# Azure Repos - install and configure using Docker {% hint style="info" %} **Feature availability** Snyk Azure Repos are available only for Azure DevOps/TFS 2020 or above. {% endhint %} Before installing, review the [prerequisites](https://docs.snyk.io/snyk-platform-administration/snyk-broker/classic-broker/install-and-configure-snyk-broker/azure-repos-prerequisites-and-steps-to-install-and-configure-broker) and the general instructions for installation using [Docker](https://docs.snyk.io/snyk-platform-administration/snyk-broker/classic-broker/install-and-configure-snyk-broker/install-and-configure-broker-using-docker). This integration is useful to ensure a secure connection with your on-premise or cloud Azure Repos deployment. ## Configure Broker to be used with Azure Repos To use the Broker Client with [Azure](https://azure.microsoft.com/en-us/services/devops/), run `docker pull snyk/broker:azure-repos`. Refer to [Azure Repos - environment variables for Snyk Broker](https://docs.snyk.io/snyk-platform-administration/snyk-broker/classic-broker/install-and-configure-snyk-broker/azure-repos-prerequisites-and-steps-to-install-and-configure-broker/azure-repos-environment-variables-for-snyk-broker) for definitions of the environment variables. If necessary, go to the [Advanced configuration page](https://docs.snyk.io/snyk-platform-administration/snyk-broker/classic-broker/install-and-configure-snyk-broker/advanced-configuration-for-snyk-broker-docker-installation) and make any configuration changes needed, such as providing the CA (Certificate Authority) to the Broker Client configuration if the Azure Repos instance is using a private certificate, and setting up [proxy support](https://docs.snyk.io/snyk-platform-administration/snyk-broker/classic-broker/install-and-configure-snyk-broker/advanced-configuration-for-snyk-broker-docker-installation/proxy-support-with-docker). ## Docker run command to set up a Broker Client for Azure Repos Copy the following command to set up a fully configured Broker Client to analyze Open Source, IaC, Container, Code files, and Snyk Essentials information for one Azure organization. Enable [Snyk Essentials](https://docs.snyk.io/scan-with-snyk/snyk-essentials) to identify your application assets, monitor them, and prioritize the risks. {% hint style="info" %} **Multi-tenant settings for regions**\ When installing, you must add a command in your script to set the `BROKER_SERVER_URL`. This is the URL of the Broker server for the region where your data is hosted. For the commands and URLs to use, see [Broker URLs](https://docs.snyk.io/snyk-data-and-governance/regional-hosting-and-data-residency#broker-server-urls). {% endhint %} Note that if you have more than one Azure organization, you must deploy a Broker for each one. Snyk Essentials is set by default to `false`. Enable it by setting the flag to `true`. ```bash docker run --restart=always \ -p 8000:8000 \ -e BROKER_TOKEN= \ -e BROKER_SERVER_URL= \ -e AZURE_REPOS_TOKEN= \ -e AZURE_REPOS_ORG= \ -e AZURE_REPOS_HOST= \ -e PORT=8000 \ -e BROKER_CLIENT_URL= \ -e ACCEPT_IAC=tf,yaml,yml,json,tpl \ -e ACCEPT_CODE=true \ -e ACCEPT_ESSENTIALS=true \ snyk/broker:azure-repos ``` ## Start the Broker Client container and verify the connection with Azure Repos Paste the Broker Client configuration to start the Broker Client container. Once the container is up, the Azure Repos Integrations page shows the connection to Azure Repos and you can `Add Projects.` ## Basic troubleshooting for Broker with Azure Repos * Run `docker logs ` to look for any errors, where `container id` is the Azure Repos Broker container ID. * Ensure relevant ports are exposed to Azure Repos. * Make sure that file permissions for the local path to the `accept.json` file, as well as the `accept.json` file itself, are correct and accessible.