🔥 3-day streak
Microsoft DevOps Engineer Expert69 / 138
Question 69 of 138
Your company runs a shared Azure DevOps project used by five product teams. Each team maintains its own YAML pipelines that deploy to separate Azure resource groups. Security requires that a pipeline for Team A must never be able to deploy to Team B's resources, even if a Team A member edits the pipeline YAML. All service connections currently exist at the project level and are open to any pipeline. What should you configure to enforce this isolation with the least ongoing administrative effort?
Reviewed for accuracy · Report an issueNext question