Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Multitenancy

Multitenancy enables provider hub devices to serve departments across multiple tenants. Each department of a tenant can have its own Layer 3 VPNs if network segmentation is enabled for the tenant. Traffic from all the Layer 3 VPNs are carried over to the provider hub using a shared overlay. The overlay tunnel [generic routing encapsulation (GRE) or GRE over IPsec] is used to carry traffic from all departments in a site through MPLS-based traffic separation.

Multitenancy is a cost-effective approach where the cost of a device and its maintenance is shared among multiple tenants. With multitenant device support, a dedicated share of the device is allocated to each tenant, and the data is kept private among the tenants that access the same device.

A service provider administrator or an OpCo administrator can perform the following tasks:

  • Create tenants.

  • Manage applications for each tenant.

  • Create SD-WAN and security policies for each tenant and monitor the dashboard at the tenant level or at the department level.

  • Add traffic type profiles.

  • Configure steering based SD-WAN or security services for each tenant.

  • View the services and networks configured for each tenant.

Related Documentation