Skip to main content

Disabling unauthenticated sign-ups

If you're using built-in authentication for your GitHub Enterprise Server instance, you can block unauthenticated people from creating new user accounts on your instance.

Who can use this feature

Site administrators can disable unauthenticated sign-ups on a GitHub Enterprise Server instance.

About unauthenticated sign-ups

When you use built-in authentication for your GitHub Enterprise Server instance, each person creates a personal account from an invitation or by signing up. By default, people who can access your instance while unauthenticated can create a new personal account on your instance. You can disable unauthenticated sign-ups and require an invitation to create a new user account on your instance.

Alternatively, you can configure external authentication for your GitHub Enterprise Server instance. If you use external authentication, you must invite people to use your instance through your authentication provider. For more information, see "About authentication for your enterprise."

Disabling unauthenticated sign-ups

  1. From an administrative account on GitHub Enterprise Server, in the upper-right corner of any page, click .

    Screenshot of the rocket ship icon for accessing site admin settings

  2. If you're not already on the "Site admin" page, in the upper-left corner, click Site admin.

    Screenshot of "Site admin" link

  3. In the left sidebar, click Management Console. Management Console tab in the left sidebar

  4. In the left sidebar, click Privacy. Privacy tab in the settings sidebar

  5. Unselect Enable sign-up. Enable sign-up checkbox

  6. Under the left sidebar, click Save settings.

    Screenshot of the save settings button in the Management Console

    Note: Saving settings in the Management Console restarts system services, which could result in user-visible downtime.

  7. Wait for the configuration run to complete.

    Configuring your instance