Dune Security supports onboarding multiple organizations that belong to the same parent enterprise within a single dashboard. This capability is commonly referred to as the multi-tenant feature. It allows related organizations, referred to as tenants, to be onboarded individually and then securely linked together under a parent structure.
The onboarding process begins with the setup of the main enterprise tenant. Once completed, additional tenants are onboarded and linked to the parent tenant, enabling centralized management while maintaining strict data separation.
Tenant Access and Administration
After tenants are linked, a designated parent-level administrator can log in to the parent tenant using single sign-on. From there, the administrator can switch between linked tenants and temporarily act as an administrator within each tenant.
While operating within a linked tenant, the administrator has full administrative control, including the ability to assign training, launch simulated attacks, and manage all tenant-specific settings. Any actions taken while acting within a tenant are attributed to that particular tenant's admin.
Data Separation and Security
All data remains fully isolated between tenants. There is no data sharing or data visibility across tenants, ensuring that each organization’s data is securely contained within its own environment.
Implementation Requirements
Each tenant must be onboarded separately to ensure proper configuration and security. The following steps are required for each tenant:
Single sign-on and SCIM configuration [Okta] [Microsoft Entra ID] [Google Workspace]
Email domain whitelisting for Dune Security communications [Dune Security Whitelisting]
Setup and installation of the Phish Report Button [Microsoft] [Google]
Identification of tenant administrators, along with the global administrator to be shared across tenants. The number of global administrators can be expanded in the future, if needed.
Once all required information is provided, the Dune Security team will complete the tenant mapping in the backend and confirm when setup is complete. At that point, the customer can begin using the multi-tenant functionality.
Comments
0 comments
Please sign in to leave a comment.