Cisco VNMC provides the ability to achieve multi-tenancy. Multi-tenancy enables the division of large physical infrastructures into logical entities called organizations. As a result, you can achieve logical isolation between organizations without providing a dedicated physical infrastructure for each organization.
The administrator can assign unique resources to each tenant through the related organization in the multi-tenant environment. These resources can include different policies, pools, device profiles, firewalls and such. The administrator can use locales to assign or restrict user privileges and roles by organization if access to certain organizations need to be restricted.
Cisco VNMC provides a strict organizational hierarchy as follows:
The root can have multiple tenants. Each tenant can have multiple data centers. Each data center can have multiple applications, and each application can have multiple tiers.
The policies and pools created at the root level are systemwide and are available to all organizations in the system. However, any policies and pools created in an organization are only available to organizations that are below it in the same hierarchy.
For example, if a system has tenants named Company A and Company B, Company A cannot use any policies created in the Company B organization. Company B cannot access any policies created in the Company A organization. However, both Company A and Company B can use policies and pools in the root organization.