Authentication & Access Control
Toku enforces centralized authentication, MFA, SCIM-based lifecycle controls where configured, and role-based access control. Internal access follows least privilege and is continuously monitored for compliance.
Security control area
Access & Identity
Authentication, SSO, MFA, RBAC, personnel security, vendor review, and least-privilege controls.
Vendor & Personnel Security
Employees complete background checks before receiving access to production systems. Customer data handling is limited to vetted Toku personnel, and device, identity, endpoint, and compliance controls are enforced before production access is granted.