This is an Azure DevOps extension that provides tasks for installing and running Sheriff, a command line tool to configure and operate Microsoft Entra Privileged Identity Management (PIM) in automation.
This task installs the Sheriff CLI on the agent. The version input accepts either
latest or a specific version number in the format vA.B.C, e.g. v0.1.0.
- task: InstallSheriffCLI@0
displayName: Install Sheriff CLI
inputs:
version: latestThis task runs Sheriff in plan mode, equivalent to running sheriff plan [mode].
- task: SheriffPlan@0
displayName: Plan Sheriff changes
inputs:
configDir: $(System.DefaultWorkingDirectory)/.config
mode: azurerm
serviceConnectionName: <service connection name>
This task runs Sheriff in apply mode, equivalent to running sheriff apply [mode].
- task: SheriffApply@0
displayName: Apply Sheriff changes
inputs:
configDir: $(System.DefaultWorkingDirectory)/.config
mode: azurerm
serviceConnectionName: <service connection name>
We welcome contributions to this repository. Please see CONTRIBUTING.md for more information.