What is the Tenants page used for?

On this page you can manage all tenants in the system. If there are more than 100 tenants, the Page navigation Page navigation is displayed.

You can use the Search Search function to reduce the number of tenants displayed, even while entering the name of the relevant tenant. You can also Refresh list refresh the list and Create tenant create tenants.

To resort the following list, click one of the column headings Tenant, Status, or Last backup.

Tenant

All tenants on all ARIS servers that are managed by this infrastructure tenant are listed. It provides an overview of each tenant. Click More More at the end of each row to see all available actions for each tenant.

If you click a tenant, the following pages are available:

  • Information

    Gives an overview of this tenant's information.

  • Assets

    Allows backup, restoring and copying of filters, templates, report scripts, and databases.

  • Backups

    Shows all backups of this tenant and provides all actions for tenant management.

  • Schedules

    Shows all schedules for this tenant and provides all actions for tenant management.

Status

Describes the status of the tenant:

Read-only Read-only

This tenant cannot be managed. Infrastructure tenants are read-only so that they cannot be inadvertently locked or deleted. In this case, access to ARIS would no longer be possible.

Active Active

This tenant is available to all users with appropriate privileges. Users can edit data they are authorized to use in the programs and function assigned to them.

You can manage active tenants.

Locked Locked

This tenant is not available. Users cannot log in.

You can manage locked tenants.

Locked Tenant corrupt; deletion possible after cooldown

A severe error occurred while this tenant was created or copied. This tenant cannot be used nor deleted. You must wait until it is in the Loading failed Failed status to delete it.

Loading failed Failed

This tenant was corrupted. You can delete it now.

Loading failed Access denied

A connection to this tenant cannot be established. This may be due to any of the following:

  • The ARIS server that manages this tenant is not available.

  • The user you used to log in to Tenant Management has not been defined for impersonation for the tenant.

    If you installed ARIS using the ARIS Server setup program, the Tenant Management user interface is available. The Tenant Management user interface is run automatically with the user account of the superuser user. In order for other users to be able to log in, you must configure the infrastructure tenant. This assigns users in the infrastructure tenant privileges for impersonation, along with additional function privileges.

    Once all operational tenants are configured, impersonation enables users to assume the account of the superuser system user in order to perform administration tasks. After the ARIS Server was updated, for all operational tenants make sure to specify superuser in the Impersonation target users field again.

    If you want existing tenants that were not created using Tenant Management to be managed centrally, you have to adjust the configuration of these tenants.

  • This tenant is the infrastructure tenant and cannot be managed.

Loading failed Impersonation failed

This tenant is not yet available due to missing functional privileges for impersonation. This status can occur if a tenant was created using ARIS Cloud Controller (ACC), but the superuser is lacking functional permissions.

Being prepared for deletion Being prepared for deletion

This tenant cannot be used anymore. It was prepared for deletion. The deletion of a tenant takes some time. This status is shown as long as the process is not completed. After the process is completed, the status switches to Being prepared for deletion Prepared for deletion.

Being prepared for deletion Prepared for deletion

This tenant was prepared for deletion. You can delete it now.

Utilization

Describes the average number of logins in the current week relative to the number of licenses.

Unknown Unknown

The average utilization cannot be determined because the tenant is either locked or a connection has failed.

Low Low

The average number of logins this week is lower than the number of licenses.

Average

The average number of logins this week is lower than three times the number of licenses.

High High

The average number of logins this week is three times the number of licenses or higher.

Licenses

Illustrates the percentage usage of all licenses using a progress bar.

Licenses in use

It remains green until all licenses are used.

Licenses

If all licenses are used, the bar turns red. No further users can log in on the tenant.

Warning

A Warning warning is also displayed if at least one individual license from the total quantity of licenses is used up, for example, Simulation. In this example, all users can still use ARIS Architect. However, simulation is no longer available.

Moving the mouse over the bar displays the number of available and used licenses in a pop-up. Clicking the bar displays the information in a dialog.

License information

Last backup

Indicates when the tenant was last backed up.

If there is no backup of a tenant, the message Not yet backed up Not yet backed up is displayed.

During backup, the Backup in progress Backup in progress symbol is displayed in this column.

Once the tenant has been backed up, the Tenant backup complete Tenant backup complete symbol is displayed. The backup list on the Backups page is extended.

