Support Access Management gives you visibility and control over CoreWeave employee access to your CKS environment. All CoreWeave support access is request-based, time-bound, and auditable; with Support Access Management enabled, access requests require customer approval.Documentation Index
Fetch the complete documentation index at: https://docs.coreweave.com/llms.txt
Use this file to discover all available pages before exploring further.
Overview
CoreWeave employees do not have standing access to customer environments. When access is needed for support purposes, CoreWeave employees must submit a time-bound request for access that may be approved or denied. When you enable the Support Access Management feature, you are in control of approving and denying such requests. Any member of your organization with theAccess Request Approver IAM role can approve requests. Approved access automatically expires after 8 hours. Unanswered requests expire after 2 hours without granting access.
You can review, approve, and deny access requests in the Cloud Console. Notifications are delivered to a designated Slack channel by default, with additional channels configurable on request.
Logs
CoreWeave can forward three types of logs related to support access activity:- Teleport audit logs: Every access request, approval, and denial, forwarded automatically through CoreWeave Telemetry Relay.
- Kubernetes audit logs: User, resource, and authorization details of all CKS API interactions, available in CoreWeave Grafana and forwardable through Telemetry Relay.
- Teleport session logs: Commands executed during approved access periods, available on request with a 24-hour turnaround.