How can make sure work items of Team A is not visible to Team B and vice versa.
What I have done so far is
Made Teams A & B
2.Added users in the relative teams
then in their Iterations & Areas section
In Team A (areas section) set security for Team B --> work items not visible
but then it also hides from Team A
If I change security for work items in areas , (work items visibility to false for Team a , )it hides for both teams
Based on my test, when I set the View work items in this node permission as deny for Team B, the users in Team B will have no access to see the work items in Team A.
It could work as expected.
Here is my settings:
Team A security:
You need to check if the Team A and Team B has the same Team members. In this case, the permissions for the users will inherit the permissions of Deny by default.
For example: Team B in the Area for Team B.
Update:
Based on your latest comment, you could refer to the following settings:
To remove the admin from the team, you need to assign the team admin to other users in Project Settings -> Teams -> Settings.
1.Team A and Team B: you need to remove the current admin account.
No matter which team the current admin account is in, he cannot see all the work items.
2.Create additional Team(e.g. Team C). And the current admin account to the new team. Grant all permission to the new team.
Related
Is there any way to grant only board access to Azure DevOps (TFS) users without showing Repo's (codes)?
Yes. In the Project Settings-Permissions, click New Group and create a new group, add the users you want to "grant only board access to Azure DevOps".
Then, in this group's Permissions, set all the permissions to "deny" accept those in the Boards( these you can set to "Allow").
without showing Repo's (codes)?
As for this requirement, you need to go to the Project Settings-Repos-Repositories, select the target groups or users, set the "Read" permission to "Deny". After this, the group members or users can not see the repo file anymore.
I know we can add/remove users for Team Foundation Service Accounts group using TFSSecurity command
for example - tfssecurity /g- "[TEAM FOUNDATION]\Team Foundation Service Accounts" n:DOMAIN\username /server:https://tfs.mycompanydomain.com/tfs
When I try to remove inactive user (the AD user left the organization) I am getting Error: The identity cannot be resolved.
How can I remove inactive user from "Team Foundation Service Accounts" group.
Any help would be highly appreciated.
TFS version : 2017
Since that user is inactive (the AD user left the organization).
Please execute the command tfssecurity /imx “username” /collection:url, then view the result to check this user existing in which group(s) in your collection. Ensure your removed this user from all the TFS groups.
If you are also not able to remove him from other group. You could try to use User ID instead of domain name.
tfssecurity /g- "[TEAM FOUNDATION]\Team Foundation Service Accounts" n:userID /server:https://tfs.mycompanydomain.com/tfs
The UserId is stored in Tfs_Configuration database.
If you want to know your ID, you could ask your TFS administrator to check the [dbo].[tbl_Identity] table to get your UserID.
I saw some folks have Jira integration in Leverice, but I do not see how to create a Jira channel/branch anywhere in my Leverice application. Anyone know where to start so I can set this up too?
Yes, sure. First, to set this up you must have admin rights in your company/team’s Jira account.
The Jira channel can only be set up as a top-level channel and only in a Team.
On a Team that you have set up in Leverice (e.g. DevTeam) select New > Jira
A pop-up box with several fields will appear. These fields are as follows: Display Name, Project key, Site name, Atlassian id (email), Jira api token
Display Name: this can be anything you choose, for example you can call it Acme Dev
Project key: this must be the root acronym of all your existing Jira items. For example if your Jira items are ACME-1454, ACME-2595, etc. then your project key should be entered as ACME
Site name: this must be the root url of your Jira space, for example https://acmecompany.atlassian.net
Atlassian id (email): this must be the email address you use to login to Jira with admin rights
Jira api token: to obtain this token go to your Jira website, click on your Profile avatar in the bottom left corner, click on “Profile”, then click “Manage your account”. Next, select “Security” and scroll down to “Create and manage API tokens”. Click on it, create a token, and copy and paste it back into the Leverice pop-up box.
Finally, click “Create” in the Leverice pop-up box.
My Gerrit Version is -2.10.2
Regarding an Gerrit group (Delete user permission), I am the Gerrit administrator, I have user add/delete permission for Gerrit groups. Today I noticed that even the users who all have access to Gerrit group, are also able to remove users from Gerrit group. I thought, only admin can perform the manage groups and users permissions, whereas it is working for user as well. I have checked the project it has configured the access from “Rights Inherit From: All-Projects” also “Project All-Projects” it has below settings.
Global Capabilities
Administrate Server -
Allow - Administrators
Priority -
Batch - Non-Interactive Users
Stream Events -
Allow - Non-Interactive Users
Could you let me know where I can configure the permission, So that user should is not allowed to remove the user from Gerrit group. Only Gerrit administrator need to have users add & delete permission from Gerrit groups.
Check the following:
Click on the "General" tab of some group.
Look at the group in the "Owners" field
All users that are members of the owner group (or members of one of its sub-groups) has the permission to add and remove users to original group.
Put the administrator group (or other group you want) in this field and click on the "Change owner" button.
I have just created a Visual Studio Online account and have added a new user.
How do I manage project permissions for that user?
I have been through every available page when logged in as Administrator and I cannot find anything. The only thing I can do is add the user as a member to the new project.
Added new user:
Added user as member on new project:
Example of missing permissions:
After adding it to users for team project permissions you need to click on Settings icon on top right.
Then select the Team project on the left and then click "Manage project security and group membership" and then add user to one of the VSO groups shown below in the image.