# GitHub

#### GitHub Configuration

* Log into GitHub with the session of the owner of the organization, then go into the organization settings and into Organization Security

* Click on Enable SAML authentication and fill the following fields:
  * Sign on URL

  ```exp
  https://mydomain.trustelem.com/app/33XXXX/sso
  ```

  * Issuer

  ```exp
  https://mydomain.trustelem.com/app/33XXXX
  ```

  * Public certificate

  ```exp
  $cert = "MIIDXXX...XXXNTYw=="
  ```

#### Trustelem Configuration

* On Trustelem, fill the Organization Name field with your GitHub organization's name

* On GitHub you can click on Test SAML Configuration and then on Save

#### Information

* Single sign-on in GitHub authenticates to a specific organization in GitHub and does not replace the authentication of GitHub itself. Therefore, if the user's github.com session has expired, you may be asked to authenticate with GitHub's ID/password during the single sign-on process

* By using SSO, a user could automatically join the GitHub organization even if not invited previously

* To sum up, on GitHub SSO allows to access an organization easily but does not replace the manual authentication of the user