Allison explains new enterprise team features in GitHub Enterprise Cloud, highlighting improved role management, centralized enterprise security, and advanced governance for organizations and repositories.

Managing Roles and Governance via Enterprise Teams in GitHub Enterprise Cloud

Author: Allison

GitHub Enterprise Cloud continues to expand its enterprise management capabilities with the public preview of enterprise teams for managing Copilot Business licenses and broader platform governance. These updates provide enterprise owners with powerful tools for scaling policies, managing permissions, and improving security across multiple organizations.

Key Enhancements in Public Preview

  • Assign Enterprise Teams to Organizations: Easily designate groups of users to multiple organizations without repeated configuration.
  • Custom and Predefined Enterprise Roles: Assign custom or out-of-the-box roles (e.g., Enterprise Security Manager) to teams and individuals across the enterprise.
  • Granular Permissions and Roles: Organization and repository owners can assign roles within their scope, although only enterprise owners can grant or revoke certain permissions.
  • Ruleset Bypass Lists: Assign enterprise teams and roles to bypass lists, giving fine-grained control over compliance and exceptions for repository rulesets.

Enterprise Security Manager Role

Security teams now benefit from the new predefined Enterprise Security Manager (ESM) role, available for GitHub Code Security, Secret Protection, and Advanced Security customers. The ESM role enables:

  • Centralized management of alerts (code scanning, secret scanning, Dependabot)
  • Enterprise-wide configuration of security settings and custom scanning patterns
  • Approval and review of delegated alert dismissals and push protection bypass requests
  • Enterprise-level use of security-related APIs
  • Streamlined compliance and governance administration

Improved Policy Management

  • Granular Repository Ruleset Permissions: Delegate ruleset bypass rights to teams, roles, and apps at various levels (enterprise, organization, repository).
  • Delegated Push Ruleset Bypasses: Empower teams to manage push ruleset bypass requests efficiently at scale.

Limitations and Resources

Some limitations exist in public preview. For specifics, refer to enterprise teams product limits.

Explore further documentation:

Community Feedback

Share your feedback or questions on this GitHub Community discussion.

Disclaimer: Public preview UI may change in future releases.

This post appeared first on “The GitHub Blog”. Read the entire article here