Tenant Information

Overview

CloudCenter supports a multi-tenant model where each enterprise/department can be modeled as a tenant. All tenants within a cloud region or datacenter can use CloudCenter's multi-tenant, multi‐user architecture and only requires at least one CCM and one CCO per cloud region or datacenter.

Tenant Structure

Tenants have a single root hierarchical tree structure. Each tenant has its' own set of users. When CloudCenter is first installed, it is set up with one root tenant and one root tenant user. This root tenant user is the root administrator and is referred to as the CloudCenter platform administrator. CloudCenter customers must designate an administrative-level user as the CloudCenter platform administrator.

Tenants get complete independence with respect to managing their users and groups. CloudCenter treats tenants as independent organizations, each served by tenant administrator.

Users within a tenant can collaborate with each other.

Users in Tenant A cannot collaborate with users in Tenant B and vice versa.

Tenant Profile Information

Tenant administrators can change their profile by accessing the Admin > Tenant Information> Edit Tenant Information page.

The following screenshot shows the Edit Tenant Information page.

See the following links for additional details:

Currency Options

See Account Details for additional details.

User Activation

 Admins can configure a different activation profile based on a user-provided promotion code (at sign up time)

  • In the Edit Tenant Information page, identify the following information:

    • Activation Reference Code: Identify the activation code or rules (Add Activation Rule)

    • Select Activation Profile: Select from a list of pre-configured profiles.

  • In the Admin Console configuration – see SAML SSO, identify the following information:

    • Activation Profiles Reference: Identify an attribute in your metadata to pick an associated activation profile instead of the default profile.

Firewall Settings

CloudCenter offers the administrator the option to define default security groups for each user in the tenant. These security groups are defined by firewall rules that are applied to all VMs launched by each user in the tenant. To activate this option, check the checkbox under the Firewall Settings heading: Create default security groups for users in this Tenant, as shown in the following screenshot.

When this check box is checked, the Firewall Settings section expands and shows a second check box which is checked by default, and an area to add the firewall rules defining the security groups. The following screenshot shows this second checkbox and options.

The Allow launched VMs to communicate with each other check box allows all VMs launched by a user to communicate with each other on all ports across all deployments for that user. This feature is only supported on Amazon, OpenStack, and Google clouds. Unchecking this check box puts the onus on users to set up inter-node communication for their respective deployments.

The Firewall Rules section lets you specify multiple firewall rules that will apply to all VMs launched by all users in the tenant. Each rule applies to one cloud region at a time. Entering the required fields and clicking Add Rule causes the new firewall rule to be added below.

Note that additional firewall rules may be defined for each tier of an application in the Application Tier Properties section of the Topology Modeler tab of the Application Profiles form. And additional firewall rules can be defined in Security Profiles which may be selected by the user when Deploying an ApplicationSee Security and Firewall Rules for additional context.

User Password Rules

The tenant administrator can:

  • Reset passwords for tenant users or prevent all tenant users from resetting their own passwords.

  • Require users to configure passwords that meet the following requirements:

    RuleDefaultType
    Minimum length for password8Character limit scroll bar
    Valid for days8Character limit scroll bar
    No (unchecked)Check box
    Require at least one uppercase characterNo (unchecked)Check box
    Require at least one lowercase characterNo (unchecked)Check box
    Require at least one digitNo (unchecked)Check box
    Require at least one special characterNo (unchecked)Check box

User Email Settings

Check the Disable all email notifications check box to disable all email notifications for the tenant owner as well as all users in this tenant.

SMTP Settings

You can set up your SMTP mail server to use CCM to send emails by configuring this self-explanatory section in the CCM UI's > Admin > Tenant Information page or in the Mail Properties Management APIs.

The CloudCenter platform does not support TLS ports. The CloudCenter platform only supports SSL ports to configure SMTP mail servers.

Parent Administrator

Tenants administrators can setup additional sub‐tenants and can control the following information for each sub-tenant:


© 2017-2019 Cisco Systems, Inc. All rights reserved