I am at the beginner level of GitHub cloud administration and looking for answers to the below-listed questions after I enable SAML integration (Shibboleth) for my Github cloud Organisation. Before enabling IDP integration with shibboleth idp on GitHub cloud org I am planning to inform all my Organization users to use the primary email ID as the Company email and this as a primary attribute to create a user map to shibboleth idp. can anyone who has experience in this integration please share your view and guide if anything needs to be considered apart from the primary email id for integration.
My Questions:
- When a User leaves the Organization which is integrated with SAML ( Shibboleth), Do we need to manually remove the SSH key of the user who leaves the organization?
- After Integration with SAML How the SSH Keys are Managed. ( or the SSH key upload/remove process remain AS-IS i.e default workflow)
- Can we block the SSH keys of a User in Organization after he /she left the organization to avoid any SSH-based access to repos?
- Once a User leaves an Organization, Does an Org Admin need to remove user access in GitHub cloud Organization explicitly?
If anyone knows answers to any one question also, please provide your views.
