The goal of multitenancy is to maximize resource sharing across by allowing multiple users (while hiding the fact that these users are on the same server) and to ensure optimal performance. You can register tenants in the Identity Server Management Console, allowing tenants to maintain separate domains for their institutions.
| Table of Contents |
|---|
Adding a tenant
To add a new tenant, take the following steps:
- On the Configure tab of the Management Console, click Add New Tenant.
- Enter the information about this tenant as follows:
- Domain - The domain name for the organization, which should be a unique name (e.g., abc.com)
- Usage plan for the tenant - The usage plan defines limitations (such as number of users) for the tenant.
- First Name - First name of the tenant admin.
- Last Name - Last name of the tenant admin.
- Admin Username - The username the tenant admin will use to log in. The username must always end with the domain name (e.g., admin@abc.com).
- Email - The email address of the admin.
Viewing tenants
To view existing tenants, on the Configure tab in the Identity Server Management Console, click View Tenants. tenants) to log in and use a single server/cluster at the same time, in a tenant-isolated manner. That is, each user is given the experience of using his/her own server, rather than a shared environment. Multitenancy ensures optimal performance of the system's resources such as memory and hardware and also secures each tenant's personal data.
You can register tenant domains using the Management Console of WSO2 products. See Managing Tenants for more information on adding and viewing tenants in the WSO2 Identity Server.
About tenants in the Identity Server
- Tenant admin details are saved by default into an internal H2 database. This is configurable to point to an external database if preferred. This can then be scaled appropriately. The tenants can have their own multiple directories set up and these configurations can be dynamically configured via the Management Console.
- The super admin or tenant admin can add user stores to their own domain. Dynamic configurations are possible only for secondary user stores and the 'primary' user store is not configurable at run time. This is because primary user stores are available for all tenants and allowing changes to the configuration at run time can lead to instability of the system. So the primary user store is treated as a static property in the implementation and must be configured prior to run time.
| Info | ||
|---|---|---|
When multitenancy is enabled and a tenant becomes inactive for a long period of time, the tenant is unloaded from the server's memory. By default, the time period is 30 minutes. Once the tenant sends a request again it is considered active. You can change the default time period allowed for tenant inactiveness by adding
|