Identity Platform multi-tenancy

Identity Platform allows you to add Google-grade authentication to your applications and services, making it easier to protect user accounts and securely managing credentials.

Multi-tenancy takes this concept one step further. Using tenants, you can create unique silos of users and configurations within a single Identity Platform project. These silos might represent different customers, business units, subsidiaries, or some other division. Multi-tenancy is most commonly used in business-to-business (B2B) applications.

Understanding tenants

You can use Identity Platform tenants to establish a data isolation boundary between resource hierarchies. Each tenant has its own:

  • Unique identifier
  • Users
  • Identity providers and authentication methods
  • Auditing and Cloud IAM configuration
  • Quota allocation
  • Billing account

This allows tenants to operate autonomously from one another, with different configurations and users, even though they are part of the same project.

Supported sign-in methods

Identity Platform tenants support many of the same authentication methods as non-tenant instances of Identity Platform. Currently supported providers include:

  • Email/password
  • Social Providers (e.g., Google, Microsoft, LinkedIn, etc)
  • SAML Federation
  • OpenId Connect Federation

What's next

Was this page helpful? Let us know how we did:

Send feedback about...

Cloud Identity for Customers and Partners Documentation
Need help? Visit our support page.