IP Allow List Extended to EMU Namespaces

GitHub Enterprise Cloud now offers a public preview feature that extends IP allow list coverage to Enterprise Managed Users (EMUs) namespaces. This enhancement allows enterprises to enforce their network access policies consistently across all repositories, including those owned by user namespaces associated with EMUs.

What's New

The feature enables enterprises with EMUs to configure IP allow lists that cover user-owned repositories alongside organization repositories. Previously, IP allow list policies primarily applied to organization-level resources. With this extension, enterprises can now enforce uniform network security policies across their entire deployment.

Coverage and Access Control

The IP allow list protection extends across multiple access vectors:

• Web UI access to repositories and resources
• Git protocol access for clone, pull, and push operations
• API access for all programmatic interactions
• All credential types, including personal access tokens, GitHub App tokens, and SSH keys

This comprehensive coverage ensures that enterprises can maintain consistent security posture regardless of how users interact with their repositories.

Getting Started

To enable this feature, enterprises can configure IP allow lists for EMU namespaces through the security hardening settings in GitHub Enterprise Cloud. Organizations should review their network policies and update IP allow list configurations to reflect their security requirements.

For detailed setup instructions, refer to GitHub's documentation on configuring IP allow lists.