Organization Management

Cloud App Security allows the administrator to manage organizations where they can provision service accounts for a cloud service on multiple tenants. In this way, you can secure all the tenants' services you manage and switch quickly between organizations using one single CLP/LMP account.

After you log on to the management console, a default organization is created. You can rename the organization but cannot remove it.

You can also create more organizations based on your needs.

The steps outlined below illustrate how to manage your organizations.

  1. Go to Administration > Organization Management.
  2. On the Organization Management screen that appears, perform the following tasks:
    • Add an organization.

      1. Click Add.

      2. On the Add Organization screen that appears, specify an organization name (required) and description (optional), and then click Save.

        Note:

        The organization name cannot exceed 32 characters, and the description cannot exceed 128 characters.

        A maximum of 20 organizations is supported.

        To provision services under an added organization, go to Administration > Service Account and provision the services that you are going to manage under that organization.

        Note:

        You can provision the service account for one tenant under only one organization. For example, if you provision the Exchange Online service account for Azure AD tenant A under one organization, you are not able to provision a service account for Azure AD tenant A again under another organization.

        When you return to the Organization Management screen, you can see the services that you have provisioned under that organization in the Provisioned Services column.

    • Remove an organization.

      1. Select an organization and click Remove.

      2. Click OK.

        Note:

        You can remove only one organization at a time.

        You cannot remove an organization if it has:

        • Provisioned services

        • Pending or failed tasks

        • Authentication tokens generated for automation APIs

        • Exchange Server registered to it