Skip to main content

Tenant Admin Portal

The tenant admin portal is the primary interface for managing a tenant's identity configuration, users, applications, and security settings.

URL: /t/{tenantSlug}/portal/

Portal Dashboard

The dashboard at /t/{tenantSlug}/portal/dashboard provides an at-a-glance view of:

  • Total users and recent registrations
  • Active applications
  • Authentication activity
  • Recent audit events
  • Security alerts

Portal Sections

Applications

URL: /t/{tenantSlug}/portal/applications

Manage OAuth 2.0 / OIDC applications registered for this tenant:

  • Create, edit, and delete applications
  • Configure redirect URIs, allowed scopes, and grant types
  • View client credentials (client ID, client secret)
  • Manage application-specific settings (token lifetimes, allowed origins)

See Applications for details.

Access Management

All access management features are under /t/{tenantSlug}/portal/access-management/:

SectionURLDescription
Users.../access-management/usersManage users, view profiles, assign roles
Roles.../access-management/rolesCreate and manage RBAC roles
Groups.../access-management/groupsOrganize users into groups
Permissions.../access-management/permissionsDefine granular permissions
Zanzibar.../access-management/zanzibarFine-grained relationship-based access
ABAC.../access-management/abacAttribute-based access control policies
Policy Author.../access-management/policy-authorAI-assisted access policy creation
Permission Tester.../access-management/permission-testerTest access decisions in real-time

See Access Control for details.

Configuration

All configuration options are under /t/{tenantSlug}/portal/configuration/:

SectionURLDescription
Auth Settings.../configuration/auth-settingsPassword policy, session config, MFA, registration
Social Login.../configuration/social-loginConfigure Google, GitHub, Microsoft, etc.
SAML IdP.../configuration/saml-idpSAML 2.0 identity provider federation
OIDC IdP.../configuration/oidc-idpOIDC identity provider federation
LDAP.../configuration/ldapLDAP / Active Directory integration
Email Templates.../configuration/email-templatesCustomize verification, reset, invite emails
Webhooks.../configuration/webhooksEvent-driven webhook notifications
Adaptive Auth.../configuration/adaptive-authRisk-based authentication settings

Security & Compliance

SectionURLDescription
Signing Keys/t/{tenantSlug}/portal/signing-keysManage JWT signing keys (RSA/EC)
Custom Domains/t/{tenantSlug}/portal/custom-domainsMap your domain to this tenant
Audit Logs/t/{tenantSlug}/portal/audit-logsView all authentication and admin events
GDPR/t/{tenantSlug}/portal/gdprData subject access and deletion requests

Observability

URL: /t/{tenantSlug}/portal/observability

Monitor tenant health and activity:

  • Authentication success/failure metrics
  • Active sessions count
  • Token issuance statistics
  • Error rates and trends

AI Agents

URL: /t/{tenantSlug}/portal/agents

Manage AI agent identities and MCP (Model Context Protocol) server configurations:

  • Register AI agents as authenticated entities
  • Configure MCP server connections
  • Manage agent-specific permissions and scopes

See AI Agents for details.

Portal Navigation

The portal sidebar organizes all sections:

Portal Access

Who Can Access the Portal?

Users with the Tenant Admin role can access the full portal. Other roles may have limited access based on their permissions.

Logging In

Tenant admins log in through the standard login page at /t/{tenantSlug}/login and are redirected to the portal after authentication.