For ZIRO’s organization-level security and compliance information, certifications, and trust documentation, visit trust.goziro.com.
This page indexes all security and compliance documentation for ZIRO Platform for Microsoft (ZPM). Use it as a starting point when evaluating ZPM’s security posture, onboarding a security-conscious customer, or responding to a compliance questionnaire.
Identity & Access Management
Roles and Permissions Required for ZIRO Platform (Microsoft)
The primary permissions reference. Covers the Teams Communications Administrator Entra role, all required and optional Microsoft Graph API application permissions, and the rationale for least-privilege design.
Grant ZIRO Platform access to specific security group membership via Ownership in Entra
For customers who want to avoid granting GroupMember.ReadWrite.All tenant-wide — how to scope ZPM’s group write access to specific groups via Entra ownership.
User & Group Permissions
In-app RBAC configuration — how to assign admin and helpdesk roles to users and security groups within ZPM.
Authentication & Single Sign-On
Getting Started with Single Sign-On (OIDC or SAML)
Covers ZPM’s default Microsoft OIDC authentication, how to switch to SAML with a custom IdP, org-wide consent, and admin consent requirements for locked-down tenants.
Network Security & Access Controls
How to Enable IP Whitelisting to/from the ZIRO Platform
How to restrict platform and API access by IP address. Documents ZIRO’s static IP range (216.83.54.0/23) and how to use it with Entra Conditional Access Policies and on-premises firewall rules.
ZPM Proxy — How it Works & Use Cases
Architecture overview and security use cases for on-premises proxy connectivity between ZPM and customer environments.
Regulated Environments & Compliance
ZIRO Platform Interoperability with GCC High (GCCH)
For US government and defence customers. Covers ZIRO’s FedRAMP High P-ATO (JAB) and DoD IL2 authorization, and how to configure Entra Conditional Access to restrict GCCH tenant access to ZIRO’s US-only IP range.
Configuration Compliance & Audit
Policy Misconfiguration Report
Surfaces Teams users whose assigned policies don’t match their Dial Plan Group — useful for ongoing compliance audits and remediating policy drift.
Usage Location Enforcement in Microsoft Teams Phone
Documents how ZPM handles usage location — a Microsoft licensing compliance requirement that must be satisfied before phone number assignment.
Teams Trusted IPs
Managing trusted IP ranges in Teams for location-based policy enforcement.
Proxy Server - How to Deploy and Setup the ZIRO Proxy Server
Documents explaining how to deploy the ZP on-prem proxy
ZP End-User License Agreement
ZP End-User License Agreement (EULA)
This document describes the ZP EULA that must be agreed to prior to using the application on first login