Enforcing policies for Advanced Security in your enterprise account

Enterprise owners can enforce policies to manage GitHub Advanced Security features for organizations owned by an enterprise account.

GitHub Advanced Security licenses are available for enterprise accounts on GitHub Enterprise Cloud and GitHub Enterprise Server. GitHub Advanced Security is also included in all public repositories on GitHub.com. For more information, see "About GitHub's products."

About GitHub Advanced Security

GitHub Advanced Security helps developers improve and maintain the security and quality of code. For more information, see "About GitHub Advanced Security."

Enforcing a policy for Advanced Security features

GitHub bills for Advanced Security on a per-committer basis. For more information, see "Managing licensing for GitHub Advanced Security."

You can enforce a policy that controls whether repository administrators are allowed to enable features for Advanced Security in an organization's repositories. You can configure a policy for all organizations owned by your enterprise account, or for individual organizations that you choose.

Disallowing Advanced Security for an organization prevents repository administrators from enabling Advanced Security features for additional repositories, but does not disable the features for repositories where the features are already enabled. For more information about configuration of Advanced Security features, see "Managing security and analysis settings for your organization" or "Managing security and analysis settings for your repository."

  1. In the top-right corner of GitHub, click your profile photo, then click Your enterprises. "Your enterprises" in drop-down menu for profile photo on GitHub

  2. In the list of enterprises, click the enterprise you want to view. Name of an enterprise in list of your enterprises

  3. In the enterprise sidebar, click Policies. Policies tab in the enterprise account sidebar

  4. Under Policies, click "Advanced Security." "Advanced Security" policies in sidebar

  5. Under "GitHub Advanced Security", select the drop-down menu and click a policy for the organizations owned by your enterprise. Drop-down to select Advanced Security policy for organizations in the enterprise account

  6. Optionally, if you chose Allow for selected organizations, to the right of an organization, select the drop-down menu to allow or disallow Advanced Security for the organization. Drop-down to select Advanced Security policy for individual organization in the enterprise account

Did this doc help you?Privacy policy

Help us make these docs great!

All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.

Make a contribution

Or, learn how to contribute.