CrocLock
Single sign-on, role controls, and tenant boundaries.
CrocLock is the access layer for the Nest2App ecosystem. Connect your IdP, map roles, and enforce tenant boundaries. Sessions, permissions, and audit events are centrally managed. CrocLock does not provide legal advice or certify compliance.
SSO with your IdP
Use SAML or OIDC with Okta, Azure AD, or similar providers. Map groups to roles to keep management simple.
- SAML / OIDC
- Group → role mapping
- Just-in-time user creation (optional)
Tenant-aware permissions
Scope access per site or business unit. Keep data separated by design and assign least-privilege roles.
- Tenant boundaries
- Site/business-unit scoping
- Least-privilege defaults
Session & device posture
Set session lifetimes and optional re-auth for sensitive actions. Review device, IP, and key events in audit logs.
- Session limits
- Step-up re-auth (optional)
- Audit events & exports
Built-in audit events
Track sign-ins, privilege changes, and policy updates with timestamps. Export CSV/PDF as needed.
- Sign-in history
- Role changes
- CSV/PDF exports
Centralized SSO
One sign-in across Safety, Operations, Training, and more.
Least-privilege roles
Restrict by function, site, and data sensitivity.
Tenant separation
Partition data across customers or business units.
FAQ
Do you support SAML and OIDC?
Yes. CrocLock supports both SAML and OIDC with major IdPs.
Can I scope by site or tenant?
Yes. Roles can be limited by tenant, site, or business unit.
Are admin changes tracked?
Yes. Key events are time-stamped and exportable as CSV/PDF.
Does CrocLock provide legal or compliance guarantees?
No. CrocLock centralizes identity controls and audit events. For legal or regulatory interpretation, consult your compliance and legal advisors.
Secure access, simplified
CrocLock unifies sign-on, enforces role-based policies, and captures a complete audit trail for compliance.