Skip to content

Commit 26c3e5e

Browse files
jusuchin85lecoursen
jusuchin85
and
lecoursen
authored
[Improvement]: Ensure that we "literally" mention how GHES SAML authentication flow works (#57205)
Co-authored-by: Laura Coursen <[email protected]>
1 parent 4141079 commit 26c3e5e

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

content/admin/managing-iam/using-saml-for-enterprise-iam/configuring-saml-single-sign-on-for-your-enterprise.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -53,9 +53,9 @@ For more information, see [AUTOTITLE](/organizations/managing-saml-single-sign-o
5353

5454
{% elsif ghes %}
5555

56-
SAML SSO allows you to centrally control and secure access to {% data variables.location.product_location %} from your SAML IdP. When an unauthenticated user visits {% data variables.location.product_location %} in a browser, {% data variables.product.github %} will redirect the user to your SAML IdP to authenticate. After the user successfully authenticates with an account on the IdP, the IdP redirects the user back to {% data variables.location.product_location %}. {% data variables.product.github %} validates the response from your IdP, then grants access to the user.
56+
SAML SSO allows you to centrally control and secure access to {% data variables.location.product_location %} from your SAML IdP.
5757

58-
After a user successfully authenticates on your IdP, the user's SAML session for {% data variables.location.product_location %} is active in the browser for 24 hours. After 24 hours, the user must authenticate again with your IdP.
58+
If an unauthenticated user attempts to sign in to {% data variables.location.product_location %} and you have disabled [built-in authentication](/admin/identity-and-access-management/managing-iam-for-your-enterprise/allowing-built-in-authentication-for-users-outside-your-provider), {% data variables.product.github %} redirects the user to your SAML IdP for authentication. After the user successfully authenticates with an account on the IdP, the IdP redirects the user back to {% data variables.location.product_location %}. {% data variables.product.github %} validates the response from your IdP, then grants access to the user. The user's SAML session is active in the browser for 24 hours. After that, the user must authenticate again with your IdP.
5959

6060
{% data reusables.saml.saml-ghes-account-revocation %}
6161

0 commit comments

Comments
 (0)