Merge pull request #49790 from v-nagta/githubupdate

rjagiewich · web-flow · commit 921e1ad5f5cf · 2018-08-23T10:52:22.000-07:00
Product Backlog Item 530554: SaaS App Tutorial: GitHub update
diff --git a/articles/active-directory/saas-apps/github-tutorial.md b/articles/active-directory/saas-apps/github-tutorial.md
@@ -1,4 +1,4 @@
-﻿---
+---
 title: 'Tutorial: Azure Active Directory integration with GitHub | Microsoft Docs'
 description: Learn how to configure single sign-on between Azure Active Directory and GitHub.
 services: active-directory
@@ -14,7 +14,7 @@ ms.workload: identity
 ms.tgt_pltfrm: na
 ms.devlang: na
 ms.topic: article
-ms.date: 05/16/2018
+ms.date: 08/23/2018
 ms.author: jeedes
 
 ---
@@ -46,13 +46,15 @@ To test the steps in this tutorial, you should follow these recommendations:
 - If you don't have an Azure AD trial environment, you can [get a one-month trial](https://azure.microsoft.com/pricing/free-trial/).
 
 ## Scenario description
+
 In this tutorial, you test Azure AD single sign-on in a test environment. 
 The scenario outlined in this tutorial consists of two main building blocks:
 
 1. Adding GitHub from the gallery
-1. Configuring and testing Azure AD single sign-on
+2. Configuring and testing Azure AD single sign-on
 
 ## Adding GitHub from the gallery
+
 To configure the integration of GitHub into Azure AD, you need to add GitHub from the gallery to your list of managed SaaS apps.
 
 **To add GitHub from the gallery, perform the following steps:**
@@ -61,15 +63,15 @@ To configure the integration of GitHub into Azure AD, you need to add GitHub fro
 
 	![The Azure Active Directory button][1]
 
-1. Navigate to **Enterprise applications**. Then go to **All applications**.
+2. Navigate to **Enterprise applications**. Then go to **All applications**.
 
 	![The Enterprise applications blade][2]
-	
-1. To add new application, click **New application** button on the top of dialog.
+
+3. To add new application, click **New application** button on the top of dialog.
 
 	![The New application button][3]
 
-1. In the search box, type **GitHub**, select **GitHub** from result panel then click **Add** button to add the application.
+4. In the search box, type **GitHub**, select **GitHub** from result panel then click **Add** button to add the application.
 
 	![GitHub in the results list](./media/github-tutorial/tutorial_github_addfromgallery.png)
 
@@ -82,10 +84,10 @@ For single sign-on to work, Azure AD needs to know what the counterpart user in
 To configure and test Azure AD single sign-on with GitHub, you need to complete the following building blocks:
 
 1. **[Configure Azure AD Single Sign-On](#configure-azure-ad-single-sign-on)** - to enable your users to use this feature.
-1. **[Create an Azure AD test user](#create-an-azure-ad-test-user)** - to test Azure AD single sign-on with Britta Simon.
-1. **[Create a GitHub test user](#create-a-github-test-user)** - to have a counterpart of Britta Simon in GitHub that is linked to the Azure AD representation of user.
-1. **[Assign the Azure AD test user](#assign-the-azure-ad-test-user)** - to enable Britta Simon to use Azure AD single sign-on.
-1. **[Test single sign-on](#test-single-sign-on)** - to verify whether the configuration works.
+2. **[Create an Azure AD test user](#create-an-azure-ad-test-user)** - to test Azure AD single sign-on with Britta Simon.
+3. **[Create a GitHub test user](#create-a-github-test-user)** - to have a counterpart of Britta Simon in GitHub that is linked to the Azure AD representation of user.
+4. **[Assign the Azure AD test user](#assign-the-azure-ad-test-user)** - to enable Britta Simon to use Azure AD single sign-on.
+5. **[Test single sign-on](#test-single-sign-on)** - to verify whether the configuration works.
 
