An organization running compliance scans, a help desk, and an endpoint fleet typically signs in to three different vendors. Each one has its own user directory. Each one has its own audit log. Each one charges per seat, with overlapping users counted three times. When someone wants to query "what's failing across the whole environment", the answer requires API integrations between three independent systems, with three independent rate limits and three independent failure modes.
The TATER ecosystem takes a different position. Five purpose-built apps — TATER Security, TATER Ops, TATER Manage, My TATER, and TATER Insights — share one Microsoft Entra app registration, one Azure Cosmos DB, one MSAL session, one role hierarchy, and one MCP server. Sign in once at any of the five domains and the others accept the session immediately.
Five Apps, Each Purpose-Built
TATER Security at app.tatersecurity.com is the compliance management platform: 4,000+ controls, 19 frameworks, automated scanning of M365 and endpoints, AI Compliance Analyst, evidence collection, GRC modules, MITRE ATT&CK mapping, automated remediation, MCP integration. Built for compliance teams.
TATER Ops at ops.tatersecurity.com is the multi-department service-management platform: IT helpdesk, DevOps tasking, HR workflows, AR/AP procedures, custom categories with up to 5 levels of nesting, multi-step approval chains, bulk actions, email-to-ticket intake, public self-service portal. Built for everyone who takes service requests.
TATER Manage at manage.tatersecurity.com is the platform admin and endpoint fleet console: tenant administration, subscription management, MSP licensing, Azure DevOps sync, agent fleet management, remote command channel, multi-screen viewer, vulnerability inventory. Built for platform administrators and SuperAdmins.
My TATER at my.tatersecurity.com is the personal dashboard every user gets: your assigned tasks, places you've been @mentioned, favorited items, community activity feed, leaderboards, and achievements — your slice of the whole platform surfaced in one place. Built for every individual user.
TATER Insights at insights.tatersecurity.com is the centralized reporting layer: compliance posture, service-desk performance, risk, vendor, training, audit, and licensing reports with group-controlled access and department-level row filtering (IT / HR / AR / AP), CSV/XLSX/PDF export, scheduled email delivery, a custom report builder, and a Power BI bridge. Built for leadership and analysts.
Alongside the five apps, TATER Vault at vault.tatersecurity.com is a zero-knowledge team password manager: master-passphrase client-side encryption, a built-in TOTP/MFA authenticator, a password generator, a breach-and-duplicate security dashboard, group sharing with RSA key wrapping, and organization key escrow for offboarding. Credentials belong to the org and are leased to users — and the server never sees a plaintext secret. Most GRC and compliance vendors ship nothing like it.
Shared Foundation
What unifies them is what they don't have: separate identity, separate data, separate audit. Behind all five sits one Entra app registration (45afb90d-...), one Cosmos DB account (cosmos-tater-sec), one Function App (func-tater-sec-api), and one role hierarchy (SuperAdmin → ServiceProvider → OrgAdmin → Admin → Auditor → Viewer). A user with OrgAdmin in one app has OrgAdmin in all five, scoped to the same organization.
The audit log records every action across every app with a via attribution channel: web for normal browser sessions, ops or manage for the sister apps, mcp / copilot / claude for AI-driven actions, cron for scheduled timers, api for direct API key access, ado-webhook for inbound Azure DevOps sync events. A SuperAdmin filtering for "everything Claude did this week" or "everything that came in from ADO" gets a clean view across all five products.
Cross-Product Interop
The shared foundation enables cross-product wires that no vendor with three separate platforms could match:
- Failing scan → Ops task: a control in TATER Security can spawn a remediation task in TATER Ops with one click; both sides surface the link.
- Vulnerability → remediation task: a CISA KEV match on a device in Manage can spawn a high-priority Ops task pre-linked to the device.
- Mentions inbox:
@usernamein any comment thread surfaces in a single inbox visible from all five apps. - Org Health tile: Ops and Manage dashboards both show a 7-tile cross-product snapshot — failing scans, overdue tasks, open audits, open risks, pending changes, vuln devices, mentions — with click-through to the right product.
- Reverse pill: a task linked to a TATER entity shows the live entity status inline — "Linked control: failing", "Linked risk: open" — so closing the task is grounded in current reality.
- MCP coverage: 277 MCP tools spanning all five products, available via Claude Desktop, Microsoft 365 Copilot, and any MCP-capable AI agent.
One Login Page
The unified login page at /login.html handles sign-in for all five apps. After authentication, an app-picker shows cards for Security, Ops, My TATER, and Insights; the Manage card appears for OrgAdmins and SuperAdmins. Sign in once, click the app you want, and you're in. Microsoft Entra ID auth is the default; for environments where Microsoft accounts aren't permitted, a local-password path is also available.
How TATER Helps
One identity. One database. One audit log. One MCP server. Five purpose-built apps for compliance, service management, platform admin, personal dashboards, and reporting — without the per-platform tax. Sign in once, move between products freely.
Sign in to TATER