The times specified relate to the location of the ARIS server. If a tenant is managed by an ARIS server in another time zone, the date and time at the location is displayed in the language used at that location.

Clicking the link downloads the current backup file to your computer.

If an error occurs during the backup, the warning Backup failed Backup failed is displayed. Check whether the user account you used to perform the backup has the required privileges.

The user superuser and users to which the required privileges are assigned by the user superuser can manage tenants.

If users with appropriate privileges start Tenant Management, they do this as the user superuser. This is facilitated by the Impersonation function privilege, which is assigned to relevant users on the infrastructure tenant.

What privileges and settings does the user 'superuser' require?

The user account for the user superuser is used to automatically perform tenant management for each tenant. For this purpose, the user superuser requires appropriate function privileges in the infrastructure tenant and in all operational tenants, and must have been defined as a target for impersonation.

  • Function privileges in infrastructure tenant

    For tenant management, the user superuser requires the following additional function privileges in the infrastructure tenant:

    • User administrator

    • Impersonation

    • Tenant administrator

    • Technical configuration administrator

    The user has additional function privileges by default, for example, License administrator.

  • Function privileges and settings in all operational tenants

    The user superuser does not require any license privileges, but does require certain function privileges. To ensure that each operational tenant, for example, default, is completely backed up, the user superuser needs the following function privileges in each operational tenant:

    • Analysis administrator

    • ARCM administrator

    • Collaboration administrator

    • Database administrator

    • Dashboard administrator

    • Document administrator

    • License administrator

    • Portal administrator

    • Process Governance administrator

    • Server administrator

    • Technical configuration administrator

    • User administrator

    If a function privilege is not assigned, for example, Analysis administrator, ad hoc analyses and queries for this tenant are not backed up. The number of function privileges depends on the relevant tenant's licenses. For this reason, not all of the specified function privileges may be displayed for every tenant.

    Settings in the user configuration

    The user superuser must be defined as a target for impersonation in every operational tenant, for example, default. Thus, all users that have the Impersonation function privilege in the infrastructure tenant inherit its privileges and can manage tenants.

What privileges and settings does an authorized user require?

Other users can also manage tenants if they are not created as users in operational tenants, because management is always carried out in the name of the user superuser using impersonation. The following requirements have to be met:

  • The users must be created in the infrastructure tenant.

  • The users have the required function privileges in the infrastructure tenant.

  • The user 'superuser' has the required function privileges in the infrastructure tenant and in all operational tenants, and has been defined as a target for impersonation in all operational tenants.

    The user account for the user superuser is used to automatically perform tenant management for each tenant. For this purpose, the user superuser requires appropriate function privileges in the infrastructure tenant and in all operational tenants, and must have been defined as a target for impersonation.

    • Function privileges in infrastructure tenant

      For tenant management, the user superuser requires the following additional function privileges in the infrastructure tenant:

      • User administrator

      • Impersonation

      • Tenant administrator

      • Technical configuration administrator

      The user has additional function privileges by default, for example, License administrator.

    • Function privileges and settings in all operational tenants

      The user superuser does not require any license privileges, but does require certain function privileges. To ensure that each operational tenant, for example, default, is completely backed up, the user superuser needs the following function privileges in each operational tenant:

      • Analysis administrator

      • ARCM administrator

      • Collaboration administrator

      • Database administrator

      • Dashboard administrator

      • Document administrator

      • License administrator

      • Portal administrator

      • Process Governance administrator

      • Server administrator

      • Technical configuration administrator

      • User administrator

      If a function privilege is not assigned, for example, Analysis administrator, ad hoc analyses and queries for this tenant are not backed up. The number of function privileges depends on the relevant tenant's licenses. For this reason, not all of the specified function privileges may be displayed for every tenant.

      Settings in the user configuration

      The user superuser must be defined as a target for impersonation in every operational tenant, for example, default. Thus, all users that have the Impersonation function privilege in the infrastructure tenant inherit its privileges and can manage tenants.

Status information

Actions are logged as Logged information and all logged pieces of information can be displayed if required.

To open logged information, click Open Open logged information. If you close Close the section, the number of logged status information is set to No new messages. All messages are available until they are deleted Clear all logs.