Docs
Configuration
Discover
How to Configure a GitHub Data Source

How to Configure a GitHub Data Source

The GitHub data source collects data to see all members of an organization in GitHub and the associated teams/groups.

Current limitations exist for last login and password change data.

Steps in GitHub

As an Admin for your GitHub organization:

  1. Navigate to: https://github.com/settings/tokens?type=beta
  2. Create a Personal Access Token, using the new Fine Grained Token. A classic token will not work.
  3. Specify the following access:
    • custom organization roles
    • members
    • organization administration
  4. Copy your access token and vault it for use as a Hydden credential during the data source setup.

Configuring the Data Source

  1. Navigate to Configuration | Discover and select the Data Sources tab.

  2. Click + Add Data Source.

    img
    Add Data Source modal

  3. On the Add Data Source modal, from the Data Source drop-down select the GitHub collector.

  4. Enter a Name for your data source.

  5. For Organization provide your GitHub organization name.

  6. You may ignore Preset and Schedule for now. The first time you will use a manual run action to use the collector.

  7. To the right of Credentials, click +.

    1. The Add credential modal opens and the drop-down selection should shows Cloud Credentials, if not, change it to Cloud Credentials.
    2. Enter a name for your GitHub credential.
    3. Enter your GitHub Organization name.
    4. Copy and paste your access token as previously saved/vaulted.
    5. Click Add.

  8. A Site entry is not needed for a GitHub data source.

  9. Under the Select Account Mapping Rule Set drop-down, select from the following options:

    • Default Rules Only
    • Add All Rules
    • Add All Default Rules
    • Add All Custom Rules
    • Manual Selection: Rules need to be selected from a drop-down menu.

    Any rules added, can be removed by clicking on the x on the rule name label.

    NOTE: Rules need to be set to enabled on the rule add/edit modal to work in your tenant, refer to Account Mapping.

  10. To enable account mapping or identity creation, select the Enable Automatic Account Mapping and Enable Automatic Identity Creation checkboxes respectively. Both options can be enabled at the same time.

  11. In the Automatic Mapping Rules (Match Account to Identity using) field, rules are either automatically populated based on your selection under the Automatic Account Mapping Rules step or you have to manually add rules from the drop-down menu. Any rules added, can be removed by clicking on the x on the rule name label.

  12. From the Automatic Identity Creation Rules (Create New Identity when) drop-down, select which rules you want to use in your environment. Custom rules are listed first. Any rules added, can be removed by clicking on the x on the rule name label.

  13. Click Add to save the data source. You have an option to manually run the data collection via the Run Now button.

At this point, you can run a collection from the Data Sources page and shortly after, you will see your GitHub data listed on the Identity Posture dashboard, in Global Search and the Search Library.

How to Configure an Azure Data SourceHow to Configure a Google Data Source