Abilities of roles in an enterprise

Learn which roles you can assign to control access to your enterprise's settings and data.

이 문서의 내용

About roles in an enterprise

All users that are part of your enterprise have one of the following roles.

  • Enterprise owner: Can manage all enterprise settings, members, and policies
  • Billing manager: Can manage enterprise billing settings
  • Enterprise member: Is a member or owner of any organization in the enterprise
  • Guest collaborator: Can be granted access to repositories or organizations, but has limited access by default (Enterprise Managed Users only)
  • Unaffiliated user: Has been added to the enterprise but isn't a member of any organizations

For information about which users consume a license, see 조직에서 라이선스를 사용하는 사용자.

People with collaborator access to repositories are listed in your enterprise's "People" tab, but are not enterprise members and do not have access to the enterprise. See 조직의 역할.

Enterprise owners

Enterprise owners have complete control over the enterprise and can take every action, including:

  • Managing administrators
  • Adding and removing organizations
  • Removing enterprise members from all organizations
  • Managing enterprise settings
  • Enforcing policy across organizations
  • Managing billing settings

For security, we recommend making only a few people enterprise owners.

Enterprise owners do not have access to organization settings or content by default, but they can gain access by joining any organization. See 엔터프라이즈가 소유한 조직 내 역할 관리.

Billing managers

Billing managers only have access to your enterprise's billing settings. They can view and manage:

  • User licenses
  • Usage-based billing
  • Other billing settings

Billing managers do not have access to organization settings or content by default except for internal repositories within an enterprise in which they are a member.

Enterprise members

Members of organizations owned by your enterprise are automatically members of the enterprise.

Enterprise members:

  • Cannot access or configure enterprise settings.
  • Can access all repositories with "internal" visibility across any organization in the enterprise. See 리포지토리 정보.
  • May have different levels of access to various organizations and repositories. To view the resources someone has access to, see Enterprise에서 사용자 보기.

Guest collaborators

참고 항목

게스트 협력자 역할은 Enterprise Managed Users에서만 사용할 수 있습니다.

게스트 협력자 역할을 사용하여 공급업체 및 계약자에게 제한된 액세스 권한을 부여할 수 있습니다. 게스트 협력자의 권한:

  • 모든 관리형 사용자 계정과 마찬가지로 IdP에 의해 프로비전됩니다.
  • 리포지토리에 조직 구성원 또는 협력자로 추가될 수 있습니다.
  • 구성원으로 추가된 조직을 제외하고 엔터프라이즈의 내부 리포지토리에는 액세스할 수 없습니다.

You may need to update your IdP application to use guest collaborators. See 게스트 협력자 사용.

Unaffiliated users

Unaffiliated users are people who have been added to your enterprise but aren't members of any organizations. These users:

  • Do not consume a standard GitHub Enterprise license.
  • Cannot access private or internal repositories.
  • Can be added as members of organizations or enterprise teams.
  • Can receive a Copilot license directly from your enterprise.

You can add unaffiliated users from your identity provider (for Enterprise Managed Users) or by inviting users at the enterprise level (for personal accounts). For personal accounts, see 직접 엔터프라이즈에 사용자 초대.

Next steps

When you have decided which roles your users require, assign the roles to them. See Assigning roles to users in an enterprise.