Integrate with GitHub Enterprise Server

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 7 minutes de lecture

    • Integrating your Software Asset Management application with the GitHub Enterprise Server application help you track your software subscriptions and reclaim unused licenses.

    Important :
    Minimize security risks and protect information by granting access only to the necessary user or API permissions.
    Tableau 1. Minimal user permissions
    Process Required user role in the GitHub Enterprise Server application Authentication scopes
    Download subscriptions site admininistrator site_admin
    Reclaim subscription site admininistrator site_admin

    Generate an API access token for GitHub Enterprise Server

    Generate a token that you can use to access the GitHub Enterprise Server API.

    Avant de commencer

    GitHub Role required: site administrator

    Pourquoi et quand exécuter cette tâche

    The GitHub repository hosting service uses personal access tokens to grant users access to the GitHub API. Personal access tokens function similarly to OAuth access tokens by authorizing API requests. By generating a personal access token to authorize your GitHub Enterprise Server API requests, you can gain access to the GitHub Enterprise Server API.

    Procédure

    1. From a web browser, open your GitHub Enterprise Server instance.
    2. Sign in to your GitHub account.
    3. On the GitHub page header, select your profile photo and then select Settings.
      Your profile settings open.
    4. From the left navigation pane, select Developer Settings.
      Your developer settings open.
    5. From the left navigation pane, select Personal access tokens.
    6. On the Personal access tokens page, select Generate new token.
    7. If you’re prompted to confirm your password before proceeding, enter your GitHub password and then select Confirm password.
    8. On the New personal access token form, describe the purpose of the token in the Note field.
    9. In the Select scopes form section, enable the site_admin OAuth scope by selecting the site_admin check box.
      OAuth scopes limit the level of access that the application has to your protected resources. The site_admin OAuth scope enables you to manage your enterprise users, organizations, and repositories.
    10. Select Generate token.
      Your personal access token generates.
    11. Copy the access token and save it in a secure location for later use.

    Create a GitHub Enterprise Server integration profile

    Create a GitHub Enterprise Server integration profile to track software subscriptions and optimize licensing for your GitHub Enterprise Server applications.

    Avant de commencer

    To create a GitHub Enterprise Server integration profile, request the Software Asset Management - SaaS License Management plugin (sn_sam_saas_int) from the ServiceNow Store.

    ServiceNow Role required: sam_integrator

    Important :
    You must select the GitHub Spoke check box for this integration while installing optional features on the Application Manager page. For more information about choosing the required SaaS applications, see Request SaaS License Management.

    Pourquoi et quand exécuter cette tâche

    If you’re using Software Asset Workspace, the option to create the GitHub Server integration profile in Core UI is inactive.

    Procédure

    1. Navigate to the integration profile.
      InterfaceAction
      Core UI
      1. Navigate to All > Software Asset > SaaS License > Direct Integration Profiles.
      2. Select New.
      3. Select GitHub Server Subscription Profile.
      Software Asset Workspace
      1. Navigate to License operations > User Subscriptions > Direct integration profiles.
      2. Select New.
      3. Select GitHub Server from the drop-down list.
      4. Select Continue.
    2. On the form, fill in the fields.
      Tableau 2. Integration Profile form
      Field Description
      Display Name Name of the integration profile. For example, GitHub Server Integration.
      Status Status of the integration profile.
      • If you have not published the integration profile, this field is automatically set to Draft.
      • If you have already published the integration profile, this field is automatically set to Published.
      Profile type Type of integration profile. This field is automatically set to github_server_subscription.
    3. In the Process configuration section, review the required user roles or API permissions specified in the Vendor configuration field for each process to minimize security risks and optimize SaaS licenses.
      Remarque :
      For more information about the required roles and scopes, see Minimal user permissions table.

      • The Download subscriptions check box is selected by default and you can't clear it.

