This version of GitHub Enterprise was discontinued on 2021-03-02. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise. For help with the upgrade, contact GitHub Enterprise support.

Updating your GitHub access credentials

GitHub Enterprise Server credentials include not only your password, but also the access tokens, SSH keys, and application API tokens you use to communicate with GitHub Enterprise Server. Should you have the need, you can reset all of these access credentials yourself.

In this article

Requesting a new password

  1. To request a new password, visit https://[hostname]/password_reset.
  2. Enter the email address associated with your personal GitHub Enterprise Server account, then click Send password reset email. The email will be sent to the backup email address if you have one configured.
    Password reset email request dialog
  3. We'll email you a link that will allow you to reset your password. You must click on this link within 3 hours of receiving the email. If you didn't receive an email from us, make sure to check your spam folder.
  4. After clicking on the link in your email, you'll be asked to enter a new password.
    Password recovery box

To avoid losing your password in the future, we suggest using a secure password manager, like LastPass, 1Password, or Keeper.

Changing an existing password

  1. Sign in (https://[hostname]/login) to GitHub Enterprise Server.
  2. In the upper-right corner of any page, click your profile photo, then click Settings.
    Settings icon in the user bar
  3. In the left sidebar, click Security.
    User account security settings
  4. Under "Change password", type your old password, a strong new password, and confirm your new password. For help creating a strong password, see "Creating a strong password"
  5. Click Update password.

For greater security, enable two-factor authentication in addition to changing your password. See About two-factor authentication for more details.

Updating your access tokens

See "Reviewing your authorized integrations" for instructions on reviewing and deleting access tokens. To generate new access tokens, see "Creating a personal access token."

Updating your SSH keys

See "Reviewing your SSH keys" for instructions on reviewing and deleting SSH keys. To generate and add new SSH keys, see "Generating an SSH key."

Resetting API tokens

If you have any applications registered with GitHub Enterprise Server, you'll want to reset their OAuth tokens. For more information, see the "Reset an authorization" endpoint.

Preventing unauthorized access

For more tips on securing your account and preventing unauthorized access, see "Preventing unauthorized access."