Cartoon people floating while pressing on a digital card

Essentials of administration and governance with GitHub Enterprise Cloud

Jessi Moths
Jessi Moths // Director, Field Services, Enterprise Products // GitHub

A successful GitHub Enterprise Cloud (GHEC) adoption can prevent downstream maintenance burdens while promoting innersource, collaboration, and efficient organizational structures. In this module, we’ll provide you with the tools and understanding necessary to do just that. We’ll begin by exploring the foundational concepts, guiding you through the initial administrative setup for GHEC in a single learning flow so you can feel appropriately prepared with best practices. Later, we’ll dive into more advanced topics to ensure you can make the most of GHEC as your business scales.

This learning pathway may be a good fit for you if you are a current or prospective GitHub enterprise or organization owner (administrator), or are involved with security design, process automation, or other decision-making around your company’s GitHub Enterprise governance and configuration. 


  • Access to your own GitHub enterprise account, organization, and repositories to follow along is recommended but not required

  • General familiarity with GitHub concepts and products is recommended, but also not required

Module overview

Guide 1: Understand the structural components of GitHub Enterprise Cloud  

Understand GHEC’s structural components, how they relate to each other, and how each component provides different levels of control. We’ll also cover the initial considerations for using these components to configure your GHEC implementation and enforce requirements while promoting collaboration.

Guide 2: Choose a GitHub Enterprise Cloud user access model

Learn about the two types of user models available in GHEC—Enterprise Managed Users (EMU) and standard—their tradeoffs, and receive guidance on selecting the model that best fits your business requirements.

Guide 3: Strategies for using organizations in GitHub Enterprise Cloud

Explore common business considerations for using multiple organizations and learn how to choose the structure that’s best for your enterprise, including examples of some possible models.

Guide 4: Configure your GitHub Enterprise Cloud enterprise settings and policies

Navigate the policies available for configuring your enterprise or organization. These policies include base permissions, the ability to create and fork repositories, and more. Guidance for setting these policies where applicable is also provided.

Guide 5: Manage your billing, licensing, and consumption-based services

Configure access and spending limits for consumption-based services like GitHub Actions, Packages, and Codespaces, and manage policies and licensing for separately licensed services, such as GitHub Copilot and GitHub Advanced Security.

Guide 6: Manage your repository visibility, rules, and settings

Set repository visibility, define conditions for merging pull requests using rulesets, and use repository-level settings to provide fine-grained controls beyond organization- and enterprise-level restrictions.

Guide 7: Use teams, roles, and users to manage repository access

Use teams to grant permissions to groups of users to facilitate collaboration, communication, and simplify access management, and set default roles at the organization and repository level, using custom repository roles for other use-cases.

Guide 8: Programmatic access and integrations with GitHub Enterprise Cloud

Access the GitHub API and command line via personal access tokens (PATs) and SSH keys, use GitHub Apps for automation and integrations that require repeated API access, secure your integrations, and use webhooks instead of polling for integrations.

Guide 9: Access, capture, and consume your audit logs

View and configure your audit logs, learn what data is included, and stream and export audit logs for retention and analysis.

Industry expert insight from:

Fidelity: Fidelity Investments is a multinational financial services corporation and one of the largest asset managers in the world, offering a wide range of financial products and services including mutual funds, retirement plans, wealth management services, life insurance, and brokerage services, among others. With GitHub Enterprise, Fidelity has promoted both innersource and open source collaboration while ensuring they meet the stringent security and compliance requirements that keep their customer data private and safe.

Figma: Figma is a design platform for teams who build products together that helps teams create, share, test, and ship better designs from start to finish. Figma has grown on GitHub Enterprise since the beginning, building streamlined development practices, promoting cross-team collaboration, enhancing code reuse, and improving security measures through automation and API integrations.

HelloFresh: HelloFresh SE is a global food solutions group and the world's leading meal kit company. The HelloFresh Group consists of seven brands that provide customers with high quality food and operates in 18 markets across three continents. In the second quarter of 2023, HelloFresh delivered over 253 million meals and reached 7.3 million active customers. With GitHub Enterprise Cloud, HelloFresh has used automation to enjoy faster, more efficient software development. They have also seen increased collaboration by prioritizing code re-use and visibility in their GitHub Enterprise architecture. 

Infosys: Infosys is one of the world’s largest IT consulting companies, with more than 200,000 employees working in practically every industry you can imagine. With GitHub Enterprise Cloud, Infosys has developed consistent processes to collaborate effectively while keeping security in mind, and they now recommend GitHub Enterprise Cloud to all their customers as the collaborative DevSecOps platform of choice. 

Neon Bank: Neon Bank eliminates the hassle of brick-and-mortar banking by removing transaction fees and making banking possible for anyone, from anywhere. Neon Bank has seen tremendous growth since 2016 and now serves more than 23 million customers. With Bitbucket Server and GitLab Neon Bank’s software development lifecycle was extremely slow—in large part due to a disparate and complex tech stack. With GitHub Enterprise Cloud, Neon Bank consolidated their tech stack, accelerated their software development lifecycle across their entire organization, and fostered a robust innersource culture. 

Philips: Philips is a leader in healthcare technology, consumer electronics, and lighting solutions. Continuously innovating to improve people's lives through meaningful innovations, Philips has more than 6,000 software professionals around the world. After more than 130 years, Philips modernized their development strategy with GitHub Enterprise Cloud, removing barriers between teams to make innersource and automation central to their software development lifecycle (SDLC) and more quickly bring solutions to market. 

Travelport: Travelport is a worldwide travel retail platform, serving airlines and travel agencies like American Airlines, EasyJet, and Southwest Airlines, that is reinventing a simpler future for travel’s complex ecosystem. Their next-generation marketplace connects buyers and sellers that share their passion for delivering exceptional travel experiences. Travelport unified on GitHub Enterprise Cloud with Enterprise Managed Users (EMUs), migrating thousands of repositories in days—instead of weeks—by using the GitHub Enterprise Importer. Since the move, Travelport has enjoyed a unified DevSecOps platform where it promotes an innersource culture.

Get started!