对 IAM 使用企业托管用户
要使用身份提供程序管理企业中的用户,必须为企业启用 企业托管用户,这可用于 GitHub Enterprise Cloud。 更多信息请参阅“关于 企业托管用户”。
About Enterprise Managed Users
You can centrally manage identity and access for your enterprise members on GitHub from your identity provider.
为企业托管用户配置 SAML 单点登录
您可以通过配置安全断言标记语言 (SAML) 单点登录 (SSO) 来自动管理对 GitHub 企业帐户的访问。
Configuring OIDC for Enterprise Managed Users
You can automatically manage access to your enterprise account on GitHub by configuring OpenID Connect (OIDC) single sign-on (SSO) and enable support for your IdP's Conditional Access Policy (CAP).
Configuring SCIM provisioning for Enterprise Managed Users
You can configure your identity provider to provision new users and manage their membership in your enterprise and teams.
Configuring SCIM provisioning for Enterprise Managed Users with Okta
You can provision new users and manage their membership of your enterprise and teams using Okta as your identity provider.
Managing team memberships with identity provider groups
You can manage team membership on GitHub Enterprise Cloud through your identity provider (IdP) by connecting IdP groups with your 具有托管用户的企业.
关于对 IdP 的条件访问策略的支持
当您的企业使用 OIDC SSO 时,GitHub 将使用 IdP 的条件访问策略 (CAP) 验证对您的企业及其资源的访问。
Migrating from SAML to OIDC
If you're using SAML to authenticate members in your 具有托管用户的企业, you can migrate to OpenID Connect (OIDC) and benefit from support for your IdP's Conditional Access Policy.