Product Guides•stable•Updated 2026-06-19
Security
Manage identity, access, audit, and compliance posture according to your plan.
What this menu is for
Security centralizes identity, access, audit, and compliance posture. It helps admins understand which controls are active, which are plan-gated, and where the workspace needs hardening.
Sections
- Identity: Google SSO, SAML SSO, SCIM provisioning, and MFA enforcement where included.
- Access: IP allowlist and access posture controls.
- Audit: audit logs, audit trail summaries, full audit trail, export, integrity, and sealing capabilities.
- Compliance: compliance controls and readiness evidence where included.
Plan behavior
Security is plan-aware. A locked enterprise control is not a workspace failure for a lower plan. The page should clearly separate active controls, available controls, and upgrade-only controls.
Modern security baseline
- Enforce SSO and MFA when available.
- Use SCIM to remove departed users automatically.
- Keep owner and admin roles small.
- Review audit logs after sensitive changes.
- Use IP restrictions only when they fit your workforce and incident model.
- Export audit evidence from the correct plan-supported surface.
Handoffs
Use Organization for members, teams, guests, projects, and role assignments. Use Settings for retention and privacy mode. Use Provider Keys for provider secrets. Use Trust & Security docs for deeper policy and compliance explanations.