About policies for GitHub Advanced Security in your enterprise
GitHub Advanced Security helps developers improve and maintain the security and quality of code. For more information, see "About GitHub Advanced Security." For more information, see "About GitHub Advanced Security."
If you purchase a license for GitHub Advanced Security, any organization on your GitHub Enterprise Server instance can use Advanced Security features. You can enforce policies to control how members of your enterprise on GitHub Enterprise Server use Advanced Security.
Enforcing a policy for the use of GitHub Advanced Security in your enterprise's organizations
GitHub bills for Advanced Security on a per-committer basis. For more information, see "Managing licensing for GitHub Advanced Security."
You can enforce a policy that controls whether repository administrators are allowed to enable features for Advanced Security in an organization's repositories. You can configure a policy for all organizations owned by your enterprise account, or for individual organizations that you choose.
Disallowing Advanced Security for an organization prevents repository administrators from enabling Advanced Security features for additional repositories, but does not disable the features for repositories where the features are already enabled. For more information about configuration of Advanced Security features, see "Managing security and analysis settings for your organization" or "Managing security and analysis settings for your repository."
In the top-right corner of GitHub Enterprise Server, click your profile photo, then click Enterprise settings.
In the enterprise sidebar, click Policies.
Under Policies, click "Advanced Security."
Under "GitHub Advanced Security", select the dropdown menu, then click a policy for the organizations owned by your enterprise.
Optionally, if you chose Allow for selected organizations, to the right of an organization, select the drop-down menu to allow or disallow Advanced Security for the organization.