> ## Documentation Index
> Fetch the complete documentation index at: https://docs.elementum.io/llms.txt
> Use this file to discover all available pages before exploring further.

# AI FAQ

> Frequently asked questions about AI providers, services, and compliance in Elementum

## AI Provider Configuration

<Accordion title="Who can configure AI Providers?">
  Only verified domain users can configure AI Providers. A verified domain user is a user whose email address belongs to one of your organization's approved [email domains](/administration/access-overview).

  This restriction applies to all provider operations, including connecting a new provider (OpenAI, Anthropic, Snowflake Cortex, Gemini, Amazon Bedrock, or Custom), editing credentials or endpoint configuration, adding or removing models, and deleting a provider.

  **Elementum employees cannot create or modify AI Providers or Models in any customer org.** Because Elementum staff identities do not belong to your organization's approved email domains, they are excluded from provider configuration by the same control. Any change to your AI Provider configuration is the action of a verified domain user from your organization and is attributable to them in the audit log.

  This restriction supports AI governance and audit requirements by ensuring provider credentials are managed exclusively by personnel governed under your organization's identity policies. It is enforced platform-wide and cannot be bypassed by role assignment.
</Accordion>

***

## Related Documentation

<CardGroup cols={2}>
  <Card title="AI Overview" icon="brain" href="/ai-agents/ai-overview">
    How providers, services, and agents fit together
  </Card>

  <Card title="AI Services" icon="settings" href="/ai-agents/ai-services">
    Connect providers and create LLM or Embedding services
  </Card>

  <Card title="Access Setup Best Practices" icon="shield-check" href="/administration/access-overview">
    Configure approved email domains, groups, and policies
  </Card>

  <Card title="Roles & Permissions" icon="user-shield" href="/administration/roles-permissions">
    Role definitions and the User Invite Policy
  </Card>
</CardGroup>
