Review the applications managed by your organization to verify that no new applications with expansive permissions were authorized and that the callback URLs haven't changed.

  1. Profile photo
    In the top right corner of GitHub Enterprise, click your profile photo, then click Your profile.

  2. organization icons
    On the left side of your profile page, under "Organizations", click the icon for your organization.

  3. Organization settings button
    Under your organization name, click Settings.

  4. OAuth Applications tab
    In the left sidebar, click OAuth Applications.

  5. Applications list for organizations
    Under "Organization applications", click the name of an application to review it.
  6. Ensure that the callback URL and description are correct. If you suspect that malicious activity has occurred, click Revoke all user tokens to automatically log out all of your users and ensure that their data will have no more unauthorized access.