Skip to content

Auth Service - Security Documentation

Overview

This directory contains security documentation for the Auth service, including guidance for securely configuring and operating administrative accounts in accordance with FedRAMP Recommended Secure Configuration requirements.

Security Admin Guide

Document: Security Admin Guide

The Security Admin Guide provides comprehensive guidance for setting up, configuring, operating, and decommissioning administrative accounts within the Auth service.

Administrative Account Types Covered

Account Type Description
Super Administrators Top-level administrative accounts with platform-wide control
Tenant Administrators Privileged accounts with full control within a single tenant
Privileged Users Scoped administrators with specific elevated permissions

Key Topics

  • Administrative account role definitions (permissions, actions, operations)
  • Account lifecycle procedures (setup, MFA requirements, configuration, decommissioning)
  • Security settings reference tables with recommended values
  • FedRAMP compliance mapping

Document: Recommended Secure Configuration

Detailed security configuration guidance covering:

  • Authentication and session management settings
  • Identity provider security configuration
  • Role-based access control (RBAC) settings
  • Data protection and encryption
  • Monitoring and audit configuration
  • Security best practices
  • Compliance checklists

Quick Reference

For Super Administrators

For Tenant Administrators

For Privileged Users

Classification: Public
Last Updated: 2026-01-22