Allow the use of service accounts when PATs are disabled by API
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
Proposal
One of our customers (Internal Link) is interested in having the ability to disable the use of access tokens however still be able to use service accounts (& their PATs) for machine to machine communication. We currently disable all PATs on SM when that setting is disable. See Update FedRamp PAT creation to be an Applicatio... (#384201 - closed). Note that the option to disable PATs is not available on SaaS currently until Make it possible to disable Personal Access Tok... (#369504 - closed) is completed.
This task is for the request to exempt service account PATs from the disablement. As part of implementation we should consider whether this needs a separate setting to ensure FedRamp compliance is maintained for users that don't want any PATs used whatsoever.