 ### Configure Azure AD single sign-on
 
@@ -97,11 +99,11 @@ In this section, you enable Azure AD single sign-on in the Azure portal and conf
 
 	![Configure single sign-on link][4]
 
-1. On the **Single sign-on** dialog, select **Mode** as	**SAML-based Sign-on** to enable single sign-on.
- 
+2. On the **Single sign-on** dialog, select **Mode** as	**SAML-based Sign-on** to enable single sign-on.
+
 	![Single sign-on dialog box](./media/github-tutorial/tutorial_github_samlbase.png)
 
-1. On the **GitHub Domain and URLs** section, perform the following steps:
+3. On the **GitHub Domain and URLs** section, perform the following steps:
 
 	![GitHub Domain and URLs single sign-on information](./media/github-tutorial/tutorial_github_url.png)
 
@@ -112,47 +114,50 @@ In this section, you enable Azure AD single sign-on in the Azure portal and conf
 	> [!NOTE]
 	> Please note that these are not the real values. You have to update these values with the actual Sign on URL and Identifier. Here we suggest you to use the unique value of string in the Identifier. Go to GitHub Admin section to retrieve these values.
 
-1. On the **User Attributes** section, select **User Identifier** as user.mail.
+4. On the **User Attributes** section, select **User Identifier** as user.mail.
 
 	![Configure Single Sign-On](./media/github-tutorial/tutorial_github_attribute_new01.png)
 
-1. On the **SAML Signing Certificate** section, click **Certificate (Base64)** and then save the certificate file on your computer.
+5. On the **SAML Signing Certificate** section, click **Certificate (Base64)** and then save the certificate file on your computer.
 
 	![The Certificate download link](./media/github-tutorial/tutorial_github_certificate.png) 
 
-1. Click **Save** button.
+6. Click **Save** button.
 
 	![Configure Single Sign-On Save button](./media/github-tutorial/tutorial_general_400.png)
 
-1. On the **GitHub Configuration** section, click **Configure GitHub** to open **Configure sign-on** window. Copy the **Sign-Out URL, SAML Entity ID, and SAML Single Sign-On Service URL** from the **Quick Reference section.**
+7. On the **GitHub Configuration** section, click **Configure GitHub** to open **Configure sign-on** window. Copy the **Sign-Out URL, SAML Entity ID, and SAML Single Sign-On Service URL** from the **Quick Reference section.**
 
 	![GitHub Configuration](./media/github-tutorial/tutorial_github_configure.png) 
 
-1. In a different web browser window, log into your GitHub organization site as an administrator.
+8. In a different web browser window, log into your GitHub organization site as an administrator.
 
-1. Navigate to **Settings** and click **Security**
+9. Navigate to **Settings** and click **Security**
 
 	![Settings](./media/github-tutorial/tutorial_github_config_github_03.png)
 
-1. Check the **Enable SAML authentication** box, revealing the Single Sign-on configuration fields. Then, use the single sign-on URL value to update the Single sign-on URL on Azure AD configuration.
+10. Check the **Enable SAML authentication** box, revealing the Single Sign-on configuration fields. Then, use the single sign-on URL value to update the Single sign-on URL on Azure AD configuration.
 
 	![Settings](./media/github-tutorial/tutorial_github_config_github_13.png)
 
-1. Configure the following fields:
+11. Configure the following fields:
 
 	a. In the **Sign on URL** textbox, paste **SAML Single sign-on Service URL** value which you have copied from the Azure portal.
 
 	b. In the **Issuer** textbox, paste **SAML Entity ID** value which you have copied from the Azure portal.
 
-	c. Open the downloaded certificate from Azure portal in notepad, paste the content into the **Public Certificate** textbox.
+	c. Open the downloaded certificate from Azure portal in notepad, paste the content into the **Public Certificate** textbox.
 
 	![Settings](./media/github-tutorial/tutorial_github_config_github_051.png)
 
-1. Click on **Test SAML configuration** to confirm that no validation failures or errors during SSO.
+12. Click on **Test SAML configuration** to confirm that no validation failures or errors during SSO.
 
 	![Settings](./media/github-tutorial/tutorial_github_config_github_06.png)
 
-1. Click **Save**
+13. Click **Save**
+
+> [!NOTE]
+> Single sign-on in GitHub authenticates to a specific organization in GitHub and does not replace the authentication of GitHub itself. Therefore, if the user's GitHub.com session has expired, you may be asked to authenticate with GitHub's ID/password during the single sign-on process.
 
 ### Create an Azure AD test user
 
@@ -166,15 +171,15 @@ The objective of this section is to create a test user in the Azure portal calle
 
     ![The Azure Active Directory button](./media/github-tutorial/create_aaduser_01.png)
 
-1. To display the list of users, go to **Users and groups**, and then click **All users**.
+2. To display the list of users, go to **Users and groups**, and then click **All users**.
 
