AccessHive Documentation

AccessHive is a Privileged Access Management (PAM) platform built for marketing agencies. It helps you govern platform identities, manage client access, automate user provisioning, and enforce compliance across your entire client portfolio – all from one place.

New to AccessHive?

Start with the Quick Start guide to connect Google Workspace and create your first identity in under five minutes.

Concepts

Learn how AccessHive works before diving into tasks.

Topic	What you will learn
Identity Types	The five identity types and when to use each one
Platforms	Platform categories and which ones require a directory provider
Provisioning	The provisioning lifecycle, states, and identity health
Credential Vault	How credentials are encrypted, stored, and revealed
Governance	Approval policies, role-based access, and compliance
Identity Sources	Google Workspace, Microsoft Entra ID, and local directory
Access Requests	The request lifecycle and approval flow
Ownership Model	Agency-owned identities versus client-dedicated identities

Guides

Step-by-step instructions organized by topic.

Getting Started

Guide	What it covers
Agency Onboarding	Full first-time setup checklist (10 steps)

Clients and Access

Guide	What it covers
Client Management	Managing client accounts, portfolios, and team access
Access Requests	Request workflows and approvals
Creating Identities	Wizard walkthrough for all identity types and platforms
Managing Credentials	Storing, revealing, and rotating credentials
Self-Service Portal	End-user access portal

Platforms

Guide	What it covers
Platform Catalog	Browsing and adding platforms from the catalog
Platform Connections	Connecting and configuring marketing platforms
Google Workspace	Google Workspace (GWS) setup, provisioning, and sync

Security and Governance

Guide	What it covers
PAM Sessions	Credential checkout, session monitoring, and rotation
Approval Policies	Configuring approval workflows and escalation rules
Workflows	Automating identity lifecycle with workflow rules
Role Templates	Reusable access patterns for teams
Emergency Access	Break-glass credential access for urgent situations
Time-Bound Access	Temporary access grants with automatic expiration
Permission Analysis	Reviewing and right-sizing access permissions

Identity Lifecycle

Guide	What it covers
JML Automation	Joiner-Mover-Leaver lifecycle automation
Auto-Remediation	Automatic detection and fixing of policy violations
Proxy Identity	Intermediate accounts for individual-credential platforms
Bulk Import	Importing identities and users via CSV
SCIM Provisioning	Automated user provisioning via SCIM

Monitoring and Compliance

Guide	What it covers
Executive Dashboard	Agency-wide metrics, compliance scores, and alerts
Audit Trail	Viewing and exporting audit logs
Reports	Compliance reports and analytics
SIEM Integration	Streaming audit data to security platforms

Administration

Guide	What it covers
Agency Profile	Agency settings, branding, and PAM configuration
Users and Roles	Managing team members and assigning roles
Notifications	Configuring email and in-app notification preferences
Single Sign-On	Setting up SSO with your identity provider
Local Directory	Managing the built-in user directory
RBAC Mappings	Mapping directory groups to AccessHive roles
Plan and Billing	Subscription management and billing details
Settings	All configuration options

Help

Guide	What it covers
Troubleshooting	Common issues and fixes

Reference

Detailed lookup tables for fields, states, jobs, and operations.

Reference	What it covers
Identity Field Requirements	Required fields per identity type
Provisioning States	All provisioning statuses and transitions
API Endpoints	System operations for identity management
Background Jobs	Job types, lifecycle, and monitoring

AccessHive Documentation

Concepts

Guides

Getting Started

Clients and Access

Platforms

Security and Governance

Identity Lifecycle

Monitoring and Compliance

Administration

Help

Reference

On This Page