Security Settings

Security Settings

Score: A

Workspace-wide security posture: passwords, MFA, SSO, API keys, network controls, and audit logging.

Password Policy

Enforced for all password-based logins.

Recommended: 14+ characters.

Force rotation after this period.

Prevent reusing last N passwords.

Multi-Factor Authentication

Second factor requirements.

Time given to set up MFA before enforcement.

SSO / SAML

Federated identity configuration.

Auto-create accounts on first SSO login.

Sync users and groups from IdP via SCIM 2.0.

API Key Policy

Rules for programmatic access tokens.

Max lifetime for new keys.

Keys must declare scopes at creation.

Keys must be bound to one or more CIDRs.

4 active keys · 1 revoked · 1 expiring within 30 days.

IP Restrictions

Network-level access controls.

Block dashboard/API access outside listed CIDRs.

One per line. Supports IPv4 and IPv6.

Service-to-service traffic is unaffected. Members outside allowlist will be unable to log in.

Audit Settings

Tamper-evident logging configuration.

Compliance-critical retention period.

Append-only hash chain for tamper detection.

Two-person approval for audit log exports.

Active Sessions Preview

Currently authenticated sessions across all members.

M
Maya OkonkwoYOU
MacBook Pro 16" · Chrome 126
San Francisco, US · 10.42.18.10
D
Daniel Vargas
ThinkPad X1 · Firefox 127
Los Angeles, US · 10.42.18.14
P
Priya Raman
Dell XPS 15 · Chrome 126
Mumbai, IN · 10.42.18.31
H
Hannah Wright
iPhone 15 Pro · Safari Mobile
San Francisco, US · 10.42.18.12

Command Palette

Search for a command to run...