Edit your DevOps Connector in Microsoft Defender for Cloud

After onboarding your Azure DevOps, GitHub, or GitLab environments to Microsoft Defender for Cloud, you might want to change the authorization token used for the connector, add or remove organizations/groups onboarded to Defender for Cloud, or install the GitHub app to additional scope. This page provides a simple tutorial for making changes to your DevOps connectors.

Prerequisites

Make edits to your DevOps connector

  1. Sign in to the Azure portal.

  2. Go to Microsoft Defender for Cloud > Environment settings and identify the connector you want to make changes to.

  3. Select Edit settings for the connector.

    A screenshot showing how to edit settings on the edit connector page.

  4. Navigate to Configure access. Here you can perform token exchange, change the organizations/groups onboarded, or toggle autodiscovery.

    Note

    If you are the owner of the connector, re-authorizing your environment to make changes is optional. If you are trying to take ownership of the connector, you must re-authorize using your access token. This change is irreversible as soon as you select 'Re-authorize'.

  5. Use Edit connector account component to make changes to onboarded inventory. If an organization/group is greyed out, please ensure that you have proper permissions to the environment and the scope is not onboarded elsewhere in the Tenant.

    A screenshot showing how to select an account when editing a connector.

  6. To save your inventory changes, Select Next: Review and generate > and Update. Failing to select Update will cause any inventory changes to not be saved.

Next steps