Skip to main content
GitHub Docs
Search or ask Copilot
Select language: current language is English
Sign up
Search or ask Copilot
Open menu
Open Sidebar
  • Authentication/
  • Account security
Home

Authentication

    • Authentication to GitHub
    • Create a strong password
    • Switching between accounts
    • Verifying devices on sign in
    • Update access credentials
    • Manage personal access tokens
    • Reviewing your SSH keys
    • Deploy keys
    • Token expiration
    • Review security log
    • Security log events
    • Remove sensitive data
    • About anonymized URLs
    • GitHub's IP addresses
    • SSH key fingerprints
    • Sudo mode
    • Unauthorized access
    • Viewing and managing sessions
    • About 2FA
    • About mandatory 2FA
    • Configure 2FA
    • Configure 2FA recovery
    • Access GitHub with 2FA
    • Countries supporting SMS
    • Change 2FA method
    • Troubleshooting 2FA
    • Recover an account with 2FA
    • Disable 2FA
    • About passkeys
    • Manage your passkeys
    • Sign in with a passkey
    • About SSH
    • SSH agent forwarding
    • Managing deploy keys
    • Check for existing SSH key
    • Generate new SSH key
    • Add a new SSH key
    • Test your SSH connection
    • SSH key passphrases
    • Use SSH over HTTPS port
    • Recover SSH key passphrase
    • Deleted or missing SSH keys
    • Error: Host key verification failed
    • Permission denied (publickey)
    • Error: Bad file number
    • Error: Key already in use
    • Permission denied other-user
    • Permission denied other-repo
    • Agent failure to sign
    • ssh-add "illegal option" error
    • SSL certificate problem
    • Error: Unknown key type
    • SSH key audit
    • Commit signature verification
    • Displaying verification for all commits
    • Existing GPG keys
    • Generating a new GPG key
    • Add a GPG key
    • Tell Git about your signing key
    • Associate email with GPG key
    • Signing commits
    • Signing tags
    • Check verification status
    • Use verified email in GPG key
  • Authentication/
  • Account security

Keeping your account and data secure

To protect your personal information, you should keep both your account on GitHub and any associated data secure.

  • About authentication to GitHub
  • Creating a strong password
  • Switching between accounts
  • Verifying new devices when signing in
  • Updating your GitHub access credentials
  • Managing your personal access tokens
  • Reviewing your SSH keys
  • Reviewing your deploy keys
  • Token expiration and revocation
  • Reviewing your security log
  • Security log events
  • Removing sensitive data from a repository
  • About anonymized URLs
  • About GitHub's IP addresses
  • GitHub's SSH key fingerprints
  • Sudo mode
  • Preventing unauthorized access
  • Viewing and managing your sessions

Help and support

Did you find what you needed?

Privacy policy

Help us make these docs great!

All GitHub docs are open source. See something that's wrong or unclear? Submit a pull request.

Make a contribution

Learn how to contribute

Still need help?

Ask the GitHub community
Contact support

Legal

  • © 2025 GitHub, Inc.
  • Terms
  • Privacy
  • Status
  • Pricing
  • Expert services
  • Blog