Skip to main content

Displaying IP addresses in the audit log for your enterprise

You can display the source IP address for events in your enterprise's audit log.

Enterprise owners can display IP addresses in the audit log for an enterprise.

About display of IP addresses in the audit log

By default, GitHub Enterprise Cloud does not display the source IP address for events in your enterprise's audit log. Optionally, to ensure compliance and respond to threats, you can display the full IP address associated with the actor responsible for each event. Actors are typically users, but can also be apps or integrations.

You are responsible for meeting any legal obligations that accompany the viewing or storage of IP addresses displayed within your enterprise's audit log.

If you choose to display IP addresses, the IP addresses only appear in your enterprise's audit log. IP addresses will not appear for events in the audit logs for individual organizations owned by your enterprise. For more information about organization audit logs, see "Reviewing the audit log for your organization."

You can display IP addresses in the audit log regardless of which authentication method you use for your enterprise on GitHub.com. Para obtener más información, consulta la sección "Acerca de la autenticación para tu empresa".

When anyone creates an account on GitHub.com, the person agrees to GitHub's collection of basic information about connections to GitHub's services, including source IP address. For more information, see "GitHub Privacy Statement."

Events that display IP addresses in the audit log

GitHub Enterprise Cloud displays an IP address in the audit log when a member of the enterprise interacts with a resource owned by your enterprise or an organization in your enterprise. For example, you will see an IP address for audited events involving an internal or private repository owned by an organization in your enterprise, or resources associated with those repositories, such as an issue, pull request, action, or project.

If members of your enterprise access GitHub.com with personal accounts that they manage, because you do not use Usuarios Administrados de Enterprise, GitHub Enterprise Cloud does not display an event or IP address in the audit log for the following actions.

  • Authentication to GitHub.com
  • Interactions with a resource owned by the personal account, including a repository, gist, or project
  • Interactions with a public repository owned by an organization in your enterprise

Enabling display of IP addresses in the audit log

  1. En la esquina superior derecha de GitHub.com, da clic en tu foto de perfil y luego en Tus empresas. "Tus empresas" en el menú desplegable de la foto de perfil en GitHub Enterprise Cloud

  2. En la lista de empresas, da clic en aquella que quieras ver. Nombre de una empresa en la lista de tus empresas

  3. En la barra lateral de la cuenta de empresa, haz clic en Settings (Configuraciones). Pestaña Settings (Configuraciones) en la barra lateral de la cuenta de empresa

  4. Dentro de " Parámetros de ", haz clic en Audit log (Registro de auditoría). Pestaña de registro de auditoría en la barra lateral de la cuenta de empresa

  5. Under "Audit log", click Source IP disclosure.

    Screenshot of "Source IP disclosure" tab

  6. Under "Disclose actor IP addresses in audit logs", select Enable source IP disclosure.

    Screenshot of checkbox to enable display of IP addresses in audit logs

  7. Haz clic en Save (guardar).

After you enable the feature, you can access the audit log to view events that include IP addresses. Para obtener más información, consulta la sección "Acceder a la bitácora de auditoría de tu empresa".