The Tenant Management feature allows Managed Service Providers (MSPs) and clients to manage configurations and accounts effectively. It provides a single interface to define specific policies and settings tailored uniquely to the unique needs of the tenant. The feature allows for implementation of password policies to ensure strong security, options for secured remote access, log management to receive quick insights.
Following is a quick overview of the functionalities in the section:
Account: Allows you to view and update your Account information such as Name, Account ID, Notification Email, Country, Timezone, City, State and other relevant information.
Security: Allows you to configure strict password policies and settings for improved security to prevent unauthorized access and breaches.
Advanced Settings: Allows you to have control over availability, log management, NOC (Network Operation Centers) for alert management, integration settings, and remote access management.
Branding: Allows you to customize your platform with logos, themes, and colors according to your organization’s requirements.
Following are the permissions required to perform various tasks.
Type of user
Permission
User action
MSP user
Administration
Edit Account, Security, and Advanced Settings sections for self.
MSP user
Client_Manage/Client_Edit and Device_View
Edit Account, Security, and Advanced Settings sections for a client.
MSP user
Client_View
Configure branding for a client.
MSP User
Administration
Configure branding for self.
Tabbed Interface with Table
ACCOUNT
SECURITY
ADVANCED SETTINGS
BRANDING
ACCOUNT
The Account section has critical information and settings about your organization. It allows you to manage personal information like Name, Account ID, Notification Email, and other contact details.
Click Setup > Account > SETTINGS. The ACCOUNT tab is displayed with information related to your account.
Enter the following information and click SAVE:
CLIENT DETAILS
Field Name
Field Type
Description
Name
String
Name of the client
Account ID
String
Account ID. This field is not editable.
Notification Email
String
Client Email address.
Alternate Email
String
Alternate Email address of the client.
Country
Dropdown
Country where the client is located.
Timezone
Dropdown
Timezone of the client.
Address
String
Address of the client.
City
String
City of the client.
State
String
State in which the client is located.
Postal Code
String
Postal code
Edit Account details
Follow these steps to edit account details:
Click Setup > Account > SETTINGS.
Make the necessary changes.
Click SAVE.
SECURITY
Security feature ensures effective Access Management and stringent Password Policy Settings. Access Management allows you to restrict specific IP addresses. Password Policy Settings enables you to implement strict password settings thereby preventing unauthorized access and security breaches.
From ACCOUNT SETTINGS screen, click SECURITY tab.
ACCESS MANAGEMENT
Access Management in OpsRamp includes features such as enhanced security restricting access to specific IP addresses, and enabling the Show Copy Clipboard functionality thereby enhancing usability.
Select one or more of these options as per your requirements:
Restrict Access to Specific IP(s): Restricting access to specific IP addresses can reduce security issues. Enter the IP Addresses separated by comma. The following error message is displayed when you attempt to log into the platform from an IP address other than those permitted: Your organization policies restrict you from accessing
OpsRamp
from your current IP.
Show Copy Clipboard: Select the checkbox to enable Show Copy Clipboard.
Following features are available only for Partners:
Block Duplicate Cloud Accounts - Ensure that each cloud account is uniquely created and managed. This helps you to block creation of duplicate resources across clients and reduce unnecessary CloudWatch expenses.
Skip User Consent Form: Select checkbox to skip user consent form. The form popup appears.
Click ACCEPT to skip the user consent form.
Click DENY to allow user consent form.
PASSWORD POLICY SETTINGS
The Password Policy Settings section allows you to configure password policy, which once configured will apply to all the local users of your company.
Change password after first login: Select this option, if you want to change password after first login. This means that all the users of the organization will mandatorily have to change their passwords after they login for the first time. This change will make all login sessions inactive.
Note: It is recommended not to change the password policy frequently, as this will affect the existing and newly created users of your organization, and will not apply to external authenticated users.
You can opt for Default PCI DSS standards or Custom policy.
Default PCI DSS standards: Select this checkbox to apply default PCI DSS standards. You cannot modify the settings.
Custom policy: Select this checkbox and configure the policy settings as per your organizational needs.
ADVANCED SETTINGS
Note: This feature is available only for Clients.
The Advanced Settings section allows you to configure options designed to optimize the management and monitoring capabilities of your IT infrastructure. These settings enable you to have greater control over aspects such as availability, integration settings, log management, NOC for alert management, remote access management, and root cause analysis through alerts and logs.
From ACCOUNT SETTINGS screen, click ADVANCED SETTINGS tab.
RESOURCE MANAGEMENT
Enable Global Policies for NON SDK resources: Select the checkbox to enable global policies for the client.
This flag is considered for non-SDK based resources.
For SDK based resources, regardless of whether this checkbox is enabled or disabled, the Device Management Policies will be automatically applied.
Enable Application Discovery & Dependency Mapping: Select the checkbox to enable application discovery and dependency mapping.
AVAILABILITY
During maintenance period, consider the resource as: By default, the current state is selected. Select the state of the resources during scheduled maintenance period. If you select the state as Up, during scheduled maintenance period the state of the resource(s) will be displayed as Up, even if your resource(s) is powered off / restarted.
