Azure DevOps has upgraded its web authentication system, moving from traditional cookies to Microsoft Entra tokens that enable more frequent compliance evaluations and support for conditional access policies. This shift allows for more dynamic security measures, including hourly checks on identity compliance and device adherence to specific policies. While the new token system will improve security on Azure DevOps services and partner web properties, personal access tokens will still adhere to traditional IP-fencing policies. The rollout is designed to minimize disruptions in the user login experience.
By replacing our previous cookies with Entra tokens, we've deepened the integration we have with Microsoft Entra ID on our web experience.
This change allows us to continuously evaluate identity compliance with Entra policies on an hourly basis.
Now, we can provide support for many more conditional access policies, such as device compliance that can be used to prevent usage on devices that fail to meet a variety of compliance requirements.
Updated web session authentication is now available on all Azure DevOps Services pages for most modern browsers.
Collection
[
|
...
]