What is C1?
C1 is an identity security platform for governing access across your human, non-human, and AI identities. With C1, you can:- Govern access for AI agents and tools — manage and audit what your AI agents and MCP servers can access across apps, data sources, and infrastructure.
- Provision and deprovision access — grant and remove access across your connected applications automatically.
- Enable self-service and just-in-time (JIT) access requests — let users request the access they need, with approval policies and automatic time-bound grants.
- Run user access reviews (UARs) — systematically verify who has access to what and certify or revoke it.
- Centralize visibility and audit — keep an auditable record of access, entitlements, and changes across every connected app.
What’s new
Release notes
The latest new features, enhancements, and resolved issues. Published weekly.
Popular resources
C1 network requirements
Add C1 egress IPs and hostnames to your firewall and proxy allowlists.
Create a UAR campaign
Run user access review (UAR) campaigns to systematically verify user access.
Import data
Import access data from your custom, home-grown, or airgapped applications.
Set up applications
Mirror your software’s access data, including accounts, resources, and permissions.
Getting started guides
Get started with AWS just-in-time access
Enhance security by setting up just-in-time access to your organization’s key Amazon Web Services resources.
Get started running privileged access reviews
From planning and preparation to creating the campaign, managing reviewers, and final reporting.
Get started with self-service access
We’ll create security policies and customized access profiles, set up auto-approval of low-risk access, and demonstrate end-user workflows.
End-user resources
How to review access
Have you been assigned access reviews in C1? Here’s what you need to know.
How to request new access
Need access to a new app or permission? Start here.