About projects and scaling your organization

You can scale your organization in the following ways:

• To support different business units, you can add projects
• Within a project, you can add teams
• Add repositories and branches
• To support continuous integration and deployment, you can add agents, agent pools, and deployment pools
• To manage a large number of users, you can manage access through Azure Active Directory

You can scale your on-premises Azure DevOps deployment in the following ways:

• To increase performance, you can add server instances
• To support different business units, you can add project collections and projects
• Within a project, you can add teams
• Add repositories and branches
• To support continuous integration and deployment, you can add agents, agent pools, and deployment pools
• To manage a large number of users, you can manage access through Active Directory

1. Select Azure DevOps to open Projects.

   

2. Choose a project from the list of projects.

For more information, see Create a project.

1. Select Azure DevOps to open Projects.

   

2. Choose a project from the projects list.

   

Limit user visibility of projects

By default, users added to an organization can view all organization and project information and settings.

The Limit user visibility and collaboration to specific projects preview feature for the organization limits user access in the following ways.

• Restricts views that display a list of users, list of projects, billing details, usage data, and more information accessed through Organization settings.
• Limits the set of users or groups that appear through people-picker search selections and the ability to @mention users.

Limit access to organization settings

To limit access to organization settings, enable the Limit user visibility and collaboration to specific projects preview feature. Users and groups in the "Project-scoped users group" can't access organization settings. They can only see the Overview and Projects pages and those projects to which they've been added.

Limit user visibility within people pickers

Organizations that are connected to Azure Active Directory (Azure AD) can use people pickers. People pickers support searching all users and groups added to Azure AD, not just those users and groups added to your project. People pickers support the following Azure DevOps functions:

• Select a user identity from a work tracking field, such as "Assigned to"
• Select a user or group with @mention in a work item discussion or field, pull request discussion, commit comments, or changeset or shelveset comments
• Select a user or group using @mention from a wiki page

As shown in the following image, start to enter a user in the people picker box until you find a match to the user name or security group.

Users and groups within the Project-scoped users group can only see and select users and groups in the project they're connected to from a people picker. To scope people pickers for all project members, see Limit identity search and selection.

View historical data

All project members can view identities that were added to a comment, discussion, or assignment. For example, everyone in the project (even users with the new restriction) can still see a user's name assigned to a work item when the user's no longer part of the project. The same is true for @mentions in PRs, comments, discussions, and more.

Another feasible approach is to have multiple projects. It can be a recommend approach if your organization is looking to accomodate the following scenarios:

• To prohibit or manage access to the information contained within a project to select groups
• To support custom work tracking processes for specific business units within your organization
• To support entirely separate business units that have their own administrative policies and administrators
• To support testing customization activities or adding extensions before rolling out changes to the working project
• To support an open-source software (OSS) project

You may want to add another project in following instances:

• To prohibit or manage access to the information contained within a project
• To support custom work tracking processes for specific business units within your organization
• To support entirely separate business units that have their own administrative policies and administrators
• To support testing customization activities or adding extensions before rolling out changes to the working project

Use private and public projects

You can have both private and public projects. You can also change the visibility of a project from private to public.

Private projects require that you add and manage user access. Users must sign in to gain access to a project, even if it's read-only access. All project members have access to the project and organization information. For more information, see Resources granted to project members.

Public projects don't require users to sign in to gain read-only access to many of the following services. Public projects provide support to share code with others and to support continuous integration/continuous deployment (CI/CD) of open-source software.

For more information about features and access levels for public projects, see Make a private project public.

Version control support

Git repositories can be browsed and cloned, but only via HTTPS. SSH and GVFS endpoints are unavailable. Clients like Visual Studio and IntelliJ work with the HTTPS clone URL but don't offer the connected experience linking to work items and other collateral.

Dashboard widget support

The following dashboard widgets don't display any useful information for nonmembers.

• Assigned to me
• Code tile
• New work item
• Pull request
• Query results
• Requirements quality
• Sprint burndown
• Sprint capacity
• Sprint overview
• Team members
• Welcome
• Work links
• Other links

• Dashboards: Each team can configure their set of dashboards to share information and monitor progress.
• Source control: For each Git repository, you can apply branch policies and define branch permissions. For TFVC repositories, you can set check-in policies.
• Work tracking: You can add fields, change the workflow, add custom rules, and add custom pages to the work item form of most work item types. You can also add custom work item types. For more information, see Customize an inheritance process.
• Azure Pipelines: You can fully customize your build and release pipelines, and define build steps, release environments, and deployment schedule. For more information, see Build and release.
• Azure Test Plans: You can define and configure test plans, test suites, test cases, and test environments. You can also add test steps within your build pipelines. For more information, see Exploratory and manual testing and continuous testing for your builds.

• Dashboards: Each team can configure their set of dashboards to share information and monitor progress.
• Source control: For each Git repository, you can apply branch policies and define branch permissions. For TFVC repositories, you can set check-in policies.
• Work tracking: You can add fields, change the workflow, add custom rules, and add custom pages to the work item form of most work item types. You can also add custom work item types. For more information, see Customize the on-premises XML process model.
• Build and release: You can fully customize your build and release pipelines, and define build steps, release environments, and deployment schedule. For more information, see Build and release.
• Test: You can define and configure test plans, test suites, test cases, and test environments. You can also add test steps within your build pipelines. For more information, see Exploratory and manual testing and continuous testing for your builds.

You can also use the az devops project CLI.