Creating a tenant account

You must create at least one tenant account to control access to the storage in your StorageGRID Webscale system.

Before you begin

Steps

  1. Select Tenants.
    The Tenant Accounts page appears.


    Tenant Accounts page

  2. Click Create.
    Step 1 - Create Tenant Account appears.
    Screenshot of Step 1 - Create Tenant Account
  3. In the Display Name text box, enter the display name for this tenant account.
    When the tenant account is created, it receives a unique, numeric Account ID; for this reason, display names are not required to be unique.
  4. Select the client protocol that will be used by this tenant account, either S3 or Swift.
  5. Uncheck the Uses Own Identity Source checkbox if this tenant account will use the identity source that was configured for the Grid Manager. See "Configuring identity federation" for more information.
    If this checkbox is selected (default), you must configure a unique identity source for this tenant if you want to use identity federation for tenant groups and users. See the instructions for using tenant accounts.
  6. Uncheck the Allow Platform Services checkbox if you do not want this tenant to use platform services for S3 buckets.

    If platform services are enabled, a tenant can use features, such as CloudMirror replication, that access external services. You might want to disable the use of these features to limit the amount of network bandwidth or other resources a tenant consumes. See "Managing platform services" for more information.

  7. Optionally, enter the maximum number of gigabytes, terabytes, or petabytes that you want to make available for this tenant's objects in the Storage Quota text box. Then, select the units from the drop-down list.

    Leave this field blank if you want this tenant to have an unlimited quota.

    Note: A tenant's storage quota represents a logical amount (object size), not a physical amount (size on disk). ILM copies and erasure coding do not contribute to the amount of quota used. If the quota is exceeded, the tenant account cannot create new objects.
    Note: You can monitor tenant storage usage from the Dashboard in the Tenant Manager or with the Tenant Management API. Note that a tenant's storage usage values might become out of date if nodes are isolated from other nodes in the grid. The totals will be updated when network connectivity is restored.
  8. In the Tenant Root User Password section, enter a password for the tenant account's root user.
  9. Click Save.
    The tenant account is created, and Step 2 - Configure Tenant Account appears.
    Screenshot of Step 2 - Configure Tenant Account
  10. Decide whether to configure the tenant account now or later, as follows:
    • If you are ready to configure the new tenant account, go to step 11.
    • If you or someone else will configure the tenant account later, go to step 13.
  11. Click the Sign in as root button.

    A green check mark appears on the button, indicating that you are now signed in to the tenant account as the root user.


    Sign in as root
  12. Select one or more of the following links to configure the tenant account in the Tenant Manager.
    1. If you created an S3 tenant and you want to create and manage the S3 buckets for this account, select Buckets.
      The Buckets page for the Tenant Manager opens on a new tab. To complete this page, see the instructions for using tenant accounts.
    2. If you want to set up an identity source for the tenant, select Identity Federation.
      Note: This link appears only if you left the Uses Own Identity Source checkbox selected in step 5.
      The Identity Federation page for the Tenant Manager opens on a new tab. To complete this page, see the instructions for using tenant accounts.
    3. If you want to configure the groups who can access the tenant, select Groups.
      The Groups page for the Tenant Manager opens on a new tab. To complete this page, see the instructions for using tenant accounts.
    4. If you want to configure local users who can access the tenant, select Users.
      If you are using federated groups, you do not need to configure users.
      The Users page for the Tenant Manager opens on a new tab. To complete this page, see the instructions for using tenant accounts.
  13. Click Finish.
    The dialog closes. To access the Tenant Manager later, select Tenants from the menu, click the Sign in link, and sign in. Or, provide the URL for the Sign in link and the root user password to the tenant account’s administrator.