Identity & access

Authentication, authorisation, and workspace membership described in operator terms. Technical integration details belong in private runbooks and procurement artefacts.

Identity and access are the front line: strong sign-in, least privilege, and clean offboarding.

Identity

Enterprise sign-in

Follow your IT standards for SSO, MFA, and session policies.

Admin protection

Admin accounts deserve the strongest controls — they can change behaviour for everyone.

Auditability

Sensitive configuration changes should be rare, intentional, and attributable.

Roles & permissions

Grant narrowly

Elevate access only for the duration needed.
Review elevated users quarterly.
Prefer workspace defaults over per-user exceptions.

Sessions & devices

Operational practices Settings

Was this page helpful?