GitHub Enterprise Cloud
Organizations on GitHub Cloud can use SSO as an easy way to login with a shared credential
SAML SSO gives organization owners and enterprise owners on GitHub a way to control and secure access to organization resources like repositories, issues, and pull requests. Organization owners can invite your user account on GitHub to join their organization that uses SAML SSO, which allows you to contribute to the organization and retain your existing identity and contributions on GitHub.
When you access resources within an organization that uses SAML SSO, GitHub will redirect users Auth0 to authenticate. After you successfully authenticate with your account on Auth0, Auth0 redirects you back to GitHub, where you can access the organization's resources.
Full Enterprise Control
Enterprise owners can also enforce SAML SSO for all organizations in an enterprise account.
Access controls into API and Git through CLI
To access the organization's protected resources using the API and Git on the command line, members must authorize and authenticate with a personal access token or SSH key.
Manage users through Auth0
You can use team synchronization to automatically add and remove team members in an organization through Auth0.
The GitHub Enterprise Cloud Single Sign-on (SSO) Integration creates a client application that uses Auth0 for authentication and provides SSO capabilities for GitHub Enterprise Cloud. Your users log in to GitHub Enterprise Cloud with Auth0 identity providers, which means the identity provider performs the identity credentials verification.
Before you begin:
- Sign up for a GitHub Enterprise Cloud account.
- Set up a connection, which is a source of users. Connections can be databases, social identity providers, or enterprise identity providers, and can be shared among different applications. You may set up more than one connection for use with SSO integrations.
Configure Auth0 SSO Integration
Enter a name for your SSO Integration, configure the following settings, and click Save.
|Callback URL||URL to which the user is redirected after login (|
|Audience||Your GitHub Enterprise Cloud URL (|
|Use Auth0 instead of the IdP to do Single Sign-on (SSO). **Legacy tenants only.**||If enabled, Auth0 will handle SSO instead of GitHub Enterprise Cloud.|
Configure integration with GitHub Enterprise Cloud
To configure the integration with GitHub Enterprise Cloud, follow the instructions listed in the Tutorial view (which will appear when you save the initial configuration settings).
Choose the connections to use with your SSO integration. Users in enabled connections will be allowed to log in to GitHub Enterprise Cloud. By default, all configured connections are enabled.
Select the Connections view.
Toggle the sliders next to connection names to enable or disable them.