articleschannelstagsspacestoolkit
Microsoft Dev Blogs

How to subscribe to GitHub Enterprise with Advanced Security and Copilot Business/Enterprise: A Step-by-Step Guide

    View Original
    thumbnail

    Table of Contents

    Pre-requisites

    Ensure that you have the following ready:

    • An active Microsoft Azure Subscription for billing
    • An existing Microsoft Entra ID tenant
    • User roles with appropriate rights for Azure subscription and Entra ID tenant

    Step 1: Create a GitHub Enterprise Trial Account

    Begin by creating a GitHub Enterprise trial account:

    1. Go to https://github.com/enterprise
    2. Click on "Start a free trial"

    Step 2: Add an Azure Subscription

    Associate an Azure subscription with your GitHub Enterprise account:

    1. Go to [trial-portal-url]
    2. Sign in with your Microsoft Entra ID Cloud Application Administrator account
    3. Select the Azure subscription and click on "Connect"

    Step 3: [For EMU accounts only] Configure Entra ID as the GitHub Identity Provider (IdP)

    If using "Enterprise with managed users", integrate GitHub Enterprise with Entra ID:

    • Choose to integrate with SAML or OIDC based on future plans

    Step 4: Create Organizations and Repositories

    Create organizations and repositories on GitHub Enterprise:

    1. Go to [GitHub Enterprise URL]
    2. Create new organizations and repositories as needed

    Step 5: Enable GitHub Advanced Security (GHAS) for your Organizations and Repositories

    Configure GHAS for organizations and repositories:

    1. Go to Policies → Code security in GitHub enterprise
    2. Set policies for organizations/repositories
    3. Enable Dependabot, Code Scanning, and Secret Scanning
    4. Configure Content exclusion for files and paths
    5. Assign GitHub Copilot licenses to organization members
    6. Configure Copilot settings as required

    Repeat the above steps for additional organizations and members.