> clade-enterprise-rbac
Manage Anthropic workspaces, API keys, team access, and spending limits Use when working with enterprise-rbac patterns. for enterprise Claude deployments. Trigger with "anthropic workspace", "anthropic team management", "claude enterprise", "anthropic api key management".
curl "https://skillshub.wtf/jeremylongshore/claude-code-plugins-plus-skills/clade-enterprise-rbac?format=md"Anthropic Enterprise & Access Management
Overview
Anthropic uses Organizations and Workspaces for access control. API keys are scoped to workspaces.
Organization Structure
Organization (your-company)
├── Workspace: Production
│ ├── API Key: prod-backend (Tier 4)
│ └── API Key: prod-frontend-proxy (Tier 2)
├── Workspace: Staging
│ └── API Key: staging-all (Tier 2)
└── Workspace: Development
└── API Key: dev-team (Tier 1)
API Key Best Practices
| Practice | Why |
|---|---|
| One key per service/environment | Isolate blast radius |
| Name keys descriptively | prod-recommendation-service not key-1 |
| Set spending limits per key | Prevent runaway costs from bugs |
| Rotate quarterly | Reduce exposure window |
| Never share dev and prod keys | Different rate limit tiers |
Spending Limits
Set in Anthropic Console → Settings → Limits:
- Monthly spend limit: Hard cap on total spend
- Per-key limits: Not yet available — use separate workspaces
Access Control Checklist
- Separate workspaces for dev/staging/prod
- Separate API keys per service
- Spending alerts configured
- Key rotation schedule (90 days)
- Offboarding process: revoke keys when team members leave
- Audit log review (Console → Logs)
Output
- Separate workspaces for production, staging, and development
- Dedicated API keys per service/environment with descriptive names
- Spending limits and alerts configured
- Key rotation schedule established (90-day cycle)
- Access control checklist completed
Error Handling
| Error | Cause | Solution |
|---|---|---|
| API Error | Check error type and status code | See clade-common-errors |
Examples
See Organization Structure diagram, API Key Best Practices table, and Access Control Checklist above.
Resources
Next Steps
See clade-migration-deep-dive for migrating from other LLM providers.
Prerequisites
- Anthropic Organization account at console.anthropic.com
- Admin access to create workspaces and API keys
- Understanding of environment isolation requirements
Instructions
Step 1: Review the patterns below
Each section contains production-ready code examples. Copy and adapt them to your use case.
Step 2: Apply to your codebase
Integrate the patterns that match your requirements. Test each change individually.
Step 3: Verify
Run your test suite to confirm the integration works correctly.
> related_skills --same-repo
> fathom-cost-tuning
Optimize Fathom API usage and plan selection. Trigger with phrases like "fathom cost", "fathom pricing", "fathom plan".
> fathom-core-workflow-b
Sync Fathom meeting data to CRM and build automated follow-up workflows. Use when integrating Fathom with Salesforce, HubSpot, or custom CRMs, or creating automated post-meeting email summaries. Trigger with phrases like "fathom crm sync", "fathom salesforce", "fathom follow-up", "fathom post-meeting workflow".
> fathom-core-workflow-a
Build a meeting analytics pipeline with Fathom transcripts and summaries. Use when extracting insights from meetings, building CRM sync, or creating automated meeting follow-up workflows. Trigger with phrases like "fathom analytics", "fathom meeting pipeline", "fathom transcript analysis", "fathom action items sync".
> fathom-common-errors
Diagnose and fix Fathom API errors including auth failures and missing data. Use when API calls fail, transcripts are empty, or webhooks are not firing. Trigger with phrases like "fathom error", "fathom not working", "fathom api failure", "fix fathom".