Note: To use SAML single sign-on, your organization must use GitHub Enterprise Cloud. For more information about how you can try GitHub Enterprise Cloud for free, see "Setting up a trial of GitHub Enterprise Cloud."
When you enforce SAML SSO, all members of the organization must authenticate through your IdP to access the organization's resources. Before enforcing SAML SSO in your organization, you should review organization membership, enable SAML SSO, and review organization members' SAML access. For more information, see the following.
|Add or remove members from your organization|
|Connect your IdP to your organization by enabling SAML SSO|
|Ensure that your organization members have signed in and linked their accounts with the IdP|
After you finish these tasks, you can enforce SAML SSO for your organization. For more information, see "Enforcing SAML single sign-on for your organization."
- SAML authentication is not required for organization members to perform read operations such as viewing, cloning, and forking of public resources.
- SAML authentication is not required for outside collaborators. For more information about outside collaborators, see "Roles in an organization."