Skip to main content

This version of GitHub Enterprise will be discontinued on 2022-06-03. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise. For help with the upgrade, contact GitHub Enterprise support.

Configuring built-in authentication

When you use the default authentication method, all authentication details are stored on your GitHub Enterprise Server instance.

Site administrators can configure authentication for a GitHub Enterprise Server instance.

About built-in authentication

By default, GitHub Enterprise Server uses built-in authentication. Each person creates a user account on your GitHub Enterprise Server instance from an invitation or by signing up, and then authenticates with the credentials for the account to access your instance. Your GitHub Enterprise Server instance stores the authentication information for the account.

You can prevent unauthenticated people from creating new user accounts on your instance. For more information, see "Disabling unauthenticated sign-ups."

Alternatively, you can configure external authentication for your GitHub Enterprise Server instance. If you use external authentication, you must invite people to use your instance through your authentication provider. For more information, see "About authentication for your enterprise."

Configuring built-in authentication

  1. From an administrative account on GitHub Enterprise Server, in the upper-right corner of any page, click .

    Screenshot of the rocket ship icon for accessing site admin settings

  2. If you're not already on the "Site admin" page, in the upper-left corner, click Site admin.

    Screenshot of "Site admin" link

  3. In the left sidebar, click Management Console. Management Console tab in the left sidebar

  4. In the left sidebar, click Authentication. Authentication tab in the settings sidebar

  5. Select Built in authentication. Select built-in authentication option

Two-factor authentication

When using LDAP or built-in authentication, two-factor authentication is supported. Organization administrators can require members to have two-factor authentication enabled.

Creating your account

Once your instance has been created, you'll need to create your own admin account.

  1. On the "Create Admin Account" page at http(s)://[hostname]/join, choose your username, password, and email address, then click Create an account. Create Admin Account
  2. Sign in to your GitHub Enterprise Server instance at http(s)://HOSTNAME/login.

Next steps

After you configure built-in authentication and create your administrative account, you can invite people to create accounts and use your instance. For more information, see "Inviting people to use your instance."

Further reading