Enforcing repository management policies for organizations in your enterprise account

Enterprise accounts are available with GitHub Enterprise Cloud. For more information, see "About enterprise accounts."

Enterprise owners can enforce certain repository management policies for all organizations owned by an enterprise account, or allow policies to be set in each organization.

For more information, see "Repository permission levels for an organization."

In this guide

Enforcing a policy on default repository permissions

Across all organizations owned by your enterprise account, you can set a default repository permission level (none, read, write, or admin) for organization members, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Default permissions", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Default permissions", use the drop-down menu and choose a policy.

    Drop-down menu with repository permissions policy options

Enforcing a policy on creating repositories

Across all organizations owned by your enterprise account, you can allow members to create public and private repositories, create private repositories only, restrict repository creation to organization owners, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository creation", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository creation", use the drop-down menu and choose a policy.

    Drop-down menu with repository creation policy options

Enforcing a policy on forking private repositories

Across all organizations owned by your enterprise account, you can allow people with access to a private repository to fork it, never allow forking of private repositories, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository forking", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository forking", use the drop-down menu and choose a policy.

    Drop-down menu with repository forking policy options

Enforcing a policy on inviting outside collaborators to repositories

Across all organizations owned by your enterprise account, you can allow members to invite outside collaborators to repositories, restrict outside collaborator invitations to organization owners, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository invitations", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository invitations", use the drop-down menu and choose a policy.

    Drop-down menu with outside collaborator invitation policy options

Enforcing a policy on changing repository visibility

Across all organizations owned by your enterprise account, you can allow members with admin permissions to change a repository's visibility, restrict repository visibility changes to organization owners, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository visibility change", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository visibility change", use the drop-down menu and choose a policy.

    Drop-down menu with repository visibility policy options

Enforcing a policy on deleting or transferring repositories

Across all organizations owned by your enterprise account, you can allow members with admin permissions to delete or transfer a repository, restrict repository deletion and transfers to organization owners, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository deletion and transfer", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository deletion", use the drop-down menu and choose a policy.

    Drop-down menu with repository deletion policy options

Enforcing a policy on setting branch protection rules

Across all organizations owned by your enterprise account, you can allow members with admin permissions to update protected branches settings, restrict branch protection settings to enterprise owners, or allow organization owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository branch protection rules", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository branch protection rules", use the drop-down menu and choose a policy.

    Drop-down menu with branch protection policy options

Enforcing a policy on deleting issues

Across all organizations owned by your enterprise account, you can allow members with admin permissions to delete issues in a repository, restrict issue deletion to organization owners, or allow owners to administer the setting on the organization level.

  1. Navigate to your enterprise account by visiting https://github.com/enterprises/ENTERPRISE-NAME, replacing ENTERPRISE-NAME with your enterprise account's name.

  2. In the enterprise account sidebar, click Policies.

    Policies tab in the enterprise account sidebar

  3. On the Repository policies tab, under "Repository issue deletion", review the information about changing the setting. Optionally, to view the setting's current configuration for all organizations in the enterprise account before enforcing the setting, click View your organizations' current configurations.

    Link to view the current policy configuration for organizations in the business

  4. Under "Repository issue deletion", use the drop-down menu and choose a policy.

    Drop-down menu with issue deletion policy options

Ask a human

Can't find what you're looking for?

Contact us