Upgrading to Enterprise plan
Read this guide if you are currently using Snyk on either the Free or Team plan, and are ready to upgrade to the Enterprise plan (see Plans & Pricing page for plan options).
For full information about how to implement Snyk on the Enterprise plan, read:
Enterprise features overview
Snyk Enterprise features include:
Upgrade to Enterprise checklist
As you work through the rest of this guide, use the following checklist to ensure you have completed the steps to upgrade to the Enterprise plan.
Set up your Snyk environment
A notable difference between the Free/Team plan and the Enterprise plan is having a Snyk Group and the ability to create multiple Snyk Organizations.
Set your Snyk Group settings
Only Group Administrators can edit Snyk Group settings
Confirm your Snyk Group name. It should reflect your company name. If it needs to be updated go to Group Settings > General.
Set session expiration within the Group. This will be the default for all Snyk Organizations within the Group.
Structure your account with multiple Snyk organizations
When you plan to use multiple Organizations in Snyk, decide how to structure your account before you invite members to the account or scan a large number of projects. To make this decision, consider the following:
Which team members can access specific projects?
How do you want to apply policies to projects for prioritizing and automating tests?
How do you want to report on projects?
What is the level of granularity you would like to see in the reports section?
Create additional Organizations
To create a new Organization, open the Organization switcher in the navigation panel and select Create new Organization. See Manage Snyk organizations for more details.
Using an existing Organization as a template
After you configure your first Organization, you can use it as a template for creating additional Organizations. Make sure you have completed the configurations for the Organization before copying it.
Select the Organization from the list. The following settings will be copied from the selected Organization:
Source control integrations (GitHub, GitLab, BitBucket)
Container registry integrations (ACR, Docker Hub, ECR, GCR)
Container orchestrator integrations (Kubernetes)
PaaS and Serverless integrations (Heroku, AWS Lambda)
Notification integrations (Slack, Jira)
Policies
Ignore settings
Language settings
Infrastructure as Code settings
Snyk Code settings
The new Organization will not use the same settings from the copied Organization for the following:
Service accounts
Members
Projects
Notification preferences
Any of the Organization settings that you configured for the first Organization can then be customized for the new Organization.
Enable Snyk Code
When you create a new Organization, Snyk Code (SAST) scanning is disabled by default. We recommend enabling Snyk Code before you import your first projects to Snyk. If Snyk Code is enabled after a project is imported, it won't detect Snyk Code files.
Select the Settings > Snyk Code option.
Click the toggle to enable Snyk Code, then click Save changes
Define Project structure
You may want to house different Projects in different Organizations.
You cannot move Projects between Organizations directly.
To re-house Projects, you must re-import your Projects into your new Organizations.
If you are working with a large number of Projects, you should use the API to re-import. See importing Projects at scale below for more detail.
Set up Single Sign-On (SSO)
Users can authenticate into their Snyk accounts in several ways, such as with a GitHub or Google account. However, now that you have Enterprise access, you may want to set up Single Sign-On (SSO) via your existing identity provider to streamline sign-ins and new user provisioning.
See Setting up Single Sign-On (SSO) for authentication for more details on steps for using your identity provider to authenticate and provision Snyk to your teams.
See the SSO, authentication and user provisions training course for more details.
Using Service accounts
Service accounts allow you to better scale and automate.
If you use CI/CD (using a CI/CD integration or the Snyk CLI), we recommend you use a service account.
If you use an IDE plugin or the CLI to test in your local environment, we recommend you use personal access tokens.
Rich API
Access to the Snyk API allows you to scale and automate different processes, including importing projects. You will want to use this strategy if you have a large number of projects that need to be moved to your new Snyk Organizations.
Importing Projects at scale
Use the Snyk API import tool to import projects into Snyk with a controlled pace using available Snyk APIs.
Reports
Snyk reports offer data and analytics across all of your projects, displaying historical and aggregated data about projects, issues, dependencies, and licenses.
See Getting started with Snyk Reports.
Security policy management
Security policies allow you to customize the prioritization of specific issues from the default and create rules. This is particularly helpful for changing the severities of issues that are not relevant to a specific project or environment.
See Getting started with security policies.
Remote code repositories
If you have onprem repositories, you can scan them with Snyk using Snyk Broker.
GitHub Enterprise integration
If you use GitHub as your SCM, with the Enterprise plan, you now have access to Github Enterprise integration. The GitHub Enterprise integration allows the use of a single personal access token across a Snyk Organization rather than a personal access token tied to an individual user account. Because of this, we recommend making the switch.
See Using Github or Github Enterprise integration for steps on migrating from Github to Github Enterprise integration.
Last updated
Was this helpful?