GitHub
DevOps

GitHub Fundamentals

Master GitHub Enterprise administration with comprehensive training covering user management, authentication, security, and enterprise-wide policies...

Training Overview

This intensive 1-day training provides comprehensive knowledge and hands-on experience in GitHub Enterprise Administration. Designed for system administrators, software developers, application administrators, and IT professionals, this course covers everything you need to effectively manage GitHub Enterprise for your organization.

Who Should Attend

  • System Administrators
  • Software Developers with administrative responsibilities
  • Application Administrators
  • IT Professionals managing GitHub Enterprise
  • DevOps Engineers
  • Platform Engineers

Prerequisites

  • Basic understanding of Git and GitHub
  • Familiarity with enterprise IT concepts
  • Experience with identity management systems (beneficial)
  • Basic knowledge of CI/CD concepts

Training Objectives

By the end of this training, you will be able to:

  • Support GitHub Enterprise users and key stakeholders effectively
  • Manage user identities and authentication methods
  • Configure and deploy GitHub Enterprise products
  • Implement access controls and permissions based on organizational structure
  • Enable secure software development and ensure compliance
  • Manage GitHub Actions for enterprise-wide automation
  • Administer GitHub Packages for dependency management

Training Content

1. Supporting GitHub Enterprise for Users and Key Stakeholders

GitHub Enterprise Support and Diagnostics

  • Distinguishing between administrator-solvable problems and those requiring GitHub Support
  • Generating support bundles and diagnostics
  • Analyzing GitHub product usage within the enterprise
  • Identifying underutilized features and most active teams

Developer Workflows and Best Practices

  • Recommending standards for code collaboration (fork-and-pull vs. branching)
  • Implementing branching strategies and branch protection rules
  • Configuring code owners and code review processes
  • Designing automation and release strategies

Tooling and Ecosystem

  • Understanding the enterprise tooling ecosystem
  • Developing CI/CD strategies
  • Recommending appropriate tooling and workflows to teams
  • Leveraging GitHub APIs for administrative tasks

GitHub Marketplace Integration

  • Locating and installing assets from GitHub Marketplace
  • Configuring third-party integrations (e.g., Azure Pipelines)
  • Understanding GitHub Apps vs. Actions
  • Evaluating benefits and risks of Marketplace apps
2. Managing User Identities and GitHub Authentication

SAML Single Sign-On (SSO)

  • Implementing SAML SSO for individual organizations
  • Enabling SAML SSO across all organizations using enterprise accounts
  • Understanding the implications of SAML SSO enablement
  • Choosing and configuring supported identity providers

Two-Factor Authentication (2FA)

  • Requiring and enforcing 2FA for organizations
  • Managing 2FA policies across the enterprise
  • Handling 2FA recovery scenarios

Identity Management and Authorization

  • Understanding GitHub's authentication and authorization model
  • Managing user membership across instances and organizations
  • Implementing role-based access control

SCIM and Team Synchronization

  • Configuring SCIM providers (Azure AD, Okta, custom)
  • Understanding the SCIM protocol and GitHub's implementation
  • Setting up Team synchronization with identity providers
  • Comparing Team synchronization and SCIM approaches
3. GitHub Deployment, Distribution, and Licensing

GitHub Enterprise Products

  • GitHub Enterprise Cloud (GHEC) capabilities and use cases
  • GitHub Enterprise Server (GHES) deployment options
  • GitHub AE features and benefits
  • Choosing the right deployment model for your organization

Billing and License Management

  • Understanding seat licensing models
  • Managing GitHub Actions billing and minutes
  • Tracking GitHub Packages storage costs
  • Monitoring license usage for organizations and machine accounts
  • Analyzing metered product consumption
4. Managing Access and Permissions Based on Membership

GitHub Organizations

  • Designing single vs. multiple organization structures
  • Configuring default permissions (read vs. write)
  • Setting up Team sync with Active Directory
  • Managing enterprise policies and organization permissions
  • Scripting across multiple organizations

Enterprise Permissions and Policies

  • Understanding organization member roles
  • Differentiating between members, owners, and billing managers
  • Managing outside collaborators
  • Implementing least-privilege access principles
  • Balancing security with productivity

Team Permissions

  • Creating and managing teams within organizations
  • Configuring team member roles
  • Implementing different permission models
  • Nested team structures and inheritance

Repository Permissions

  • Understanding repository membership options
  • Configuring repository roles and access levels
  • Implementing audit access for compliance
  • Managing repository permissions at scale
5. Enabling Secure Software Development and Ensuring Compliance

