Access Controls

Control who can use AI and what they can change

Use SSO, RBAC, scoped Universal API keys, team workspaces, and audit logs so AI access maps to your org instead of juggling separate providers.

Request a demo Read security docs

Access control flow showing owner, admin, and member roles connected through SSO and RBAC to scoped API keys and audit logs

Access review

Who signed in, which keys they used, and what settings changed — in one reviewable view.

Access

SSO + RBAC

Keys

Scoped

Review

Audit logs

User

[email protected]

Member accessed a production key.

Key

support-prod

Universal API key owned by the support team.

Audit

Settings changed

Admin tightened key spend and retention policy.

New capabilities

What your team gains with Concentrate

Sign in with company identity

Connect SSO and RBAC so AI access follows the same onboarding and offboarding as the rest of your tools.

Scope keys to teams and apps

Issue Universal API keys per workload with their own model list, limits, and logs instead of juggling separate providers.

Record who changed policy

Track actor, action, entity, and time in audit logs when keys, roles, or settings change.

Who Concentrate is designed for

Teams that need clear ownership and review

AI access should map to teams, apps, users, and keys instead of juggling separate providers across every repo. Security reviewers want to see who can change model access, spend limits, and logging — and a record when they do.

Security and IT

Require SSO, enforce RBAC, and review audit logs when access or policy changes.

Platform engineering

Issue Universal API keys per app or team with model access, spend limits, and logging inherited from the parent scope.

Team leads

Use team workspaces so each group owns its keys and usage without seeing everyone else's traffic.

Compliance reviews

Show scoped keys, role separation, and settings history instead of explaining informal access to provider consoles.

Access Controls basics

Frequently asked questions

What can admins control before approving AI usage?

Admins can review who can manage members, teams, keys, billing, settings, and request logs. They can also scope Universal API keys to specific teams, apps, projects, and environments.

How do SSO, RBAC, and Universal API keys work together?

SSO identifies the user, RBAC controls what they can manage, and Universal API keys scope model access for apps or teams. A support app can have a different key, model list, spend limit, and redaction rule than an internal engineering tool.

How do audit logs fit into access controls?

Audit logs show who changed members, teams, keys, settings, and other resources. That gives admins a reviewable record when access or policy changes.

Access Controls

Control who can use AI and what they can change

Use SSO, RBAC, scoped Universal API keys, team workspaces, and audit logs so AI access maps to your org instead of juggling separate providers.

Request a demo Read security docs

Access review

Who signed in, which keys they used, and what settings changed — in one reviewable view.

Access

SSO + RBAC

Keys

Scoped

Review

Audit logs

User

[email protected]

Member accessed a production key.

Key

support-prod

Universal API key owned by the support team.

Audit

Settings changed

Admin tightened key spend and retention policy.

New capabilities

What your team gains with Concentrate

Sign in with company identity

Connect SSO and RBAC so AI access follows the same onboarding and offboarding as the rest of your tools.

Scope keys to teams and apps

Issue Universal API keys per workload with their own model list, limits, and logs instead of juggling separate providers.

Record who changed policy

Track actor, action, entity, and time in audit logs when keys, roles, or settings change.

Who Concentrate is designed for

Teams that need clear ownership and review

Security and IT

Require SSO, enforce RBAC, and review audit logs when access or policy changes.

Platform engineering

Issue Universal API keys per app or team with model access, spend limits, and logging inherited from the parent scope.

Team leads

Use team workspaces so each group owns its keys and usage without seeing everyone else's traffic.

Compliance reviews

Show scoped keys, role separation, and settings history instead of explaining informal access to provider consoles.

Access Controls basics

Frequently asked questions

What can admins control before approving AI usage?

Admins can review who can manage members, teams, keys, billing, settings, and request logs. They can also scope Universal API keys to specific teams, apps, projects, and environments.

How do SSO, RBAC, and Universal API keys work together?

How do audit logs fit into access controls?

Audit logs show who changed members, teams, keys, settings, and other resources. That gives admins a reviewable record when access or policy changes.

Control who can use AI and what they can change

What your team gains with Concentrate

Sign in with company identity

Scope keys to teams and apps

Record who changed policy

Teams that need clear ownership and review

Security and IT

Platform engineering

Team leads

Compliance reviews

Frequently asked questions

LLM Gateway

Teams

Integrations

Platform

Legal

Control who can use AI and what they can change

What your team gains with Concentrate

Sign in with company identity

Scope keys to teams and apps

Record who changed policy

Teams that need clear ownership and review

Security and IT

Platform engineering

Team leads

Compliance reviews

Frequently asked questions

LLM Gateway

Teams

Integrations

Platform

Legal