Manage Mondoo - Overview
Manage Mondoo access, alerting, logging, and account settings.
As your team's use of Mondoo grows, you need to control who has access, how alerts are delivered, and how your spaces and organizations are configured. This section covers the administrative tasks that keep Mondoo running smoothly for your organization.
Access and identity
- Manage access to Mondoo - Control team member permissions, configure single sign-on with Okta or Microsoft Entra ID, and grant services, scripts, and apps access through service accounts and API tokens.
Alerting
- Manage alerts - Configure Mondoo to send notifications when asset security scores change. Integrate with Slack, Microsoft Teams, Telegram, or custom webhooks.
User settings
- Manage your user settings - Customize your display preferences, email notifications, and login authentication methods.
Space and organization configuration
-
Define your SLA - Set service-level agreement targets for remediating findings by risk score, and track your team's mean time to remediate against those commitments.
-
Remove obsolete assets - Configure automatic cleanup of assets that haven't reported scan results or terminated EC2 instances.
Monitoring and auditing
- View audit logs - Track administrative events such as access management changes, service account creation, and other organization and space management tasks.
Reference
-
Remove a space or organization - Delete unused spaces or organizations, or remove all assets from a space while preserving its configuration.
-
Service IP addresses - Configure your firewall allow list with Mondoo service IP addresses for installation, updates, and API access.
-
Releases and versions - Understand Mondoo's semantic versioning policy and the cnspec N-1 support cycle.