Step-by-step guides, API reference, and architecture documentation, from quick start to advanced compliance configuration.
Connect your directory, configure MFA policies, and go live with SSO. Step-by-step walkthrough for Okta, Azure AD, and LDAP sources.
Read docs →Create your first ABAC access policy, allow/deny by role, device posture, or location. Understand how evaluation order works.
Read docs →Connect passcore as a SAML 2.0 IdP to an application. Test the full login flow end-to-end before going to production.
Read docs →How passcore evaluates a login request: credential verification, MFA enforcement, ABAC policy evaluation, and audit commit, in order.
Read docs →How passcore's continuous authorization model works. Why authorization happens per-request, not per-session.
Read docs →How MustLog mode works. The difference between best-effort and guaranteed audit trails, and when each is appropriate.
Read docs →Configure passcore as SAML 2.0 IdP for Prisma Access. Sync identities into Cloud Identity Engine via SCIM. Push clearance attributes into security policy.
Read docs →Set up inbound SAML federation from Okta. Configure SCIM provisioning in both directions. Handle group mapping and attribute translation.
Read docs →Directory sync via SCIM 2.0. Conditional Access integration. B2B federation for partner organizations.
Read docs →Configure real-time SIEM forwarding. Use prebuilt Splunk app for passcore dashboards. Set up Sentinel analytics rules.
Read docs →Configure hardware security key and passkey enrollment. Set relying party configuration. Handle attestation for high-assurance environments.
Read docs →Set up time-based one-time passwords. Configure enrollment flow. Handle lost authenticator recovery without compromising assurance.
Read docs →Configure reverse proxy for client certificate termination. Set up OCSP responder integration. Map EDIPI to user accounts.
Read docs →Endpoints for token issuance, refresh, and revocation. OIDC discovery document. Introspection endpoint.
Read docs →User, group, and policy management. SCIM 2.0 endpoints. Audit log export. Webhook configuration.
Read docs →Defense-specific endpoints: PIV enrollment, clearance attribute management, revocation status override (admin only).
Read docs →Configure log destinations: S3, Splunk HEC, Azure Log Analytics, or passcore's managed retention. Understand log schema.
Read docs →Generate SOC 2 evidence packages, HIPAA access reports, and FedRAMP continuous monitoring artifacts from the admin console.
Read docs →Configure per-tier log retention. Understand the difference between operational logs and compliance audit trails in passcore.
Read docs →