SecurityAccess Control
Access Control
DM Access Control
By default, agents only respond to allowlisted contacts. Configure per-channel allowlists to control who can message your AI.
- Allowlists — Specify phone numbers, usernames, or IDs that can interact with your agent
- Default behavior — Blocked unless explicitly allowed
Group Access Control
Control how your agents interact in group chats:
| Policy | Behavior |
|---|---|
| Disabled | Agent ignores all group messages |
| Allowlist | Agent responds in specific groups only |
| Open | Agent responds in any group it's added to |
Additional group controls:
- Sender restrictions — Only allow specific users to interact in groups
- Mention gating — Require
@mentionbefore responding (default) - Tool restrictions — Limit available tools in group contexts
Tool Access Control
Control which tools agents can use:
Tool Profiles
| Profile | Description |
|---|---|
| Minimal | Session status only |
| Coding | File system, runtime, sessions, memory |
| Messaging | Cross-channel messaging tools |
| Full | All tools (default) |
Granular Control
- Global allow/deny — Apply across all agents
- Per-agent — Override for specific agents
- Per-provider — Restrict by LLM provider
- Per-group/channel — Different tool access in different contexts
Exec Approvals
Shell command execution can be gated:
- Ask policy — Prompt for approval before executing
- Allowlist — Auto-approve matching commands
- Denylist — Block specific commands
Organization Roles
Access to ThinkFleet features is controlled by organization membership:
- Owner — Full access to all features and settings
- Admin — Manage agents, channels, and integrations
- Member — Use agents and view dashboards