GitHub Integration Guide

Amir Avitzur
Amir Avitzur
  • Updated

Integrating GitHub with Authomize

Integration with GitHub provides visibility about your organization’s identities and assets. After integration, Authomize provides visibility into GitHub, enabling improved identity security and automated access reviews.

Note: To integrate GitHub into Authomize, Authomize must first be installed on your organization’s GitHub repository. Authomize can be downloaded and installed from the GitHub marketplace.

GitHub integration workflow

To integrate GitHub with Authomize, you’ll need to install the GitHub app and then create a GitHub access token and then copy it into Authomize, as described below.

GitHub_Integration_Workflow.png

Integrating GitHub in Authomize

  1. Log into Authomize.
  2. Go to Settings > Data Sources and click Add New App.
    00_Add_New_App.png
  3. Select GitHub from the list.
  4. In the Integrate GitHub dialog, do the following:

Step 1.    Click Go to GitHub and login.

Step 2.    Click Go to GitHub to create an access token
               (as described in the Generating a token in GitHub section below).

Step 3.    Enter authomize in the Organization field.
                 Paste the Access Token (from GitLab).      

Step 4.    Enter an optional Integration name.

Step 5.    Enter your email address.

Click  Create

GitHub_Integration_Dialog.png

Generating a token in GitHub

  1. Log into GitHub as an admin.
    2-Sign-into-Github.png          GitHub-MFA.png
  2. If it hasn’t already been installed, install GitHub now by going to https://github.com/apps/authomize.
  3. Click Install.
    Github-1.png
  4. Install Authomize on your organization account (not your personal account) on all repositories.
    42-Install-Authomize-on-Github.png   Github-3.png  Only_Select_Repositories.png
  5. Go to https://github.com/settings/tokens/new and click Generate a personal access token.
    4-generate-personal-API-Token.png
  6. When the personal access token dialog opens:
    set Note to Authomize Read-only
    set expiration date to no expiration
    set scopes for org /read.org and user/user.email
    then click  Generate_Token_Button.png
    4-Personal_Access_Token-cut.png
  7. Save the token once it is generated.
    6-Copy_Token.png
  8. Go back to Step 4 in the Integrate GitHub dialog to complete the installation.

When GitHub has been integrated, you will see it in the list of connected apps:

GitHub_Installed.png

What data is collected

  • Applications
  • Users
  • Groups/Roles
  • Repositories (including security settings)
  • Organization
Share this

Was this article helpful?

0 out of 0 found this helpful