Permissions Report
Permissions reports can help administrators determine the effective permissions of users and groups upon securable resources in Azure DevOps. Generating a report for a resource (Git repository, branch, etc.) will list the effective permissions, upon that resource, for each user who has logged into the Azure DevOps organization and each group in the Azure DevOps organization.
Effective permissions
- Effective permissions represent the true permissions a user or group has on a resource after considering directly assigned permissions upon the resource, any inherited permissions from the group hierarchy, and any inherited permissions from the resource hierachy. Learn more about inherited permissions.
Common tasks
Get permissions report status
- List the status for all available permissions reports
- Get the status for a specific permissions report by ID
Create permissions report
- Queue a new permissions report to be created. Specify the specific resource details and the user/group descriptors to include in the report. Specifying an empty descriptor list will list all users and groups in the organization.
Download permissions report
- Download a json permissions report that includes the users and groups specified at creation time for a specific resource node. Use powerBI to view the data or write a tool to parse and filter the data. Inherited permissions come from a parent group which can be viewed in the UI.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for