Enterprise security with SIEM export, 365-day retention, RBAC, and SOC 2 compliance evidence.
Deploy in 15 minThis is what your OpenClaw config looks like. Deploy it on Clawctl in 15 min.
# Clawctl Security Profile — Enterprise SOC 2
# Good for: enterprise, compliance-required, regulated
{
"security": {
"level": "enterprise",
"auth": true,
"twoFactor": true,
"sso": { "enabled": true, "provider": "okta" },
"approvals": { "enabled": true },
"egress": { "filter": true, "strict": true },
"audit": {
"retention_days": 365,
"siem_export": true,
"export_format": "json"
},
"rbac": { "enabled": true },
"secrets": { "encryption": "aes-256", "rotation": "90d" }
}
}Everything in Standard plus:
SIEM/S3 audit export
365-day audit retention
Role-based access control (RBAC)
Compliance evidence pack generation
Staging + production environments
Enterprise deployments with compliance requirements
SOC 2 Type II certified organizations
Companies with security questionnaire requirements
Regulated industries (finance, healthcare)
Enterprise-grade with SIEM export, RBAC, 365-day retention, and compliance evidence generation.
It provides the controls and evidence needed. SOC 2 certification is an organizational process — Clawctl provides the technical foundation.
JSON export to S3, webhook, or direct SIEM integration. Compatible with Splunk, Datadog, and others.
Business plan ($999/mo) or Enterprise plan for full SOC 2 features.
15 min to deploy. $49/month. Full security included. No DevOps required.
Get Started with ClawctlMinimal Security Profile
Basic security for development and testing. Relaxed restrictions, full tool access, minimal approval gates.
Standard Security Profile
Production-ready security with approval gates, egress filtering, and audit logging. The Clawctl default.
HIPAA-Compliant Profile
Security profile for healthcare organizations handling protected health information (PHI).