Skip to main content

Managing GitHub Advanced Security features for your enterprise

You can control GitHub Advanced Security features that secure and analyze code across all organizations owned by your enterprise.

Who can use this feature

Enterprise owners can manage Advanced Security features for organizations in an enterprise.

About management of Advanced Security features

You can use Advanced Security features to harden security for the organizations in your enterprise. To streamline management of Advanced Security, you can enable or disable each feature for all existing and/or new repositories within the organizations owned by your enterprise.

For information about buying a license for GitHub Advanced Security, see "About billing for GitHub Advanced Security."

If you have disallowed GitHub Advanced Security for an organization, that organization will not be affected by enabling a feature for all existing repositories or for all new repositories. For more information about disallowing GitHub Advanced Security for an organization, see "Enforcing policies for Advanced Security in your enterprise."

When you enable one or more security and analysis features for existing repositories, you will see any results displayed on GitHub within minutes.

If you enable security and analysis features, GitHub performs read-only analysis on your repository. For more information, see "About GitHub's use of your data."

Managing Advanced Security features

Note: If you enable GitHub Advanced Security, committers to these repositories will use seats on your GitHub Advanced Security license. This option is disabled if you have exceeded your license capacity. For more information, see "About billing for GitHub Advanced Security."

  1. In the top-right corner of GitHub.com, click your profile photo, then click Your enterprises. "Your enterprises" in drop-down menu for profile photo on GitHub Enterprise Cloud

  2. In the list of enterprises, click the enterprise you want to view. Name of an enterprise in list of your enterprises

  3. In the enterprise account sidebar, click Settings. Settings tab in the enterprise account sidebar

  4. In the left sidebar, click Code security & analysis.

  5. Optionally, enable or disable a feature for all existing repositories.

    • To the right of the feature, click Disable all or Enable all. If the control for "GitHub Advanced Security" is disabled, you have no available seats in your GitHub Advanced Security license.

    Screenshot of "Enable all" or "Disable all" buttons for "Configure security and analysis" features

    • To confirm the change, click Enable/Disable all or Enable/Disable for eligible repositories.

      Screenshot of button to enable feature for all the eligible repositories in the organization

  6. Optionally, to enable or disable a feature automatically when new repositories are added, select the checkbox below the feature.

    Screenshot of a checkbox for enabling a feature for new repositories

  7. Optionally, to include a resource link in the message that members will see when they attempt to push a secret, select Add a resource link in the CLI and web UI when a commit is blocked, then type a URL, and click Save link.

    Note: When a custom link is configured for an organization, the organization-level value overrides the custom link set for the enterprise. For more information, see "Protecting pushes with secret scanning".

    Screenshot showing checkbox and text field for enabling a custom link