About enabling GitHub Advanced Security
O GitHub Advanced Security ajuda os desenvolvedores a aprimorar e manter a segurança e a qualidade do código. Para obter mais informações, confira "Sobre o GitHub Advanced Security".
When you enable GitHub Advanced Security for your enterprise, repository administrators in all organizations can enable the features unless you set up a policy to restrict access. For more information, see "Enforcing policies for Advanced Security in your enterprise."
For guidance on a phased deployment of GitHub Advanced Security, see "Introduction to adopting GitHub Advanced Security at scale."
Checking whether your license includes GitHub Advanced Security
-
No canto superior � direita de GitHub Enterprise Server, clique na foto do perfil e clique em Configurações da empresa.
-
Na barra lateral da conta corporativa, clique em Configurações.
-
Na barra lateral esquerda, clique em Licença.
-
If your license includes GitHub Advanced Security, the license page includes a section showing details of current usage.
Prerequisites for enabling GitHub Advanced Security
-
Upgrade your license for GitHub Enterprise Server to include GitHub Advanced Security. For information about licensing, see "About billing for GitHub Advanced Security."
-
Download the new license file. For more information, see "Downloading your license for GitHub Enterprise."
-
Upload the new license file to your GitHub Enterprise Server instance. For more information, see "Uploading a new license to GitHub Enterprise Server."
-
Review the prerequisites for the features you plan to enable.
- Code scanning, see "Configuring code scanning for your appliance."
- Secret scanning, see "Configuring secret scanning for your appliance."
- Dependabot, see "Enabling Dependabot for your enterprise."
Enabling and disabling GitHub Advanced Security features
Aviso: alterar esta configuração fará com que os serviços voltados para o usuário no GitHub Enterprise Server sejam reiniciados. Você deve cronometrar essa mudança com cuidado, para minimizar o tempo de inatividade dos usuários.
-
Em uma conta administrativa no GitHub Enterprise Server, no canto superior direito de qualquer página, clique em .
-
Se você ainda não estiver na página "Administração do site", no canto superior esquerdo, clique em Administração do site.
-
Na barra lateral � esquerda, clique em Console de Gerenciamento .
-
Na barra lateral esquerda, clique em Segurança.
-
Under "Security," select the features that you want to enable and deselect any features you want to disable.
-
Na barra lateral esquerda, clique em Salvar configurações.
Observação: se você salvar as configurações no Console de Gerenciamento, isso reiniciará os serviços do sistema, o que poderá resultar em tempo de inatividade visível pelo usuário.
-
Aguarde a conclusão da execução de suas configurações.
When GitHub Enterprise Server has finished restarting, you're ready to set up any additional resources required for newly enabled features. For more information, see "Configuring code scanning for your appliance."
Enabling or disabling GitHub Advanced Security features via the administrative shell (SSH)
You can enable or disable features programmatically on your GitHub Enterprise Server instance. For more information about the administrative shell and command-line utilities for GitHub Enterprise Server, see "Accessing the administrative shell (SSH)" and "Command-line utilities."
For example, you can enable any GitHub Advanced Security feature with your infrastructure-as-code tooling when you deploy an instance for staging or disaster recovery.
-
SSH into your GitHub Enterprise Server instance.
-
Enable features for GitHub Advanced Security.
- To enable Code scanning, enter the following commands.
ghe-config app.minio.enabled true ghe-config app.code-scanning.enabled true
- To enable Secret scanning, enter the following command.
ghe-config app.secret-scanning.enabled true
- To enable the dependency graph, enter the following command.
ghe-config app.dependency-graph.enabled true
- To enable Code scanning, enter the following commands.
-
Optionally, disable features for GitHub Advanced Security.
- To disable code scanning, enter the following commands.
ghe-config app.minio.enabled false ghe-config app.code-scanning.enabled false
- To disable secret scanning, enter the following command.
ghe-config app.secret-scanning.enabled false
- To disable the dependency graph, enter the following command.
ghe-config app.dependency-graph.enabled false
- To disable code scanning, enter the following commands.
-
Apply the configuration.
ghe-config-apply