> ## Documentation Index
> Fetch the complete documentation index at: https://docs.coreweave.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Managed Auth

> Abstracted authentication for simplified user management

<Tip>
  Managed Auth is the **recommended path** for handling user authentication across CoreWeave.
</Tip>

**Managed Authentication**, simply called **Managed Auth**, is a series of CoreWeave-provided services that abstract authentication in order to offer customers flexible, simple, and secure methods of authentication management.

The Managed Auth suite is comprised of:

* The [CoreWeave Cloud Console](/security/authn-authz/activate-org)
* CoreWeave [API Access Tokens](/security/authn-authz/managed-auth/api-access)
* Generated [kubeconfig files](/products/cks/auth-access/managed-auth/kubeconfig) for CKS clusters
* Session cookies in the user's Web browser when using the Cloud Console

These services are used to authenticate to your CoreWeave organization and top-level resources.

<Info>
  To learn more about user permissions and user authorization, see [IAM Access Policies](/security/iam/access-policies) and [Legacy User Permissions](/security/iam/access-policies/legacy-permissions).
</Info>

## Managed Auth and metrics

Grafana metrics are gated behind Managed Auth services. In order to export metrics or use [CoreWeave Grafana](/observability/managed-grafana), the Managed Auth methods must be used.

## Other authentication methods for CKS clusters

CKS **Clusters**, specifically, do allow for additional methods of authentication.

<Warning>
  No other authentication method is supported to create new CKS Clusters or VPCs. Only CKS Clusters that have already been created allow for alternative authentication methods.
</Warning>