Poznámka
Na prístup k tejto stránke sa vyžaduje oprávnenie. Môžete sa skúsiť prihlásiť alebo zmeniť adresáre.
Na prístup k tejto stránke sa vyžaduje oprávnenie. Môžete skúsiť zmeniť adresáre.
This SIT is also included in the All credentials bundled SIT.
Important
Because credential scanning SITs are a type of advanced classifier, you must enable advanced classification before implementing them. For information about enabling advanced classification, and about configuring endpoints and the supported file types, see Advanced classification scanning and protection.
Format
A combination of 52 characters consisting of letters, digits, and special characters.
Pattern
Any combination of 52 characters consisting of:
- a-z or A-Z (case-sensitive)
- or 2-7
format example:
A2bC2dE3fH4iJ5kL6mN7oP7qR7sT2u
Credential example
AdoAppId=...;AdoAppSecret=2bC2dE3fH4iJ5kL6mN7oP7qR7sT2u;
Important
This example has been invalidated. It’s not a detectable example of this SIT.
Checksum
Yes
SITs that have checksums use a unique calculation to check if the information is valid. This means when the Checksum value is Yes, the service can make a positive detection based on the sensitive data alone. When the Checksum value is No, other (secondary) elements must also be detected for the service to make a positive detection.
Keyword Highlighting
Supported
When keyword highlighting is supported in the contextual summary for a sensitive information type or a trainable classifier, in the Contextual Summary view of activity explorer, the keywords in a document that were matched to a policy are highlighted.
Definition
This SIT is designed to match the security information that's used to authenticate web app users for Azure DevOps REST API access.
It uses several primary resources:
- Patterns of Base32 encoded 256-bits symmetric key.
- Patterns of CredentialName, CredentialFeatures, AccountIdentityName, AccountIdentityValue, ResourceType, ResourceName.
- Patterns of mockup values, redactions, and placeholders.
- A dictionary of vocabulary
The patterns are designed to match actual credentials with reasonable confidence. The patterns don't match credentials formatted as examples. Mockup values, redacted values, and placeholders, like credential type or usage descriptions, in the position where an actual secret value should present won't be matched.
Keywords
Keyword_SymmetricKey256B32:
- pat
- token
- ado
- vsts
- azuredevops
- visualstudio.com
- dev.azure.com