Authentication types
To log into Azure DevOps services use the Microsoft Entra ID – formerly known as Azure Active Directory (Azure AD). The Microsoft Identity platform provides two primary authentication patterns for Azure DevOps access.
User delegation (OAuth)
We will use this for the Azure DevOps CLI. Created for user facing tools, like web and desktop applications, command line interfaces. Formerly known as User Accounts. See Build Azure DevOps integrations with Microsoft Entra OAuth apps
Application identity (service principals and managed identities)
For background services, CI/CD pipelines, automated tools. Formerly known as Service Accounts.. See Use service principals and managed identities in Azure DevOps