# What should be scope/permissions assigned to the Personal Access Token?

### Description

Personal access tokens (PATs) are used to authenticate into Azure DevOps. PAT needs to be created with required permissions based on entity type which needs to synchronize.

### Solution

* <code class="expression">space.vars.SITENAME</code> provides multiple ways to authenticate Integration User, one of the type is "Personal Access Token". Refer [Create Personal Access Token](https://docs.opshub.com/v7.215/connectors/azure-devops#create-personal-access-token) section to learn about how to create a Personal Access Token.
* Personal Access Token should be created with required permissions. Permissions are vary based on entity type you want to synchronize. Refer [Personal Access Token Minimum Required Permission](https://docs.opshub.com/v7.215/connectors/azure-devops#privileges-for-user) section under **User privileges** to learn about which permissions are required.