Beta
Documentation
IntegrationsCredentials

Credentials

Three-Tier Credential System

ThinkFleet uses a layered credential system to keep your API keys and tokens secure.

Organization Credentials

Shared across all agents in your organization.

  • Encrypted at rest using AES-256-GCM
  • Proxy mode available — ThinkFleet can proxy API calls so the key never reaches the agent container
  • Managed from the organization settings

Agent Credentials

Specific to a single agent.

  • LLM API keys (Anthropic, OpenAI, Google, etc.)
  • Channel-specific tokens
  • Integration credentials
  • Rotation tracking and expiry enforcement

Platform Credentials

SaaS-level credentials managed by ThinkFleet.

  • Composio API keys
  • Twilio credentials
  • Never exposed to agent containers

Credential Types

ThinkFleet supports credentials for 150+ services, organized by category:

  • AI Providers — Anthropic, OpenAI, Google AI, xAI, Mistral, DeepSeek
  • Cloud — AWS, Azure, GCP, DigitalOcean
  • Communication — Twilio, SendGrid, Gmail
  • DevOps — GitHub, GitLab, Docker Hub
  • CRM — Salesforce, HubSpot
  • Productivity — Notion, Slack, Google Drive
  • Payments — Stripe

Security

  • All credentials encrypted at rest (AES-256-GCM)
  • Credentials can be rotated without agent downtime
  • Audit logging tracks all credential access
  • Proxy mode prevents credential exposure to containers

MCP Servers

Previous Page

Security Overview

Next Page

On this page

Three-Tier Credential SystemOrganization CredentialsAgent CredentialsPlatform CredentialsCredential TypesSecurity