Azure DevOps Environment under useraccount with no password

azure-devops azure continuous-integration azure-pipelines

I'm trying to setup some resources for an environment that we have in Azure DevOps. After generating and coping the script in the portal which will setup an agent on my machine you will be asked to specify under what account the agent should run. From the documentation you can read it is a good practice to use a separate account to run the actual agent

Information security for self-hosted agents

"It is a best practice to have the identity running the agent be different from the identity with permissions to connect the agent to the pool. The user generating the credentials (and other agent-related files) is different than the user that needs to read them."

Now when i specify a user who is not an admin and has no password, I will still be prompted to specify a password. It is not possible to give an empty string here. Even if i add to the script the --unattended flag and add the --password flag without a value the script will fail since no value for a password is given.

Is it a requirement for the Azure Agent that user who run's the process/agent has a password on it's account?

enter user password


Solution 1:

Yes. As a general best practice, secure your accounts.

Related

How to fetch job_id of BigQueryOperator in downstream task
How to disable the grey background colour on iterm2 desactived tab split?
Get first and last n items from a nodelist
How to change a column type from integer to biginteger while other tables have foreign id relation in laravel?
Spring: Unable to set SameSite cookie to None
Finding difference within grouped dataframe in python
Access position of grid layout in tkinter
Comma separated list in Liquid
How to prevent DDoS attack on Google Cloud Storage
windows server 2012 resolution woes with vga
Should Cat6 cables be used for servers ('important hosts') rather than Cat5-E?
How to automate slipstream?