Viewing and managing a user's SAML access to your enterprise

You can view and revoke an enterprise member's active SAML sessions.

Who can use this feature?

Enterprise owners

Instances that have configured SCIM provisioning

In this article

About SAML access to your enterprise account

When you enable SAML single sign-on for your enterprise account, each enterprise member can link their external identity on your identity provider (IdP) to their existing account on your GitHub Enterprise Server instance. To access each organization's resources on GitHub Enterprise Server, the member must have an active SAML session in their browser. Enterprise owners can view and revoke a member's active SAML sessions at any time.

Viewing and revoking an active SAML session

  1. In the top-right corner of GitHub Enterprise Server, click your profile photo, then click Enterprise settings.

    Screenshot of the drop-down menu that appears when you click the profile photo on GitHub Enterprise Server. The "Enterprise settings" option is highlighted in a dark orange outline.

  2. On the left side of the page, in the enterprise account sidebar, click People.

  3. Click on the name of the member whose SAML session you'd like to view or revoke.

  4. In the left sidebar, click SAML identity linked.

    Screenshot of the people summary for @octocat. A link, labeled "SAML identity linked", is highlighted with an orange outline.

  5. Under "Active SAML sessions", view the active SAML sessions for the member.

  6. To revoke a session, to the right of the session you'd like to revoke, click Revoke.