Stay organized with collectionsSave and categorize content based on your preferences.
Identity Platform multi-tenancy
Identity Platform lets you add Google-grade authentication to your
apps and services, making it easier to secure user accounts and
securely managing credentials.
Multi-tenancy takes this concept one step further. Using tenants, you can
create unique silos of users and configurations within a single
Identity Platform project. These silos might represent
different customers, business units, subsidiaries, or some other division.
Multi-tenancy is most commonly used in business-to-business (B2B) apps.
Understanding tenants
You can use Identity Platform tenants to establish a data isolation
boundary between resource hierarchies. Each tenant has its own:
Unique identifier
Users
Identity providers and authentication methods
Auditing and IAM configuration
Quota allocation
Identity Platform usage breakdown
This allows tenants to operate autonomously from one another, with different
configurations and users, even though they are part of the same project.
Supported sign-in methods
Identity Platform tenants support many of the same authentication
methods as non-tenant instances of Identity Platform. Currently supported
providers include:
Email/password
Social Providers (such as Google, Microsoft, and LinkedIn)
SAML Federation
OpenId Connect Federation
Limitations
Identity Platform tenants don't support the following features:
Disabling account linking
Adding a blocking function specific to a given tenant
In addition, you can't disable user signup or user deletion from the Google Cloud console. However, you can configure these settings through the API.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[],[],null,["# Identity Platform multi-tenancy\n===============================\n\nIdentity Platform lets you add Google-grade authentication to your\napps and services, making it easier to secure user accounts and\nsecurely managing credentials.\n\nMulti-tenancy takes this concept one step further. Using tenants, you can\ncreate unique silos of users and configurations within a single\nIdentity Platform project. These silos might represent\ndifferent customers, business units, subsidiaries, or some other division.\nMulti-tenancy is most commonly used in business-to-business (B2B) apps.\n\nUnderstanding tenants\n---------------------\n\nYou can use Identity Platform tenants to establish a data isolation\nboundary between resource hierarchies. Each tenant has its own:\n\n- Unique identifier\n- Users\n- Identity providers and authentication methods\n- Auditing and IAM configuration\n- Quota allocation\n- Identity Platform usage breakdown\n\nThis allows tenants to operate autonomously from one another, with different\nconfigurations and users, even though they are part of the same project.\n\nSupported sign-in methods\n-------------------------\n\nIdentity Platform tenants support many of the same authentication\nmethods as non-tenant instances of Identity Platform. Currently supported\nproviders include:\n\n- Email/password\n- Social Providers (such as Google, Microsoft, and LinkedIn)\n- SAML Federation\n- OpenId Connect Federation\n\nLimitations\n-----------\n\nIdentity Platform tenants don't support the following features:\n\n- Disabling account linking\n- Adding a blocking function specific to a given tenant\n\nIn addition, you can't disable user signup or user deletion from the Google Cloud console. However, you can configure these settings through the API.\n\nWhat's next\n-----------\n\n- [Enable multi-tenancy and create a tenant](/identity-platform/docs/multi-tenancy-quickstart)\n- [Sign in users with tenants](/identity-platform/docs/multi-tenancy-authentication)\n- [Create sign-in page for multiple tenants](/identity-platform/docs/multi-tenancy-ui)\n- [Migrate existing users to a tenant](/identity-platform/docs/migrate-users-between-projects-tenants)\n- [Manage tenants programmatically](/identity-platform/docs/multi-tenancy-managing-tenants)"]]
