Azure Service Connections

1
votes

I'm trying to create a release pipeline in Azure DevOps. I created an App service resource in Azure and I want to deploy my web-app to this App service through my pipeline. For that I need to create an ARM service connection. Can you please help me with understanding the difference between the types of service connections? Thanks!

  1. What is the difference between Service Principal (automatic) and Service Principal (manual) ?
  2. What is the difference between service principal, managed identity and publish profile?
1
azure-devopsazure-active-directoryazure-managed-identityservice-principalserviceconnection

1 Answers

2
votes

What is the difference between Service Principal (automatic) and Service Principal (manual) ?

Service Principal (automatic): It will create an AD App along with the service principal in Azure AD for you automatically and use it in the service connection.

Service Principal (manual): You need to create the AD App along with the service principal manually in Azure AD and configure it when you create the service connection.

What is the difference between service principal, managed identity and publish profile?

When you create an AD App(App Registration) in Azure AD, it will create a service principal for you automatically in your Azure AD.

The managed identity is essentially a service principal in your AAD managed by Azure, you can use it to access azure resources in the subscription.

The publish profile is a file used to publish your web app or web job, it includes a username and password, it uses the basic auth to deploy your web app, if you use service principal/managed identity, it uses Azure AD auth.