      • Remarque :
        The Download Activity check box is selected by default. If you clear it, the activity scheduled job SAM - Refresh <displayname> Activity isn't created.
        In the Analyze user activity field, you can also select the date and time starting from when you want to analyze the user activity. By default, you can analyze user activity up to 60 days prior to the current date and view events performed by individual users from the time you create this profile.
        Remarque :
        Software Asset Management pulls the events from the time that you start analyzing user activity irrespective of the profile creation date.
        You can modify this value in the Last activity threshold field of your software reclamation rules. For more information, see Review a software reclamation rule.

      • The Reclaim subscriptions check box is selected by default. If you don't want to reclaim subscriptions, you can clear this check box. If you clear it, the removal candidates are created but the reclaim subscription subflow isn't triggered or the reclamation process isn't initiated.

    4. Select Save.
      Your ServiceNow instance creates a draft integration profile.

      The Connection & Credential field appears and is automatically set to sn_github_spoke.GitHub_Server.

    5. Open the connection & credential aliases record by selecting the preview icon (Preview icon.) next to the Connection & Credential field and then selecting Open Record in the record preview.
    6. On the Connection & Credential Aliases form, select the Create New Connection & Credential related link.
    7. In the Create Connection and Credential dialog box, fill in the fields.
      Tableau 3. Create Connection and Credential dialog box
      Field Description
      Connection Name Name of the GitHub connection.
      Connection URL URL of the GitHub API endpoint.

      Enter https://api.github.com.
      Use MID Server Option that enables your ServiceNow instance to use a MID Server for communication with your GitHub Enterprise Cloud applications.
      • If your instance requires a MID Server, set this field to true.
      • If your instance doesn’t require a MID Server, leave this field empty.
      Important :
      To enable this option, you must already have a MID Server set up on your instance. See MID Server for detailed instructions.
      API Key Personal access token that enables you to access the GitHub Enterprise Cloud API.
      • If the GitHub spoke version installed is 2.2.5 or higher, enter <api-key>.
      • If the GitHub spoke version installed is lower than 2.2.5, enter Bearer <api-key>.
      The <api-key> is the personal access token that you generated in Generate an API access token for GitHub Enterprise Server.
    8. Select Create.
    9. On the integration profile form, select Validate Connection to verify the connection and credential details of this integration.

      Validating the connection verifies the Download Subscriptions and Calculate Activity APIs, but not the Reclaim Subscriptions APIs.

    10. After the connection is validated, select Publish.
    11. In the Publish Confirmation dialog box, select OK.
      Remarque :
      If you clear the Download Activity check box after the integration profile is published, you must revalidate the connections and then republish the integration profile because the following events occur:
      • The Status field on the integration profile form changes to Draft.
      • The Validate connection button shows up on the form.
      • The current SAM - Refresh <displayname> Activity job gets deleted.

    Que faire ensuite

    After the integration connects, your ServiceNow instance automatically creates software models, reclamation rules, and software subscriptions that are refreshed daily.

    After creating an integration profile, view information about the profile in the Software Asset Workspace by navigating to License operations > User subscription > Direct integration profiles. You can select an integration profile to view the following related lists. If all of the following related lists aren't visible for an integration profile in the default view, you can select the custom integration view from the Details tab:
    • Software Models
    • Unrecognized Subscription Identifiers
    • Scheduled Jobs
    • Scheduled Job Results
    • Software Subscriptions
    • Subscription Identifier Exclusion Rule
    • Subscription User Exclusion Rule

    After creating an integration profile, you can define subscription exclusion rules to keep certain subscriptions from license cost calculations. For more information, see Subscription exclusions for SaaS and SSO applications.

    If you want to set up multiple integration profiles with unique connections, create child aliases to manage different configurations and settings for each integration profile. For more information, see Create a child alias to set up multiple integration profiles.

    Review all automatically generated reclamation rules to reclaim user subscriptions. For more information, see Review a software reclamation rule.

    Create software entitlements for the automatically generated software models to track used software against owned software.
    Reconciliation also runs on your subscriptions as a scheduled job or on-demand. You can view your reconciliation results in the License Workbench (Software Asset Management classic application) or the License usage view (Software Asset Workspace). Use these results to determine your license compliance position and to remediate any non-compliance.