Owner onboarding — Carter Med

Enroll a WebAuthn hardware key

Owner accounts cannot use TOTP. You must enroll at least one FIDO2 / WebAuthn key (YubiKey 5, Titan, Solo). Two keys are required before the danger-zone is unlocked. There is no SMS fallback — there is no email reset.

Display name

Recovery email

Receives signed notifications only — never password resets.

Registered keys

YubiKey 5C NFC · primary
Attestation · Yubico · added 2 min ago
enrolled
Backup key
Required before danger-zone unlocks

Danger-zone acknowledgement

Promote a release to production · paged to on-call
Rotate the platform signing key · invalidates every active session
Freeze onboarding · pauses new tenants and patients
Trigger breach drill · simulated regulator notification
Revoke provider credential · logs the actor and reason permanently

I understand each action is logged with my key attestation and is non-recoverable.

Carter Med Support cannot reset a lost owner key. Lose both, and the org recovers via the signed founders' agreement.

Previous Open control plane