Attempting to import our Azure DevOps organisation to SonarCloud, i click the + > Analyse New Project > Import another organisation.
I’ve entered the AzureDevOps organisation name ‘glasswall’
I’ve created my PAT and entered the token, but upon doing so i get 'The token doesn’t have the required permissions (Code: Read & Write).
After checking my PAT, i can confirm it has those permissions, but it still isn’t being accepted. So right now, i’m unable to import our Azure DevOps projects.
After some further digging, it appears that if ‘Enable Azure Active Directory Conditional Access Policy Validation;’ is on, it causes an issue with authenticating with SonarCloud - is there a work around for this?
We whitelisted the IP associated with sonarloud.io (18.194.60.35) but still get the 'The token doesn’t have the required permissions (Code:Read & Write).
Hi Chris / Michael, were you ever able to get SonarCloud working with Azure AD Conditional Access Policies enabled? We also have CAPs enforced, but would like to use SonarCloud.
Michael,
Are all SonarCloud services hosted in the AWS eu-central-1 region?
If you whitelist all AWS EC2 IP Addresses from the following link, you’ll be able to use CAPs with SonarCloud. These ranges may be changed, so if you are experiencing issues, you’ll need to refresh the IP Addresses in your Azure AD CAP.