Azure DevOps 服务标记在网络安全组中不可用
Azure DevOps Service tags are not available in Network Security Group
我正在尝试通过将 Azure DevOps 的 IP 地址列入密钥保管库的白名单来将 Azure DevOps 与 Azure KeyVault 连接起来。现在我需要将 Azure DevOps 的服务标签添加到 KeyVault 中。我正在按照以下过程进行操作。如果我错了请指正?
- 创建网络安全组
- 单击入站安全规则
- 点击“添加”按钮添加规则
- Select 来源为“服务标签”
- Select Souce 服务标签为“AzureDevOps”(遗憾的是该标签不可用)。
请告诉我如何在网络安全组中添加 Azure DevOps 的服务标签并将网络安全组与 Azure Key Vault 映射?
截至今天,它们可在门户网站上使用 (18-11-2021)
原回复
你不能。门户中不提供 Azure Devops 服务标签
信息取自 documentation。
Now that a service tag has been set up for Azure DevOps Services, customers can easily allow access by adding the tag name AzureDevOps to their NSGs or firewalls programmatically using Powershell and CLI.
这里重要的是:
The Service Tag does not apply to Microsoft Hosted Agents. Customers are still required to allow the entire geography for the Microsoft Hosted Agents. If allowing the entire geography is a concern, we recommend using the Azure Virtual Machine Scale Set Agents. The Scale Set Agents are a form of self-hosted agents that can be autoscaled to meet your demands.
我正在尝试通过将 Azure DevOps 的 IP 地址列入密钥保管库的白名单来将 Azure DevOps 与 Azure KeyVault 连接起来。现在我需要将 Azure DevOps 的服务标签添加到 KeyVault 中。我正在按照以下过程进行操作。如果我错了请指正?
- 创建网络安全组
- 单击入站安全规则
- 点击“添加”按钮添加规则
- Select 来源为“服务标签”
- Select Souce 服务标签为“AzureDevOps”(遗憾的是该标签不可用)。
请告诉我如何在网络安全组中添加 Azure DevOps 的服务标签并将网络安全组与 Azure Key Vault 映射?
截至今天,它们可在门户网站上使用 (18-11-2021)
原回复
你不能。门户中不提供 Azure Devops 服务标签
信息取自 documentation。
Now that a service tag has been set up for Azure DevOps Services, customers can easily allow access by adding the tag name AzureDevOps to their NSGs or firewalls programmatically using Powershell and CLI.
这里重要的是:
The Service Tag does not apply to Microsoft Hosted Agents. Customers are still required to allow the entire geography for the Microsoft Hosted Agents. If allowing the entire geography is a concern, we recommend using the Azure Virtual Machine Scale Set Agents. The Scale Set Agents are a form of self-hosted agents that can be autoscaled to meet your demands.