Skip to main content
GitHub Docs
All products
Authentication
Account security
Authentication to GitHub
Create a strong password
Update access credentials
Create a PAT
Reviewing your SSH keys
Deploy keys
Authorizing OAuth Apps
Authorizing GitHub Apps
Authorized integrations
Third-party applications
Review OAuth apps
Token expiration
Security log
Remove sensitive data
Sudo mode
Unauthorized access
Secure your account with 2FA
About 2FA
Configure 2FA
Configure 2FA recovery
Access GitHub with 2FA
Recover an account with 2FA
Disable 2FA
Connect with SSH
About SSH
Check for existing SSH key
Generate new SSH key
Add a new SSH key
Test your SSH connection
SSH key passphrases
Troubleshooting SSH
Recover SSH key passphrase
Permission denied (publickey)
Error: Bad file number
Error: Key already in use
Permission denied other-user
Permission denied other-repo
Agent failure to sign
ssh-add: illegal option -- K
Error: Unknown key type
SSH key audit
Verify commit signatures
Commit signature verification
Existing GPG keys
Generating a new GPG key
Add a new GPG key
Tell Git your signing key
Associate email with GPG key
Signing commits
Signing tags
Troubleshoot verification
Check verification status
Update expired GPG key
Use verified email in GPG key
Authentication
/
Verify commit signatures
Enterprise Server 3.5
Free, Pro, & Team
Enterprise Cloud
Enterprise Server 3.5
Enterprise Server 3.4
Enterprise Server 3.3
Enterprise Server 3.2
Enterprise Server 3.1
GitHub AE
All Enterprise Server releases
About versions
English
English
简体中文
(
Simplified Chinese
)
日本語
(
Japanese
)
Español
(
Spanish
)
Português do Brasil
(
Portuguese
)
Search GitHub Docs
GitHub Docs
Authentication
/
Verify commit signatures
Authentication
Get started
Account and profile
Authentication
Repositories
Enterprise administrators
Billing and payments
Site policy
Organizations
Code security
Pull requests
GitHub Issues
GitHub Actions
GitHub Copilot
GitHub Codespaces
GitHub Packages
Search on GitHub
Developers
REST API
GraphQL API
GitHub CLI
GitHub Discussions
GitHub Sponsors
Building communities
GitHub Pages
Education
GitHub Desktop
GitHub Support
Atom
Electron
CodeQL
npm
Enterprise Server 3.5
Free, Pro, & Team
Enterprise Cloud
Enterprise Server 3.5
Enterprise Server 3.4
Enterprise Server 3.3
Enterprise Server 3.2
Enterprise Server 3.1
GitHub AE
All Enterprise Server releases
About versions
English
English
简体中文
(
Simplified Chinese
)
日本語
(
Japanese
)
Español
(
Spanish
)
Português do Brasil
(
Portuguese
)
Search GitHub Docs
Managing commit signature verification
You can sign your work locally using GPG or S/MIME. GitHub Enterprise Server will verify these signatures so other people will know that your commits come from a trusted source.
About commit signature verification
Checking for existing GPG keys
Generating a new GPG key
Adding a new GPG key to your GitHub account
Telling Git about your signing key
Associating an email with your GPG key
Signing commits
Signing tags