Quasr
  • Introduction
    • Welcome to Quasr
    • Concepts
      • Flexible Authentication
      • User-Centric Privacy
      • Modern Development
    • Terminology
    • FAQs
  • Getting Started
    • Sign up with Quasr
    • Setup your tenant
      • Factor Configuration
      • Enrolling additional factors
      • Test with the Sample Client
      • Understanding Scopes & Scores
      • Setting up an API Client (M2M)
    • Connect your app
      • Hosted Login UI
      • Custom Login UI
      • Embedded Login UI
  • Account Administration
    • Introduction
    • Account & Billing
      • Metrics
    • Tenants
    • Usage & Statistics
    • Security
  • Tenant Administration
    • Introduction
    • Dashboard
    • Tenant Settings
    • Your Security
    • Accounts
      • Tenant Admins
    • Factors
      • Factors and Scoring
      • Username (ID)
      • Federation (OAuth2 / OIDC)
        • Apple
        • Facebook
        • GitHub
        • Google
        • LinkedIn
        • Slack
      • Time-based One-time Password (TOTP)
      • One-Time Password (OTP)
      • Password
      • Secret
    • Controls
      • Configuration
      • Permissions
      • Consents
      • Rules
    • Attributes
      • Capturing Claims
      • Sourcing Claims
      • Viewing Claims
      • Searching Claims / Users
      • Sharing Claims
    • Extensions
      • Synchronous
      • Asynchronous
    • Tokens
      • Session Token (OAuth 2.0)
      • Access Token (OAuth 2.0)
      • Refresh Token (OAuth 2.0)
      • ID Token (OIDC 1.0)
      • Consent Token
      • Authorization Code (OAuth 2.0)
    • Hosted Login Page
    • APIs
      • Authentication API
      • Management API (GraphQL)
  • Legal
    • Terms of Service
    • Acceptable Use Policy
    • DPA & Subprocessors
  • More Info
    • Standards
    • Security
      • Vulnerability Disclosure
      • Wall of Recognition
    • Support
    • Status
Powered by GitBook
On this page
  1. Tenant Administration

Introduction

PreviousSecurityNextDashboard

Last updated 1 year ago

Quasr supports multi-tenancy that various business scenarios rely upon. You can read up on the multi-tenancy concept here.

A Quasr customer can own multiple tenants. Technically there is no limitation of the number of tenants that can be provisioned by a customer and under a customer's subscription plan. The free-tier, as part of all subscription plans, includes up to three tenants for free, while additional tenants are charged.

Each tenant comes with a Tenant Administration UI, which is documented in this section.

The user interface allows to manage the following elements, as can be seen from the left-hand main navigation:

Dashboard: See near-real-time statistics about the tenants usage. The metrics "Monthly Active Accounts" (MAA) and "Monthly API Calls" (MAC) are displayed here.

Tenant Settings: Change the tenant label or color code, expiration settings for sessions, accounts, tenant.

Your Security: Manage the authentication methods (factors) of your own account, which you use to log into the tenant administration of the currently selected tenant.

Entities:

  • Accounts: See all accounts (these can be human users or machine clients) and manage them by creating, editing, deleting them from here.

  • Factors: Configure allowed authentication factors for the tenant.

  • Controls: Configure Scope and Legal Controls, related to Consent Management

  • Extensions: allows custom code to be executed (Node.js on Lambda) to add custom claims to ID and/or access tokens or respond to platform events (eg. OTP or account creation)

  • Events: here you can see the latest 100 events on your tenant

APIs: Information about available APIs as well as your current Personal Access Token

Resource States

Your resources can be in any of the below states:

  • PENDING means the resource is currently not yet ready and some action still needs to happen, such as validating a factor enrollment, or a code extension that is still being build and deployed. Generally PENDING items will expire quickly.

  • ENABLED means the resource is good for use. Generally ENABLED items will take much longer to expire and expiry is related to inactivity.

  • DISABLED means the resource can't be used - but it can still be re-enabled whenever desired.

  • LOCKED means the resource can't be used and it is not possible to re-enable it. Such state can arise because a parent resource has been disabled or locked, but it can also indicate that it has been locked by us in rare circumstances.

Quick tour of the Quasr Admin UI
Accounts in the Quasr Tenant Admin UI