Product GuidesstableUpdated 2026-06-19

Security

Manage identity, access, audit, and compliance posture according to your plan.

What this menu is for

Security centralizes identity, access, audit, and compliance posture. It helps admins understand which controls are active, which are plan-gated, and where the workspace needs hardening.

Sections

  • Identity: Google SSO, SAML SSO, SCIM provisioning, and MFA enforcement where included.
  • Access: IP allowlist and access posture controls.
  • Audit: audit logs, audit trail summaries, full audit trail, export, integrity, and sealing capabilities.
  • Compliance: compliance controls and readiness evidence where included.

Plan behavior

Security is plan-aware. A locked enterprise control is not a workspace failure for a lower plan. The page should clearly separate active controls, available controls, and upgrade-only controls.

Modern security baseline

  1. Enforce SSO and MFA when available.
  2. Use SCIM to remove departed users automatically.
  3. Keep owner and admin roles small.
  4. Review audit logs after sensitive changes.
  5. Use IP restrictions only when they fit your workforce and incident model.
  6. Export audit evidence from the correct plan-supported surface.

Handoffs

Use Organization for members, teams, guests, projects, and role assignments. Use Settings for retention and privacy mode. Use Provider Keys for provider secrets. Use Trust & Security docs for deeper policy and compliance explanations.