---
description: Comprehensive access control for healthcare applications with identity management, authentication, authorization, and audit logging.
---

# Overview

Aidbox offers everything you need for secure identity, authentication, and auditing.

* [**Identity Management**](identity-management/) - Use Aidbox’s built-in provider or plug in Google, Okta, or any OIDC-compliant service
* [**Authentication**](authentication/) - Supports Basic, OAuth 2.0 & OpenID Connect flows,\
  JWT-based auth and Single Sign-On through external OAuth 2.0 providers.
* [**Authorization**](authorization/) - Control access with Access Policies, SMART scopes Access Control frameworks,\
  Security Labels framework and Scoped APIs (Patient API, Organization API, Compartments API).
* [**Audit & Logging**](audit-and-logging.md) - Track activity with FHIR BALP (Basic Audit Logging Profile) for Audit Events\
  and OpenTelemetry for structured logging.

Want to try it out? Check out our tutorials:

* [Managing Admin Access to the Aidbox UI Using Okta Groups](../tutorials/security-access-control-tutorials/managing-admin-access-to-the-aidbox-ui-using-okta-groups.md)
* [SMART App Launch using Aidbox and Keycloak](authorization/smart-on-fhir/example-smart-app-launch-using-aidbox-and-keycloak.md)
* [How to configure Audit Log](../tutorials/security-access-control-tutorials/how-to-configure-audit-log.md)
