The goal of multitenancy is to maximize resource sharing by allowing multiple users (tenants) to log in and use a single server/cluster at the same time, in a tenant-isolated manner. That is, each user is given the experience of using his/her own server, rather than a shared environment. Multitenancy ensures optimal performance of the system's resources such as memory and hardware and also secures each tenant's personal data.
You can register tenant domains using the Management Console of WSO2 products.
When multitenancy is enabled and a tenant becomes inactive for a long period of time, the tenant is unloaded from the server's memory. By default, the time period is 30 minutes. After that, the tenant has to log in again before sending requests to the server.
You change the default time period allowed for tenant inactiveness by adding -Dtenant.idle.time=<time_in_minutes>
java property to the product's startup script ( ./wso2server.sh
file for Linux and wso2server.bat
for Windows) as shown below:
JAVA_OPTS \ -Dtenant.idle.time=30 \
Adding a tenant
In order to manage tenants, you need to be logged in as a super tenant.
To add a new tenant, take the following steps:
- Using admin as the username and password to log in as a super tenant.
- On the Configure tab of the management console, click Add New Tenant.
- Enter the information about this tenant as follows:
- Domain - The domain name for the organization, which should be a unique name (e.g., abc.com)
- Usage plan for the tenant - The usage plan defines limitations (such as number of users) for the tenant.
- First Name - First name of the tenant admin.
- Last Name - Last name of the tenant admin.
- Admin Username - The username the tenant admin will use to log in. The username must always end with the domain name (e.g., admin@abc.com).
- Email - The email address of the admin.
Once you have added a tenant, you can log out of the Identity Server and log back in using the newly created tenant. Now, any settings you may do using that tenant will be unique to your tenant alone.
Viewing tenants
To view existing tenants, on the Configure tab in the Identity Server management console, click View Tenants.