Enterprise Security Posture

  • Leveraging GitHub's security features
  • Implementing security policies across the enterprise
  • Choosing appropriate policy levels for organizational control

Sensitive Data Management

  • Scrubbing sensitive data from Git repositories (filter-branch/BFG)
  • Removing sensitive data from GitHub
  • Implementing preventive measures for secret exposure

Audit Logs and Compliance

  • Using audit log APIs (REST and GraphQL)
  • Generating compliance reports
  • Tracking asset access and changes
  • Implementing audit log retention policies

Repository Security Features

  • Creating and maintaining security policies
  • Understanding and managing vulnerabilities
  • Implementing secret scanning
  • Configuring code scanning with CodeQL
  • Managing the dependency graph
  • Creating security advisories
  • Configuring and using Dependabot
  • Responding to security vulnerability alerts

Secure Access Methods

  • Implementing SSH keys and Deploy keys
  • Managing API access tokens (PAT, Installation Tokens, OAuth)
  • Understanding token rate limits
  • Configuring GitHub Apps and OAuth Apps permissions
  • Implementing Enterprise Managed Users (EMU)
6. Managing GitHub Actions

Actions and Workflows Distribution

  • Creating reusable action and workflow templates
  • Implementing naming conventions and maintenance plans
  • Distributing actions across the enterprise
  • Controlling action access within the enterprise
  • Configuring organizational use policies

Runner Management

  • Configuring IP allow lists for GitHub-hosted and self-hosted runners
  • Understanding security implications of self-hosted runners on public repositories
  • Selecting appropriate runners for workloads
  • Deploying and configuring self-hosted runners (proxies, labels, networking)
  • Managing runners using groups
  • Monitoring, troubleshooting, and updating runners

Encrypted Secrets Management

  • Understanding secret scopes (repository, organization, enterprise)
  • Accessing encrypted secrets in actions and workflows
  • Managing secrets at different organizational levels
  • Integrating with third-party vaults (Azure Key Vault, HashiCorp Vault)
7. Managing GitHub Packages

Package Management

  • Understanding supported GitHub Packages formats
  • Publishing and consuming packages
  • Implementing access controls for packages
  • Integrating packages with workflows

Packages vs. Releases

  • Understanding use cases for packages
  • Understanding use cases for releases
  • Choosing the appropriate distribution method
  • Managing package versions and dependencies

Hands-on Labs

Throughout this training, you will participate in practical exercises including:

  • Setting up SAML SSO with Azure AD
  • Configuring organization structure and permissions
  • Implementing branch protection rules and code review workflows
  • Deploying and managing self-hosted runners
  • Creating reusable GitHub Actions workflows
  • Configuring security scanning and Dependabot
  • Generating and analyzing audit logs
  • Publishing and consuming GitHub Packages

Training Methodology

  • Interactive Presentations: Comprehensive coverage of GitHub Administration concepts
  • Live Demonstrations: Real-world examples and best practices
  • Hands-on Labs: Practical exercises to reinforce learning
  • Group Discussions: Sharing experiences and problem-solving
  • Q&A Sessions: Addressing specific organizational challenges

Certification Preparation

This training aligns with the GH-100: GitHub Administration certification exam and covers all domains tested:

  1. Support GitHub Enterprise for users and key stakeholders (15%)
  2. Manage user identities and GitHub authentication (20%)
  3. Describe how GitHub is deployed, distributed, and licensed (5%)
  4. Manage access and permissions based on membership (20%)
  5. Enable secure software development and ensure compliance (15%)
  6. Manage GitHub Actions (20%)
  7. Manage GitHub Packages (5%)

What You'll Receive

  • Comprehensive training materials
  • Access to hands-on lab environment
  • Code samples and configuration templates
  • Certificate of attendance
  • Post-training support resources

Follow-up and Next Steps

After completing this training, you will be well-prepared to:

  • Administer GitHub Enterprise in your organization
  • Implement enterprise-wide GitHub policies and workflows
  • Prepare for the GH-100 certification exam
  • Design and implement secure development practices
  • Optimize GitHub usage across your enterprise

Related Trainings

Consider these complementary trainings:

  • GitHub Actions Advanced - Deep dive into workflow automation
  • DevOps with Azure and GitHub - Integrating GitHub with Azure DevOps
  • Secure Software Development Lifecycle - Comprehensive security practices
  • Git Advanced - Advanced Git techniques and workflows
An unhandled error has occurred. Reload 🗙