Ensure GitHub organization security settings require SSO

Description

This policy checks whether GitHub organization security settings require Single Sign-On (SSO) to be enabled. SSO is a critical security control that ensures only authorized users can access the organization's resources. Enabling SSO helps prevent unauthorized access and reduces the risk of security breaches. By requiring SSO, organizations can better manage user identities and access to their GitHub resources.

Code Example

json

{"data": {"organization": {"samlIdentityProvider": {"ssoUrl": "https://example.com/sso"}}}}

Remediation

Enable SSO for the GitHub organization by configuring a SAML identity provider and setting up an SSO URL.

Rule Details

Field	Value
ID	IAC-1040
Severity	MEDIUM
IaC Type	github_configuration
Frameworks	*
Checkov ID	CKV_GITHUB_2

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Ensure GitHub organization security settings require SSO

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Ensure GitHub organization security settings require SSO ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Ensure GitHub organization security settings require SSO

Description

Code Example

Remediation

Rule Details

References