Security

Protect your organization with enterprise-grade security

Security Overview

ViksaAI is built with security as a core principle. From authentication to data encryption, every layer is designed to protect your organization's data and comply with enterprise security requirements.

Security Pillars

Authentication

Secure login with password, OAuth, SAML, and OIDC support.

Authorization

Role-based and attribute-based access control for fine-grained permissions.

Secrets Vault

Encrypted storage for API keys, credentials, and sensitive data.

Data Protection

Encryption at rest and in transit for all sensitive data.

Authentication Methods

MethodDescriptionPlan
Email/PasswordTraditional login with secure password hashingAll
Google OAuthSign in with Google accountAll
SAML 2.0Enterprise SSO with Okta, Azure AD, etc.Enterprise
OIDCOpenID Connect for modern IdPsEnterprise

Role-Based Access Control

ViksaAI uses a hierarchical permission system with roles and modules:

Account Owner

Full access to everything

Admin

Manage org settings and users

Member

Use agents and run execution

Custom roles with granular permissions can be created for specific needs.

Secrets Management

Store sensitive credentials securely in the Vault and inject them into agents at runtime:

Encrypted at rest with AES-256
Organization-scoped by default
Injected as environment variables at runtime
Never logged or exposed in execution outputs

Detailed Guides

Authentication

Configure login methods including password, OAuth, and SSO.

8 min read

Role-Based Access Control

Manage permissions with roles and fine-grained access policies.

12 min read

Secrets Management

Securely store and inject API keys and credentials.

8 min read

Enterprise SSO

Configure SAML 2.0 or OIDC for enterprise single sign-on.

15 min read