Security You Can Trust
AzureIQ is built with security at its core. All operations use your Azure RBAC permissions, and every action is logged for compliance.
Authentication
Azure Entra ID (Azure AD)
Enterprise SSO with your existing Microsoft identity provider
On-Behalf-Of Flow
Secure token exchange that respects user permissions
MFA Support
Works with your existing multi-factor authentication policies
Data Protection
Isolated Workspaces
Each session runs in a dedicated Docker container
No Permanent Storage
Document content is never stored after session ends
Encrypted Transit
All data encrypted with TLS 1.3
Access Control
Azure RBAC
Respects your Azure role-based access control exactly
Tool Risk Levels
High-risk actions require explicit user approval
Bash Validation
Blocks dangerous commands and path traversal
Compliance
Audit Logging
Comprehensive logs of all queries and tool usage
SOC 2 Ready
Enterprise-grade infrastructure and processes
GDPR Compliant
Data residency and privacy controls
How Permissions Work
User Request
User asks a question in natural language
Permission Check
System evaluates tool risk level
User Approval
High-risk actions require explicit consent
Audit Log
All actions recorded for compliance
Tool Risk Classification
Low Risk
Read-only operations that don't modify resources.
subscription_list resource_groups vm_list Medium Risk
Data queries and recommendations. Logged but auto-approved.
metrics_query cost_query budgets_list High Risk
Resource modifications (V2). Requires user approval.
vm_start vm_stop vm_restart Questions about security?
Our team can provide detailed security documentation and answer any compliance questions.
Contact Security Team