Configuring Multi Tenancy Tenants
The Tenants profile page displays the resource profile, users, assigned interfaces, zones, and routing instance of the configured tenant systems.
Tenant systems are used when you need to separate departments, organization, or customers and each of them can be limited to one virtual router. The main difference between a logical system and a tenant system is that a logical system supports advanced routing functionality using multiple routing instances. In comparison, a tenant system supports only one routing instance, but supports the deployment of significantly more tenants per system. A master administrator creates a tenant system and assigns an administrator for managing the tenant system. A tenant system can have multiple administrators.
Root users can switch to tenant context by navigating to Configure>Multi tenancy>Tenants page and selecting any one listed instance and clicking Enter TENANT respectively.
Roles supported for Tenant
J-Web supports the following roles with respect to tenant.
Root user in normal mode
Root user entering as tenant
Tenant administrator
Tenant read-only user
Tenant administrator and read-only users are created from Tenant wizard by selecting appropriate roles.
If you have opened J-Web in multiple tabs in the browser, and if in one of the tab you switch mode to logical system or tenant, then the other instances of J-Web in the other tabs will automatically switch to logical system or tenant.
J-Web maintains different session for different protocols, such as http or https.
When you refresh the screen, you will not be logged out; instead the screen is refreshed, and you will continue in the same session.
- Select Configure>Multi Tenancy>Tenants.
The Tenants page appears. Table 1 explains the contents of this page.
- Click one:
Enter Tenant —Select a tenant from the list and enter its system.
More—Select this option to view the details of a selected tenant.
Add icon (+)—Create a new tenant. Enter information as specified in Table 2.
Edit icon (/)—Edit the selected tenant. Enter information as specified in Table 2.
Delete icon (X)—Deletes the selected tenant system.
Search icon— Enables you to search for a tenant system in the grid.
Filter icon —Enables you to filter and display the list of tenants based on a column in the grid.
Show Hide Column icon —Enables you to show or hide a column in the grid.
Click Commit icon at the top of the J-Web page. The following commit options are displayed.
Commit—Commits the configuration and returns to the main configuration page.
Compare—Enables you to compare the current configuration with the previous configuration.
Confirm Commit—Commits the configuration; and after 10 minutes, the changes will be rollbacked, and the previous configuration is restored.
Discard—Discards the configuration changes you performed in the J-Web.
Preferences—There are two tab:
Commit preferences—You can choose to just validate or validate and commit the changes.
Confirm commit timeout (in min) —You can select the commit timeout interval.
During report generation if you switch context, then a confirmation message is displayed. Click Yes to stop the report generation and to switch the context. Click No to continue to generate the report and not to switch context.
Table 1: Tenants Profile Page
Field | Function |
---|---|
Name | Displays the name of the tenant system. |
Resource Profile | Displays the name of the resource profile. |
Users | Displays the tenant system admin and users, and its associated permissions. |
Assigned Interfaces | Displays the assigned logical interfaces. |
Zones | Displays the zones for the tenant. |
Routing Instance | Displays the routing instance that is explicitly assigned to the tenant system. |
Table 2: Create-Edit Tenant System
Field | Function | Action |
---|---|---|
Tenant - General Details | ||
Name | Enter a name for the tenant. | Enter a unique string of alphanumeric characters, colons, periods, dashes, and underscores. No spaces are allowed; maximum length is 63 characters. |
Routing Instance | By default the tenant name is taken as the routing instance name. | |
Tenant Resource Profile | ||
Profile Name | Displays the name of the resource profile. | Enter a unique string with an alphanumeric character and can include underscores; no spaces allowed; 31-character maximum. |
Configured Resources | Displays the resources and its reserved or maximum quantity assigned for this resource profile. | |
Logical Systems/Tenants | Displays other logical systems and/or tenants using this resource profile. | |
Click one:
See Configuring Multi Tenancy Resource Profiles for details on creating and editing resource profile. | ||
User Details You can define tenant administrators and users. Click one:
| ||
Create-Edit users | ||
User Name | Enter/displays user name. | Maximum length is 64 characters. |
Role | Specify the role of the user from the following options:
| Select any one option from the drop down list. |
Password | Specify the password for the user. | Select a password which is more than 6 characters but less than 128 characters. |
Confirm Password | Confirm the password. | Confirm the set password. |
Assign Interfaces Only one logical interface can be part of one tenant, whereas, a tenant can have multiple logical interfaces. Click One:
| ||
Create-Edit logical interfaces | ||
Physical Interface Name | Displays the name of the physical interface. | Select a physical interface name from the grid. |
Logical Interface Unit | Displays the logical interface unit. | Enter the logical interface unit. |
Description | Displays the description. | Enter the description. |
VLAN ID | Displays the VLAN ID. | Enter the VLAN ID. VLAN ID is mandatory. |
IPV4 Address | Displays the IPv4 address. | Enter a valid IP address. |
Subnet Mask | Displays the subnet mask. | Enter a valid subnet mask. |
IPV6 Address | Displays the IPv6 address. | Enter a valid IP address. |
Zone Configuration Click One:
| ||
Create-Edit Security Zones | ||
Name | Displays the name of the zones. | Enter a valid name of the zone. |
Description | Displays the description of the zones. | Enter a description of the zone. |
Application Tracking | Displays the application tracking support to the zone. | Enables the application tracking support. |
Selected interface | Displays the selected interface. | Select an interface. |
System service options | Select system services from the following options:
| — |
Protocols Options | Select a protocol from the following options:
| — |
Traffic Control Options | Specify the TCP Reset. | Send RST for NON-SYN packet not matching TCP session. |