Skip to main content

Configuring built-in authentication

When you use the default authentication method, all authentication details are stored on your GitHub Enterprise Server instance.

Who can use this feature?

Site administrators can configure authentication for a GitHub Enterprise Server instance.

About built-in authentication

By default, GitHub Enterprise Server uses built-in authentication. Each person creates a user account on your GitHub Enterprise Server instance from an invitation or by signing up, and then authenticates with the credentials for the account to access your instance. Your GitHub Enterprise Server instance stores the authentication information for the account.

You can prevent unauthenticated people from creating new user accounts on your instance. For more information, see Disabling unauthenticated sign-ups.

Alternatively, you can configure external authentication for your GitHub Enterprise Server instance. If you use external authentication, you must invite people to use your instance through your authentication provider. For more information, see About identity and access management.

Configuring built-in authentication

  1. From an administrative account on GitHub Enterprise Server, in the upper-right corner of any page, click .
  2. If you're not already on the "Site admin" page, in the upper-left corner, click Site admin.
  3. In the " Site admin" sidebar, click Management Console.
  4. In the "Settings" sidebar, click Authentication.
  5. Under "Authentication", select Built in authentication.

Two-factor authentication

When using LDAP or built-in authentication, two-factor authentication is supported. Organization owners can require members to have two-factor authentication enabled.

Creating your account

Once your instance has been created, you'll need to create your own admin account.

  1. On the "Create Admin Account" page at http(s)://[hostname]/join, type your username, password, and email address, then click Create an account.
  2. Sign in to your GitHub Enterprise Server instance at http(s)://HOSTNAME/login.

Next steps

After you configure built-in authentication and create your administrative account, you can invite people to create accounts and use your instance. For more information, see Inviting people to use your instance.

Further reading