Zero Touch Provisioning for Azure DevOps

---

Zero Touch Provisioning (ZTP) for Azure DevOps (ADO) enables the security check workflows to be executed from the boost repository in the ADO organization. This tutorial walks you through setting up ZTP for Azure DevOps.

---

Prerequisites

---

Before you begin, ensure you have:

• Integrated Azure DevOps to BoostSecurity.
• Installed the Azure DevOps BoostSecurity Scanner marketplace application.
• Created a non-empty boost repo in the organization where you installed the BoostSecurity marketplace application.

---

Integration Steps

---

1. Go to the Integrations page, select your Azure DevOps integration and click on the configuration tab.

2. On the ZTP column, you will notice that the status is set to Not Set. Click on the Actions menu next to the status and select Enable.

   

3. On the ZTP Wizard, the first step is to give BoostSecurity permissions for the Zero Touch Flow on your Azure DevOps Organization.

   

   The Zero Touch Flow would require a Personal Access Token with the following permissions:

   

   

   

   

   

4. Click the Next button to proceed.

5. BoostSecurity configures the boost repo on your ADO organization.

   

6. Install and authorize the BoostSecurity.io Zero Touch provisioning on your organization. Click on the Accept button at the bottom of the page.

   

7. The pipeline configuration is ready.

   

Zero Touch Provisioning is now enabled!!!

---

Next Steps

---

Proceed to build your first custom policy, where you would define specific actions for security events identified by configured scanners.