Ignore action on the alert/incident while calculating availability: By default, Don’t ignore option is selected. Select an option as per your requirements. If you select Ignore, the system will ignore actions on the alerts or incidents that are suppressed, acknowledged, etc., when resource availability is calculated.
Alert if the resource availability state is Unknown: By default, Don’t alert option is selected. Select Alert option, if you want to receive alerts if the availability state of the resource is UNKNOWN.
AGENT MONITORING CAPABILITIES
Select the Agent Self Monitoring option to enable agent self monitoring.
Choose a time-frequency from the dropdown (supported time frequencies are 1, 2, 3, 6, and 12 hours).
ADMISSION CONTROL FOR AGENTS IN PUBLIC CLOUD
Select these options to enable onboarding AWS, Azure, and Google Cloud Platform Resources, using agent without public cloud integration.
NETWORK OPERATION CENTERS
Select NOC from the dropdown. All the existing open alerts will be moved to the NOC.
REMOTE ACCESS MANAGEMENT
Choose the features listed (Browser Consoles, Shared Drive, Console Logging, Remote Commands) to enable them on the client.
PROBABLE ROOT CAUSE ANALYSIS
Select Alerts or Logs or both, as Data Sources. Alerts: If you select Alerts, the system will consider alerts generated to aid in root cause analysis.
Logs: If you select Logs, the system will consider log data from various sources for root cause analysis.
INTEGRATION SETTINGS
Use Partner Configurations – Select this option if you want to inherit partner’s custom integration configurations.
Using custom branding, you can customize the platform UI by adding your company logo, providing a website title, and changing the look and feel of the website to match your company theme.
Note
When you add a new URL in production, you must contact support to have a DNS entry added for the new URL.
Configure custom branding
Follow these steps to configure custom branding:
From ACCOUNT SETTINGS screen, click BRANDING tab.
Enter the following branding elements:
SITE BRANDING
Branding Element
Field Type
Description
Application Server
String
Note: This field is available only for Clients. Custom URL for the application server. When you add a new URL in production, you must contact support to get the DNS entry added for the new URL. The URL prefix you add is concatenated with the other URL values to create the URL for accessing the custom site. Example: If you specify myurl, the URL to access the new website is https://myurl.app.opsramp.com/ Note: The Application URL format accepts any character, except the following: *, #, &, ?.
API Server
String
Note: This field is available only for Clients. Displays the full API server name based on the application server custom URL. This field is not editable.
API Server Display only
String
Displays the full API server name based on the application server's custom URL.
Website Title
String
Custom website title that is used in the browser tab.
Documentation URL
String
URL of the documentation site.
Logo
File Input
Custom image. A logo that is used for the navigation bar and login page.
Supported file format: PNG, JPG
Size: Less than 10KB (recommended)
Dimension:
Height: 512px
Width: no more than 512px
Current Logo field displays the uploaded logo.
Favicon
File Input
Custom image that is used in the browser tab.
Supported file format: PNG, JPG
Size: Less than 10KB (recommended)
Dimension: square, 128 x 128 px
Current Favicon field displays the uploaded Favicon.
LOGIN PAGE
Branding Element
Field Type
Description
Page Header
String
Header text for the login page. Location is on the first line of the login page.
Page Subheader
String
Sub-header text for the login page. The text displays on the second line of the login page.
Text Color
Color picker
Color of the header and sub-header text.
Background Color
Color picker
Colored layer around the logo.
Background Image
File Input
Background image on the login page. The image appears darker than the original due to an overlay on top of the image.
Supported file format: PNG, JPG
Size: Up to 128 x 128px (preferred)
Dimension: 1440x900 (recommended). Smaller images are tiled. Current Background Image field displays the uploaded Background Image.
Click SAVE. The tenant account settings are saved.
Branding example
Following values define client-level custom branding using a custom logo, favicon, background, and text labels:
Following image shows the custom branding login page:
NOTES
The Notes feature allows you to efficiently document and manage important information at the client level. You can create, edit, and delete notes associated with specific clients or resources. This helps you to keep a record of all the information in one place.
Follow these steps to access Notes:
Click Setup > Account.
From ACCOUNT DETAILS screen, click 0 under NOTES. The count will show 0 as there are no notes added.
From NOTES dialog box, scroll down and click +NOTE.
Enter the following information in the ADD NOTE screen.
Field Name
Field Type
Description
Subject
String
Enter a subject for the note.
Enter Description
String
Provide a description. You can use the formatting tool bar to format the text.
Validity Time range
Date Picker
Use the date picker icon to provide the validity time range. To select a time range:
Click the date picker icon, hover the mouse and select the date range.
Click APPLY.
Note: If you do not select any date range, Never Expire will be set by default.
Click SAVE. A successful message appears, and the note is added in NOTES screen.The newest note is displayed at the bottom of the screen.
Edit a note
Follow these steps to edit a note:
From NOTES screen, click EDIT available under the note.
Make the necessary changes and click SAVE.
Remove a note
To delete a note:
From NOTES screen, click REMOVE available under the note.