     ![The "Users and groups" and "All users" links](./media/github-tutorial/create_aaduser_02.png)
 
-1. To open the **User** dialog box, click **Add** at the top of the **All Users** dialog box.
+3. To open the **User** dialog box, click **Add** at the top of the **All Users** dialog box.
 
     ![The Add button](./media/github-tutorial/create_aaduser_03.png)
 
-1. In the **User** dialog box, perform the following steps:
+4. In the **User** dialog box, perform the following steps:
 
     ![The User dialog box](./media/github-tutorial/create_aaduser_04.png)
 
@@ -185,7 +190,7 @@ The objective of this section is to create a test user in the Azure portal calle
     c. Select the **Show Password** check box, and then write down the value that's displayed in the **Password** box.
 
     d. Click **Create**.
- 
+
 ### Create a GitHub test user
 
 The objective of this section is to create a user called Britta Simon in GitHub. GitHub supports automatic user provisioning, which is by default enabled. You can find more details [here](github-provisioning-tutorial.md) on how to configure automatic user provisioning.
@@ -194,15 +199,15 @@ The objective of this section is to create a user called Britta Simon in GitHub.
 
 1. Log in to your GitHub company site as an administrator.
 
-1. Click **People**.
+2. Click **People**.
 
     ![People](./media/github-tutorial/tutorial_github_config_github_08.png "People")
 
-1. Click **Invite member**.
+3. Click **Invite member**.
 
 	![Invite Users](./media/github-tutorial/tutorial_github_config_github_09.png "Invite Users")
 
-1. On the **Invite member** dialog page, perform the following steps:
+4. On the **Invite member** dialog page, perform the following steps:
 
 	a. In the **Email** textbox, type the email address of Britta Simon account.
 
@@ -227,38 +232,36 @@ In this section, you enable Britta Simon to use Azure single sign-on by granting
 
 	![Assign User][201]
 
-1. In the applications list, select **GitHub**.
+2. In the applications list, select **GitHub**.
 
 	![The GitHub link in the Applications list](./media/github-tutorial/tutorial_github_app.png)  
 
-1. In the menu on the left, click **Users and groups**.
+3. In the menu on the left, click **Users and groups**.
 
 	![The "Users and groups" link][202]
 
-1. Click **Add** button. Then select **Users and groups** on **Add Assignment** dialog.
+4. Click **Add** button. Then select **Users and groups** on **Add Assignment** dialog.
 
 	![The Add Assignment pane][203]
 
-1. On **Users and groups** dialog, select **Britta Simon** in the Users list.
+5. On **Users and groups** dialog, select **Britta Simon** in the Users list.
+
+6. Click **Select** button on **Users and groups** dialog.
 
-1. Click **Select** button on **Users and groups** dialog.
+7. Click **Assign** button on **Add Assignment** dialog.
 
-1. Click **Assign** button on **Add Assignment** dialog.
-	
 ### Test single sign-on
 
 In this section, you test your Azure AD single sign-on configuration using the Access Panel.
 
 When you click the GitHub tile in the Access Panel, you should get automatically signed-on to your GitHub application.
-For more information about the Access Panel, see [Introduction to the Access Panel](../user-help/active-directory-saas-access-panel-introduction.md). 
+For more information about the Access Panel, see [Introduction to the Access Panel](../user-help/active-directory-saas-access-panel-introduction.md).
 
 ## Additional resources
 
 * [List of Tutorials on How to Integrate SaaS Apps with Azure Active Directory](tutorial-list.md)
 * [What is application access and single sign-on with Azure Active Directory?](../manage-apps/what-is-single-sign-on.md)
 
-
-
 <!--Image references-->
 
 [1]: ./media/github-tutorial/tutorial_general_01.png
@@ -271,5 +274,4 @@ For more information about the Access Panel, see [Introduction to the Access
 [200]: ./media/github-tutorial/tutorial_general_200.png
 [201]: ./media/github-tutorial/tutorial_general_201.png
 [202]: ./media/github-tutorial/tutorial_general_202.png
-[203]: ./media/github-tutorial/tutorial_general_203.png
-
+[203]: ./media/github-tutorial/tutorial_general_203.png
