Identity and Access

The JFrog Platform security model offers protection at several levels. It allows you to do the following actions.

• Assign role-based or user-based permissions to areas in your repositories (called Permission Targets)
• Allow sub-administrators for Permission Targets
• Configure LDAP out-of-the-box
• Prevent clear text in Maven's settings.xml file
• Inspect security definitions for a single artifact or folder and more.

The security is based on Spring Security and can be extended and customized.

The following sections provide detailed information on user management and access management in the JFrog Platform.

• Security Configuration
• Manage Users
• Manage Groups
• Permissions
• User Profile
• Access Tokens
• Centrally Secure Passwords
• Security Keys Management
• Vault
• Logging in using Multi-factor Authentication (MFA)
• Key Encryption