Change your organization connection to another Azure AD

Azure DevOps Services

If you need to switch your organization connection from one Azure Active Directory (Azure AD) to another, complete the following steps.

For more information about using Azure AD with Azure DevOps, see the Conceptual overview.

Prerequisites

Before you switch your organization directory, make sure the following statements are true:

  • You're in the Project Collection Administrator group for the organization.
  • You're a member or a guest in the source Azure AD and a member in the destination Azure AD. For more information, see how to convert an Azure AD guest into a member.
  • You have 100 or fewer users in your organization. If your organization has more than 100 users, contact Support for help with changing your Azure AD.

Do the following task:

Change the Azure AD connection

  1. Sign in to your organization (https://dev.azure.com/{yourorganization}).

  2. Select gear icon Organization settings.

    Open Organization settings

  3. Select Azure Active Directory, and then Switch directory.

    Select Switch directory

  4. Select a directory from the dropdown menu, and then select Connect.

    Select your Azure AD, and then Connect If you can't find your directory, contact your Azure AD administrator and request that they add you as a member to the Azure AD.

  5. Select Sign out.

    Connect success dialog - select Sign out

    Your organization is now connected to your Azure AD.

  6. Confirm that the process is complete. Sign out, and then open your browser in a private session and sign in to your organization with your Azure AD or work credentials.

  7. If some members are disconnected, sign back in to Azure DevOps and map them to their Azure AD identities. Or, you can invite them as guests into the Azure AD. For more information, see the FAQs.

    Select Resolve to invite unmapped users

    Mapping disconnected users

Inform users of the completed change

When you inform your users of the completed change, include the following tasks for each user in the organization to complete:

Clear cache for Git Credential Manager

If you use Visual Studio or the Git command-line too, clear the cache for the Git Credential Manager. Delete the %LocalAppData%\GitCredentialManager\tenant.cache file on each client machine.

Regenerate new PATs

Complete the following steps to Regenerate new personal access tokens.

  1. In Azure DevOps, open your profile, and then select Security from the resulting dropdown menu.

    Select from your profile dropdown menu, Security

  2. Select Personal access tokens, and then select New Token.

    Select New Token to create

  3. Complete the form, and then select Create.

    Create new token

  4. When the token is created, copy it, as it can't be viewed again.

Recreate SSH keys

Complete the following steps to recreate your SSH keys.

  1. In Azure DevOps, open your profile, and then select Security from the resulting dropdown menu.

    Select from your profile dropdown menu, Security

  2. Select SSH public keys, and then select Add.

    Screenshot that shows adding a SSH public key.

  3. Enter a description and key data, and then select Save.

    Add info to create SSH key

  4. Cope your token, as it can't be viewed again.

Rename your MSA

Rename your Microsoft account to a different email that doesn't conflict with your Azure AD identity. Doing so ensures that you won't be prompted to choose between accounts.

Adjust your VS subscription

If the UPN used inside your organization changed, adjust your Visual Studio subscription. You can reassign the subscription to your new UPN, or set that UPN as the alternate account inside the subscription. For more information, see how to add an alternate account to your subscription.