Skip to main content

Managing security managers in your organization

You can give your security team the least access they need to your organization by assigning a team to the security manager role.

Who can use this feature

Organization owners can assign the security manager role.

注意:安全经理角色处于公开测试阶段,可能会发生更改。

安全经理是组织级别的角色,组织所有者可以将其分配给组织中的任何团队。 应用后,该角色会授予团队中的每个成员管理整个组织的安全警报和设置的权限,以及对组织中所有存储库的读取权限。

Permissions for the security manager role

Members of a team with the security manager role have only the permissions required to effectively manage security for the organization.

  • Read access on all repositories in the organization, in addition to any existing repository access
  • Write access on all security alerts in the organization
  • Access to the organization's security overview
  • The ability to configure security settings at the organization level, including the ability to enable or disable GitHub Advanced Security
  • The ability to configure security settings at the repository level, including the ability to enable or disable GitHub Advanced Security

If a team has the security manager role, people with admin access to the team and a specific repository can change the team's level of access to that repository but cannot remove the access. For more information, see "Managing team access to an organization repository."

Manage repository access UI with security managers

Assigning the security manager role to a team in your organization

You can assign the security manager role to a maximum of 10 teams in your organization.

  1. 在 GitHub Enterprise Server 的右上角,单击你的个人资料照片,然后单击“你的组织”。 贵组织在配置文件菜单中

  2. 在组织旁边,单击“设置”。 设置按钮

  3. In the left sidebar, click Security & analysis. "Security & analysis" tab in organization settings

  4. Under Security managers, search for and select the team to give the role. Each team you select will appear in a list below the search bar. Add security manager

Removing the security manager role from a team in your organization

Warning: Removing the security manager role from a team will remove the team's ability to manage security alerts and settings across the organization, but the team will retain read access to repositories that was granted when the role was assigned. You must remove any unwanted read access manually. For more information, see "Managing team access to an organization repository."

  1. 在 GitHub Enterprise Server 的右上角,单击你的个人资料照片,然后单击“你的组织”。 贵组织在配置文件菜单中

  2. 在组织旁边,单击“设置”。 设置按钮

  3. In the left sidebar, click Security & analysis. "Security & analysis" tab in organization settings

  4. Under Security managers, to the right of the team you want to remove as security managers, click . Remove security managers