Manage tenants
You can perform management functions on the accounts under your account. Identity as a Service accounts allow you to manage access to protected resources and create Identity as a Service Authentication Tenant accounts.
A next to an account indicates that it is a Service Provider account.
Topics in this section
Create Tenant accounts
When creating new tenants accounts, you can add tenants in Production mode or Trial mode. Trial accounts are valid for 60 days. If your Service Provider account is a Trial account, you can only add Trial Tenant accounts.
Managing Tenant accounts
Locking and unlocking Tenant accounts
Unlock account administrators
Administrators can be locked out of their account for too many failed authentication attempts or account inactivity. The Service Provider portal can be used to unlock all locked administrators of a given account.
Promote Tenant account to a Service Provider
1. Click \> Service Provider \> Tenants. The Tenants List page appears.
Reset system resource rules
Resource rules control access to the user portal of a Tenant account. If they are improperly configured, resource rules can prevent users from logging in to their account. This procedures describes how to reset the default system-defined resource rules of a Tenant account if that happens. Once reset, users can log in again. For more information on resource rules, see Manage resource rules in the Administrator Help.
Reset mail server
The Reset Mail Server feature enables you to change a Tenant account mail server to use the IDaaS default mail server. This feature is useful if the Tenant configured a custom mail server used to deliver email OTPs and the mail server is misconfigured preventing users from authenticating to their IDaaS account.
Upgrade trial accounts
If your Service Provider account is a Production account, you can upgrade Trial or Unknown tenant accounts to production accounts. See Account entitlements and Add Tenant accounts for more information on Trial and Production accounts.
Modify Tenant accounts and entitlements
Account entitlements determine the number of users allowed on a Service Provider account. To complete this procedure, you must have a role that allows you to modify entitlements. See Managing Service Provider roles for more information.
Enable Smart Login
Smart Login allows users with a Mobile Smart Credential paired to their account to authenticate to the Entrust Identity as a Service Admin Portal, User Portal, and SAML or OIDC and OAuth applications integrated with the Identity as a Service account without the need to enter a user name and password.
Enable tenant management
Tenant management allows a Service Provider administrator to set up an Identity Provider relationship with a child tenant. When enabled, tenant users can administer the tenant and log in to the tenant using Identity Provider authentication.
Update Tenant hostnames
You can change the hostname of child accounts of your Tenant account. This feature is useful if, for example, your company rebrands and changes its company name, you can update the hostname to reflect the rebranding.
Show Tenants in the User Portal
To allow users to see their Tenants in the User Portal, you need to enable the feature.