Skip to main content

Preparing to enforce SAML single sign-on in your organization

Before you enforce SAML single sign-on in your organization, you should verify your organization's membership and configure the connection settings to your identity provider.

Note: To use SAML single sign-on, your organization must use GitHub Enterprise Cloud. For more information about how you can try GitHub Enterprise Cloud for free, see "Setting up a trial of GitHub Enterprise Cloud."

When you enforce SAML SSO, all members of the organization must authenticate through your IdP to access the organization's resources. Before enforcing SAML SSO in your organization, you should review organization membership, enable SAML SSO, and review organization members' SAML access. For more information, see the following.

TaskMore information
Add or remove members from your organization
Connect your IdP to your organization by enabling SAML SSO
Ensure that your organization members have signed in and linked their accounts with the IdP

After you finish these tasks, you can enforce SAML SSO for your organization. For more information, see "Enforcing SAML single sign-on for your organization."

Notes:

  • SAML authentication is not required for organization members to perform read operations such as viewing, cloning, and forking of public resources.
  • SAML authentication is not required for outside collaborators. For more information about outside collaborators, see "Roles in an organization."