Overview
ChatGPT and the API for FedRAMP are versions of ChatGPT Enterprise and the API platform that have achieved Federal Risk and Authorization Management Program (FedRAMP) Moderate accreditation through the FedRAMP 20x program.
Feature availability
ChatGPT and API for FedRAMP do not initially include all features available in the commercial platforms. Over time, our goal is to bring feature parity as close as possible to the commercial ChatGPT Enterprise and API platforms while maintaining FedRAMP compliance.
The sections below list the features currently available.
ChatGPT
Core features
Advanced features
Latest Thinking and Pro models
API
Note: FedRAMP compliance requires that all API requests use the designated gov.api.openai.com endpoint for all supported methods and models.
Methods
The following API methods are currently available:
/v1/chat/completions
/v1/completions
/v1/conversations
/v1/files
/v1/moderations
/v1/responses
/v1/uploadsFor more information about using these methods, see: API reference documentation.
Models
The latest model is generally available to use in the FedRAMP API. Model snapshots are also available as they are released.
Legacy models are not available.
Codex
FedRAMP customers can use local Codex with FedRAMP ChatGPT sign-in or FedRAMP API-key sign-in, and Codex local will respect FedRAMP boundaries any time that it is communicating with OpenAI.
Please note that local downloadable products like the Codex app or CLI are outside of the FedRAMP boundary, and should be carefully reviewed by your Authorizing Official.
Codex Cloud is not currently supported in FedRAMP workspaces.
Codex with ChatGPT sign-in
To use local Codex with a FedRAMP workspace, do all of the following:
Sign in to local Codex with ChatGPT.
Select a FedRAMP workspace.
Use Codex v0.122.0 or later.
Codex with API key sign-in
To use local Codex with a FedRAMP API organization, do all of the following:
Use an API key generated from a FedRAMP-enabled API organization.
Use Codex v0.122.0 or later.
Run this command in Terminal to configure Codex to use the FedRAMP API endpoint:
codex config set openai_base_url https://gov.api.openai.com/v1Available models in Codex
In local Codex, FedRAMP customers have access only to models available in FedRAMP environments.
Privacy and security
ChatGPT and API FedRAMP are designed for strict FedRAMP compliance and are operated with additional access restrictions and feature controls compared to standard ChatGPT Enterprise environments. Key Enterprise privacy measures are still in place:
No model training on customer data
Identical retention policies to ChatGT Enterprise, including availability of the Compliance API
FAQ
How is ChatGPT FedRAMP different from ChatGPT Gov?
ChatGPT FedRAMP is a SaaS product that OpenAI owns and manages for the customer. It is a configuration of ChatGPT Enterprise with additional accredited compliance. ChatGPT Gov is a containerized frontend application that customers install and manage in their own Microsoft Azure environment.
Can I convert my existing ChatGPT Enterprise workspace to FedRAMP?
No. Existing ChatGPT Enterprise workspaces cannot be converted to FedRAMP.
However, OpenAI can support a one-time migration of users to a newly provisioned FedRAMP workspace, including ChatGPT conversations and tenant-level SSO settings. Workspace settings will need to be configured again in the new environment. For assistance, contact your account team.
Can I convert my existing API organization to FedRAMP?
Yes. Existing API organizations can be converted to FedRAMP.
Once converted, customers must use the designated gov.api.openai.com endpoint.