You have an existing project in Azure DevOps.
You plan to integrate GitHub as the repository for the project.
You need to ensure that Azure Pipelines runs under the Azure Pipelines identity.
Which authentication mechanism should you use?
Click on the arrows to vote for the correct answer
A. B. C. D.B
GitHub App uses the Azure Pipelines identity.
Incorrect Answers:
A: Personal access token and OAuth use your personal GitHub identity.
https://docs.microsoft.com/en-us/azure/devops/pipelines/repos/githubIf you plan to integrate GitHub as the repository for your project in Azure DevOps and want to ensure that Azure Pipelines runs under the Azure Pipelines identity, you should use the GitHub App authentication mechanism.
Explanation: GitHub App is a more secure and flexible way to authenticate with GitHub than using a personal access token (PAT). GitHub Apps can be installed directly on organizations or user accounts and can have granular permissions and access controls. This means you can control which repositories and actions your App has access to, and revoke access at any time.
To integrate Azure Pipelines with GitHub App authentication, you need to:
Create a GitHub App: You can create a GitHub App from the settings page of your GitHub account. When creating the App, you need to specify which permissions the App requires to access your repositories.
Install the App on your organization or user account: After you create the App, you need to install it on your GitHub organization or user account.
Configure the pipeline to use the GitHub App: To configure your pipeline to use the GitHub App, you need to add a service connection to your pipeline. In the service connection, you need to specify the GitHub App ID, the private key of the App, and the installation ID of the App.
By using the GitHub App authentication mechanism, you can ensure that Azure Pipelines runs under the Azure Pipelines identity and can access the repositories in GitHub with the appropriate permissions.