Skip to main content
logoTetrate Service BridgeVersion: 1.9.x


Tenant is a self-contained entity within an organization in the Service Bridge object hierarchy. Tenants can be business units, organization units, or any logical grouping that matches a corporate structure.

The following example creates a tenant named mycompany in an organization named myorg.

kind: Tenant
organization: myorg
name: mycompany


Tenant is a self-contained entity within an organization in the Service Bridge hierarchy.

FieldDescriptionValidation Rule


Security domains can be used to group different resources under the same security domain. Although security domain is not resource itself currently, it follows a fqn format organizations/myorg/securitydomains/mysecuritydomain, and a child cannot override any ancestor's security domain. Once a security domain is assigned to a Tenant, all the children resources will belong to that security domain in the same way a Workspace belongs to a Tenant, a Workspace will also belong to the security domain assigned to the Tenant. Security domains can also be used to define Security settings Authorization rules in which you can allow or deny request from or to a security domain.


When set, prevents the resource from being deleted. In order to delete the resource this property needs to be set to false first.


Default metadata values that will be propagated to the children Istio generated configurations. When using YAML APIs liketctl or gitops, put them into the metadata.labels or metadata.annotations instead. This field is only necessary when using gRPC APIs directly.