docs/content/admin/authentication/about-identity-and-access-management-for-your-enterprise.md

title	shortTitle	intro	product	versions
About identity and access management for your enterprise	About identity and access management	You can use {% if enterpriseServerVersions contains currentVersion %}{% data variables.product.prodname_ghe_server %}'s built-in authentication, or choose between CAS, LDAP, or SAML{% else %}SAML single sign-on (SSO) and System for Cross-domain Identity Management (SCIM){% endif %} to centrally manage access {% if currentVersion == "free-pro-team@latest" %}to organizations owned by your enterprise on {% data variables.product.prodname_dotcom_the_website %}{% endif %}{% if enterpriseServerVersions contains currentVersion or currentVersion == "github-ae@latest" %}to {% data variables.product.product_location %}{% endif %}.	{% data reusables.gated-features.saml-sso %}	[{github-ae *}]

About identity and access management for your enterprise

{% if currentVersion == "github-ae@latest" %}

{% data reusables.saml.ae-uses-saml-sso %} {% data reusables.saml.ae-enable-saml-sso-during-bootstrapping %}

After you configure the application for {% data variables.product.product_name %} on your IdP, you can grant access to {% data variables.product.product_location %} by assigning the application to users on your IdP. For more information about SAML SSO for {% data variables.product.product_name %}, see "Configuring SAML single sign-on for your enterprise."

{% data reusables.scim.after-you-configure-saml %} For more information, see "Configuring user provisioning for your enterprise."

To learn how to configure both authentication and user provisioning for {% data variables.product.product_location %} with your specific IdP, see "Configuring authentication and provisioning with your identity provider."

{% endif %}

Further reading

• SAML Wiki on the OASIS website
• System for Cross-domain Identity Management: Protocol (RFC 7644) on the IETF website