About This Flashcard Deck
This flashcard deck contains 10 cards covering key GitHub Admin concepts for the GH-ADMIN exam. Test your GitHub administration knowledge. Use active recall by attempting to answer each question before revealing the answer.
Question
What is SAML SSO on GitHub?
Click to reveal answer
Answer
Security Assertion Markup Language Single Sign-On — federated authentication with identity provider (Okta, Azure AD). Users authenticate via IdP.
Click to flip back
All GitHub Admin Flashcards
Q: What is SAML SSO on GitHub?
A: Security Assertion Markup Language Single Sign-On — federated authentication with identity provider (Okta, Azure AD). Users authenticate via IdP.
Q: What is SCIM?
A: System for Cross-domain Identity Management — automates user provisioning, deprovisioning, and group management from IdP to GitHub.
Q: What are GitHub rulesets?
A: Newer alternative to branch protection rules. More flexible: can target branches by pattern, apply to tags, support bypass lists.
Q: What is CodeQL?
A: GitHub's semantic code analysis engine for finding security vulnerabilities. Powers code scanning alerts.
Q: What is Dependabot?
A: Automated dependency updates: alerts for vulnerabilities, version updates PRs, and security updates for package manifests.
Q: What is the GitHub audit log?
A: Records all administrative and security events in an org/enterprise. Can be streamed to external SIEM systems.
Q: What is a GitHub App vs OAuth App?
A: GitHub App: fine-grained permissions, installed on repos, acts as bot. OAuth App: user-level auth, broader permissions.
Q: What is secret scanning?
A: Detects accidentally committed secrets (API keys, tokens) in repositories. Can block pushes (push protection).
Q: What is an IP allow list?
A: Enterprise feature restricting access to GitHub from specific IP ranges only. Additional layer of access control.
Q: What organization roles exist?
A: Owner (full admin), Member (default access), Billing manager (billing only), Outside collaborator (per-repo access).
GitHub Flashcard Study Method
GitHub certifications test platform-specific knowledge that you can verify immediately. When reviewing these flashcards, keep a browser tab open to github.com and verify each concept in real time. If a card covers branch protection rules, navigate to a repository's settings and explore the options. This active learning approach turns passive memorisation into practical experience that sticks for the exam.