- Available for both single-tenant and multi-tenant Qodo environments.
- Not sure which deployment model you need? See Install Qodo in your Git provider for a full comparison, or check your deployment type.
Already using Qodo on Azure DevOps? Migrating to the new wizard gives you full access to available Qodo features, better performance and reliability, and ensures your installation appears on the Repositories page. See the Migration guide.
- OAuth app registration (recommended): Best for enterprise environments. Uses Azure AD app registration for automated access.
- Personal access token (PAT): Suitable when Azure AD admin access is unavailable.
Prerequisites
Before you begin, ensure you have:- Access to your Qodo portal.
- A Qodo environment configured for Azure DevOps (provided by your Qodo Account Manager).
-
OAuth: Azure AD administrator permissions to create app registrations and grant admin consent.
Required OAuth permissions
Before installing Qodo for Azure DevOps, verify that your organization meets all of the requirements below. Missing any of these prerequisites may cause installation or authorization failures.1. Verify Microsoft Entra ID (Azure AD) permissions
Qodo requires authorization through Microsoft Entra ID. The person performing the installation must have one or both of the following roles:Global Administrator(recommended)Cloud Application Administrator
- Open the Microsoft Entra admin center.
- Navigate to Identity > Users > Your User > Assigned Roles.
- Verify that one of the required roles is assigned.
If the role is missing, contact your Microsoft Entra administrator and request one of the required roles before proceeding.2. Verify Azure DevOps organization permissions
The installer must be one of:Organization OwnerProject Collection Administrator
- Open Azure DevOps.
- Go to Organization Settings > Permissions.
- Verify your account belongs to
Project Collection AdministratorsorOrganization Owners.
If missing, ask an Azure DevOps administrator to grant the required access.3. Verify application installation permissions
Your organization must allow administrators to install Azure DevOps applications. Confirm that you can:- Install marketplace applications
- Create service connections
- Authorize applications
If unsure, ask your Azure DevOps administrator whether marketplace app installation is permitted for your account.4. Verify user license availability
Qodo requires an Azure DevOps Basic license.- In Azure DevOps, go to Organization Settings > Users.
- Verify that at least one
Basiclicense is available and that your organization has not reached its user limit.
5. Verify admin consent policies
Your organization may block third-party application authorization. Verify with your Entra administrator that:- Admin consent can be granted for applications
- Third-party applications are allowed
- No tenant policies block application registration or authorization
6. Verify enterprise application restrictions
Some organizations use security policies that restrict which applications can be installed. Ask your Entra administrator to confirm:- Qodo applications are allowed by tenant policy
- No Conditional Access policy blocks application authorization
- No App Governance policy blocks third-party applications
7. Verify repository access requirements
After installation, Qodo must be able to access Azure DevOps resources. Confirm that the installation account has access to:- Azure DevOps projects
- Repositories
- Pull requests
- Service hooks and webhooks
-
PAT: A personal access token with the required scopes.
Required PAT permissions
Before you begin- Ensure you are added to the required Azure DevOps organization.
- Ensure you have sufficient permissions to create and manage Service Hooks (webhooks), as well as repository and pull request access.
- To allow access across all projects: Add the PAT user to Organization Settings > Permissions > Project Collection Administrators.
- To allow access only to specific projects: Add the PAT user to the target project via Project Settings > Permissions > Project Administrators, or via Organization Settings > Users > Manage users. Project-scoped access is recommended when integration is needed only for selected projects.
- Go to Azure DevOps.
- Open User Settings in the top-right corner.
- Select Personal Access Tokens from the dropdown.

- Click New Token.
The Organization dropdown controls the token’s scope. Selecting a specific organization restricts the token to that organization only. Selecting All accessible organizations grants access across all organizations.Required scopes
PAT scopes alone are not sufficient. The user who creates the PAT must also have project-level permissions (typically Project Admin) for webhook creation and PR operations to succeed.
Access the Azure DevOps integration
1
Log in to your Qodo portal.
2
From the left-hand navigation menu, select Integrations.
3
Locate the Azure DevOps integration card and click Add installation to launch the installation wizard.
Install Qodo on Azure DevOps
1
Installation type
Select the authentication method that fits your environment. OAuth app registration is selected by default. If you are using a personal access token instead, select the Personal access token (PAT) tab below. Steps 2 and 3 do not apply. Proceed directly to Step 4.

- OAuth app registration (Recommended)
- Personal access token (PAT)
This method connects using Azure AD app registration and is best for enterprise security and automated access.Rules and guidelines
- The Qodo master app is used only for installation and lifecycle management.
- Day-to-day Azure DevOps operations use the tenant-specific Qodo-code-review app.
- Removing the Qodo master app may prevent reinstall, repair, or uninstall operations.
- A Microsoft Entra ID (work or school) account is required. Personal Microsoft accounts are not supported for organizational consent and Azure DevOps app installation.
- Use the Qodo master app to securely configure the integration.
- Create a tenant-specific Azure application named Qodo-code-review.
- Grant it Azure DevOps access required for PR analysis and webhooks.
- Store the generated credentials securely for integration management.
2
Review manifest
OAuth only. PAT users: skip to Step 4.
1
Review the manifest
Review the application manifest before installation.
The manifest defines the Microsoft Graph permissions Qodo requires:

2
Click Continue.
3
Install guide
OAuth only. PAT users: skip to Step 4.
1
Azure Admin
Qodo requires temporary Microsoft Graph permissions to:
- Create the tenant-specific Qodo-code-review application.
- Generate its credentials.
- Grant Azure DevOps access required for the integration.
- Manage future updates and uninstall operations.

2
Add organization authorization
This step allows Qodo to:
- Access repositories selected for code review.
- Create and manage webhooks.
- Analyze pull requests.
- Post review feedback.

- Click Install (opens in a new tab) to begin.
4
Connect repositories
1
Find your repositories
Use the search bar to find specific repositories, or browse the tree: Organization > Projects > Repositories.
This step may take up to a minute to load.

2
Select repositories
Select individual repositories, an entire project, or the full organization.
Repositories that already have Qodo installed are not available for selection. To reinstall, remove the existing installation first.
3
Continue
Click Setup to continue. If you see an error, see Required OAuth permissions.
5
Check connection
Qodo automatically sets up the required webhooks.
Once complete, a confirmation is displayed.

- Click Sync to proceed.
6
Enable Qodo
Qodo is now enabled for the selected repositories.
The confirmation screen shows the number of connected repositories and confirms that AI code review and auto rule generation are active.

- Click Finish installation.
Verify the installation
1
Open a new pull request in one of the connected repositories and confirm Qodo is triggered automatically.
2
Add a comment using one of the supported commands:
/agentic_describe/agentic_review
Next steps
- Repositories page: Enable or disable Qodo on individual repositories within your current scope, in the Qodo portal.
- Using Qodo in PRs: Get the most out of Qodo.



