We have created a paid SonarCloud Organization for our private projects. We also use Azure DevOps and our users logs in to Azure DevOps using their Work/School Accounts using Azure AD. Currently, the way I can add the users to the Organization is by Searching for the users and add them to the organization. For this to work, our users first need to log in to SonarCloud using their Azure AD Work/School account. Then only I am able to search for them. Adding users this way presents some administrative overhead for us.
We were using SonarQube previously, and we had it hosted on our own VM. And We had used Azure Active-Directory Plugin for SonarQube installed and configured so our users can directly login to SonarQube using AAD without the need of adding them to manually.
My question is is there a way to set up authentication with AAD just like we did in SonarQube to avoid the administrative overhead we would have when logging in using Azure DevOps accounts?
If my understanding is correct, what you’re asking for is a way for users that authenticate to SonarCloud to automatically be member of your organization ?
If this is the case, this is not yet possible for the moment, but we are definitely thinking of it.
Is there away around the administrative overhead? Getting 200+ users to create an account and searching for those individual users and adding them, is how so I phrase this… Less then ideal.
+1 on this. Especially on above comment “Getting 200+ users to create an account and searching for those individual users and adding them, is how so I phrase this”
+1 for this. Single sign on is a very basic requirement for any organization. It weird way of configuring users as of now, very manual and error prone.
@julienlancelot I’m reviewing a move from self-hosted SonarQube to SonarCloud but Azure DevOps/Azure AD integration is a must. You’ve made great strides with Azure DevOps Pull Request functionality but this is a real problem. Please consider this sooner.
A SaaS offering is meant to reduce the operational overhead of a product. I would argue that it is less effort to manage and maintain our own SonarQube infrastructure than the effort to support and workaround the limitations of the cloud offering.
Hi folks, thank you for all your comments.
I’m Christophe, the product manager in charge of Azure DevOps.
Please rest assured that this feature is definitely on our radar. We will do our best to implement it as soon as possible.
We will keep you updated as soon as we move forward on this
Do you have any updates on this ? I just posted the same requirement in this community forum and came across this. We have approved sonarcloud in enterprise application in AD which enables me to login to sonarcloud using my Azure DevOps credentials. However I am not seeing other users in my AD who I can add to my organization. This is a priority thing for us else we cannot use it.
Hi amitabh,
What I can tell you so far is that we are working on this subject and will post updates as soon as we move forward.
Could you tell me more about your use case? For example, do you only need to sync your AAD users with Sonarcloud or do you need also to sync your security groups?
