Okta

Configuring Provisioning for GitHub Enterprise Server

This guide provides the steps required to configure Provisioning for GitHub Enterprise Server and includes the following topics:


Features

The following provisioning features are supported:


Requirements

The Okta integration adds existing GitHub Enterprise Server users to the selected Organization and Teams managed by Okta, so be sure that GitHub user accounts are created before assigning a user to the GitHub app.

GitHub Enterprise Server does not support changes to a user's profile other than team memberships. Changing the username of a user can cause problems such as org/team unassignment.

When assigning a user to GitHub through Okta who is part of GitHub but not a member of the organization, the user will receive an invitation to join the org. Until the user accepts the invitation, they will be in pending status. Pending users will not show up during user imports nor can their profiles be updated.

Before you configure provisioning for GitHub Enterprise Server, make sure you have configured the following:

Once you have configured/confirmed your General Settings and Sign-on Options, click Next to take you back to the Provisioning tab (see below).


Configuration Steps

Configure your Provisioning settings for GitHub Enterprise Server as follows:

  1. Check the Enable API Integration box.

  2. Enter your GitHub API Credentials:

    • GitHub Organization.

    • Personal Access Token.

      githubprovisioning1.png

      If you do not have an API Access token:

      1. Go to your GitHub Enterprise Server instance and login to your account.

      2. Click on your icon button near the top right of the page, then select Settings from the drop down menu:

        “gitenterprise4.png"

        In this example, it is the green icon.

      3. From Settings, select Personal access tokens.

        “gitenterprise5.png"

      4. Select Generate new access token.

      5. In the New personal access token window, enter a Token description, then select the appropriate scopes (make sure to provide admin rights), then click Generate token.

        “gitenterprise6.png"

      6. Copy the generated token. Be sure to keep the token somewhere safe but accessible, once you leave the page, you are not able to copy the token again.

      7. Go back to Okta and enter your newly generated access token.

  3. Click Test API Credentials to verify the token. You should see a message that notifies you that GitHub Enterprise Server was verified successfully.

  4. Select To App in the left panel, then select the Provisioning to App Features you want to enable:

    “gitenterprise7.png"

    “gitenterprise9.png"

  5. Click Save.

  6. You can now assign people to the app, if needed.


Troubleshooting Tips