|
| agentlessAutoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| agentlessEnabled | Agentless Enablement states. | 'Disabled' 'Enabled' 'NotApplicable' |
| inventoryList | Gets or sets the inventory list for inclusion or exclusion from Agentless. Will be ignored if agentless auto-discovery is enabled. |
InventoryList[] |
| inventoryListType | Types for inventory list. | 'Exclusion' 'Inclusion' |
| scanners | Gets or sets the scanners for the connector. | string[] |
Authorization
| Name | Description | Value |
|---|---|---|
| code | Gets or sets one-time OAuth code to exchange for refresh and access tokens. Only used during PUT/PATCH operations. The secret is cleared during GET. |
string Constraints: Sensitive value. Pass in as a secure parameter. |
DevOpsConfigurationProperties
| Name | Description | Value |
|---|---|---|
| agentlessConfiguration | Details about Agentless configuration. | AgentlessConfiguration |
| authorization | Authorization payload. | Authorization |
| autoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| topLevelInventoryList | List of top-level inventory to select when AutoDiscovery is disabled. This field is ignored when AutoDiscovery is enabled. |
string[] |
InventoryList
| Name | Description | Value |
|---|---|---|
| inventoryKind | Types for inventory kind. | 'AzureDevOpsOrganization' 'AzureDevOpsProject' 'AzureDevOpsRepository' 'GitHubOwner' 'GitHubRepository' |
| value | Gets or sets the value for inventory type. | string |
Usage Examples
Terraform (AzAPI provider) resource definition
The securityConnectors/devops resource type can be deployed with operations that target:
- Resource groups
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Security/securityConnectors/devops resource, add the following Terraform to your template.
resource "azapi_resource" "symbolicname" {
type = "Microsoft.Security/securityConnectors/devops@2025-11-01-preview"
name = "string"
parent_id = "string"
body = {
properties = {
agentlessConfiguration = {
agentlessAutoDiscovery = "string"
agentlessEnabled = "string"
inventoryList = [
{
inventoryKind = "string"
value = "string"
}
]
inventoryListType = "string"
scanners = [
"string"
]
}
authorization = {
code = "string"
}
autoDiscovery = "string"
topLevelInventoryList = [
"string"
]
}
}
}
Property Values
Microsoft.Security/securityConnectors/devops
| Name | Description | Value |
|---|---|---|
| name | The resource name | 'default' (required) |
| parent_id | The ID of the resource that is the parent for this resource. | ID for resource of type: securityConnectors |
| properties | DevOps Configuration properties. | DevOpsConfigurationProperties |
| type | The resource type | "Microsoft.Security/securityConnectors/devops@2025-11-01-preview" |
AgentlessConfiguration
| Name | Description | Value |
|---|---|---|
| agentlessAutoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| agentlessEnabled | Agentless Enablement states. | 'Disabled' 'Enabled' 'NotApplicable' |
| inventoryList | Gets or sets the inventory list for inclusion or exclusion from Agentless. Will be ignored if agentless auto-discovery is enabled. |
InventoryList[] |
| inventoryListType | Types for inventory list. | 'Exclusion' 'Inclusion' |
| scanners | Gets or sets the scanners for the connector. | string[] |
Authorization
| Name | Description | Value |
|---|---|---|
| code | Gets or sets one-time OAuth code to exchange for refresh and access tokens. Only used during PUT/PATCH operations. The secret is cleared during GET. |
string Constraints: Sensitive value. Pass in as a secure parameter. |
DevOpsConfigurationProperties
| Name | Description | Value |
|---|---|---|
| agentlessConfiguration | Details about Agentless configuration. | AgentlessConfiguration |
| authorization | Authorization payload. | Authorization |
| autoDiscovery | AutoDiscovery states. | 'Disabled' 'Enabled' 'NotApplicable' |
| topLevelInventoryList | List of top-level inventory to select when AutoDiscovery is disabled. This field is ignored when AutoDiscovery is enabled. |
string[] |
InventoryList
| Name | Description | Value |
|---|---|---|
| inventoryKind | Types for inventory kind. | 'AzureDevOpsOrganization' 'AzureDevOpsProject' 'AzureDevOpsRepository' 'GitHubOwner' 'GitHubRepository' |
| value | Gets or sets the value for inventory type. | string |