Security Settings
Score: AWorkspace-wide security posture: passwords, MFA, SSO, API keys, network controls, and audit logging.
Password Policy
Enforced for all password-based logins.
Recommended: 14+ characters.
Force rotation after this period.
Prevent reusing last N passwords.
Multi-Factor Authentication
Second factor requirements.
Time given to set up MFA before enforcement.
SSO / SAML
Federated identity configuration.
Auto-create accounts on first SSO login.
Sync users and groups from IdP via SCIM 2.0.
API Key Policy
Rules for programmatic access tokens.
Max lifetime for new keys.
Keys must declare scopes at creation.
Keys must be bound to one or more CIDRs.
4 active keys · 1 revoked · 1 expiring within 30 days.
IP Restrictions
Network-level access controls.
Block dashboard/API access outside listed CIDRs.
One per line. Supports IPv4 and IPv6.
Service-to-service traffic is unaffected. Members outside allowlist will be unable to log in.
Audit Settings
Tamper-evident logging configuration.
Compliance-critical retention period.
Append-only hash chain for tamper detection.
Two-person approval for audit log exports.
Active Sessions Preview
Currently authenticated sessions across all members.