👋 We've unified all of GitHub's product documentation in one place! Check out the content for REST API, GraphQL API, and Developers. Learn more on the GitHub blog.


Publicamos atualizações frequentes em nossa documentação, e a tradução desta página ainda pode estar em andamento. Para obter as informações mais recentes, acesse a documentação em inglês. Se houver problemas com a tradução desta página, entre em contato conosco.

Viewing and managing a member's SAML access to your organization

You can view and revoke an organization member's linked identity, active sessions, and authorized credentials.

Organization owners can view and manage a member's SAML access to an organization.

Logon único SAML estão disponíveis com GitHub Enterprise Cloud. Para obter mais informações, consulte os "Produtos do GitHub".

Neste artigo

About SAML access to your organization

When you enable SAML single sign-on for your organization, each organization member can link their external identity on your identity provider (IdP) to their existing GitHub account. To access your organization's resources on GitHub, the member must have an active SAML session in their browser. To access your organization's resources using the API or Git, the member must use a personal access token or SSH key that the member has authorized for use with your organization.

You can view and revoke each member's linked identity, active sessions, and authorized credentials on the same page.

Viewing and revoking a linked identity

You can view the single sign-on identity that a member has linked to their GitHub account. When available, the entry will include SCIM data. For more information, see "About SCIM."

If a member links the wrong identity to their GitHub account, you can revoke the linked identity to allow the member to try again.

  1. In the top right corner of GitHub, click your profile photo, then click Your profile.
    Profile photo
  2. On the left side of your profile page, under "Organizations", click the icon for your organization.
    organization icons
  3. Under your organization name, click People.
    The People tab
  4. Click on the name of the member whose linked identity you'd like to view or revoke.
  5. In the left sidebar, click SAML identity linked.
    SAML identity linked
  6. Under "Linked SSO identity", view the linked SSO identity for the member.
  7. To revoke the linked identity, to the right of the identity, click Revoke.
    Revoke button
  8. Read the information, then click Revoke external identity.

Viewing and revoking an active SAML session

  1. In the top right corner of GitHub, click your profile photo, then click Your profile.
    Profile photo
  2. On the left side of your profile page, under "Organizations", click the icon for your organization.
    organization icons
  3. Under your organization name, click People.
    The People tab
  4. Click on the name of the member whose SAML session you'd like to view or revoke.
  5. In the left sidebar, click SAML identity linked.
    SAML identity linked
  6. Under "Active SAML sessions", view the active SAML sessions for the member.
  7. To revoke a session, to the right of the session you'd like to revoke, click Revoke.
    Revoke button

Viewing and revoking authorized credentials

You can see each personal access token and SSH key that a member has authorized for API and Git access. Only the last several characters of each token or key are visible. If necessary, work with the member to determine which credentials you should revoke.

  1. In the top right corner of GitHub, click your profile photo, then click Your profile.
    Profile photo
  2. On the left side of your profile page, under "Organizations", click the icon for your organization.
    organization icons
  3. Under your organization name, click People.
    The People tab
  4. Click on the name of the member whose authorized credentials you'd like to view or revoke.
  5. In the left sidebar, click SAML identity linked.
    SAML identity linked
  6. Under "Authorized credentials", view the authorized credentials for the member.
  7. To revoke credentials, to the right of the credentials you'd like to revoke, click Revoke.
    Revoke button
  8. Read the information, then click I understand, revoke access for this token.

Leia mais

Pergunte a uma pessoa

Não consegue encontrar o que procura?

Entrar em contato