This is a quick runthrough of some major considerations when you create an EMU enterprise. The
- Do you have more than one Enterprise Admin?
⚠️ - Have you setup billing managers?
⚠️ - Are you syncronizing IdP groups which you can link to GitHub Teams?
- Have you selected the types of repos you want your users to create? Private/internal
- Do you want forking enabled/disabled for all orgs?
- Who can change repo visibility between private and internal?
- Do you allow deletion/transfer of repos by members or just org owners?
- Do you allow issues to be deleted by members or just org owners?
- Are you enabling enterprise wide?
- Will you block matching public code suggestions for all orgs?
⚠️ - Will you enable copilot chat in the whole enterprise or set at org level?
- Which orgs can enable Copilot? You can select a subset of orgs or the whole enterprise
- Will you allow self-hosted runners at repo level?
⚠️ - Will you allow Runners against personal EMU namespaces?
⚠️
- Will you get repo admins enable/disable secret scanning and code scanning?
- Have you set a spending limit and enabled alerts at 75/90/100%?
⚠️ - Have you setup billing emails?
⚠️ - Have you added an Azure subscription to payment information?
⚠️
- Do you have your recovery codes from the setup user somewhere very safe?
⚠️ - Will you automatically redirect users to your sign in page?
- Have you enabled the IP allow list for your IdP? (OIDC) or set restrictions (SAML)
⚠️
- Have you at a minimum enabled push protection?
⚠️ - Have you enabled Dependabot by default to protect against supply chain attacks?
- Do you have a custom push protection URL to show to your users some help text?
- Have you added approved domains so you can make sure alerts don't go to domains you don't want to share with?
- Audit Log Stream Enabled to keep over 3 months of logs if you require this? https://github.com/enterprises/stucorp/settings/audit-log/stream
⚠️ ⚠️ ⚠️ - Source IP Disclosure enabled?
⚠️ - Audit Log API Request Events Enabled?
⚠️
- Have you set the members who can raise support cases with GitHub? (up to 20)
⚠️