In multi-tenant customer-owned license deployments, you must manually pair the parent tenant with each child tenant.
After you set up the correct access configurations and role permissions, you should pair the parent tenant to the child tenants.
Pairing a Parent and Child Tenant
Log in to the Cortex XSIAM tenant that has been assigned as the parent tenant and select → → .
The Tenant Management table displays:
Tenant Name: Name of the child tenant.
Pairing Status: State of a pairing request: Paired, Pending, Failed, Rejected.
Account Name: CSP account to which the child tenant is associated.
Last Sync: Timestamp of when the parent tenant last made contact with child tenant.
Managed Security Actions: A column for each security action with a status: Configuration name or Unmanaged. Unmanaged status means that a configuration for the security action has not yet been selected.
Click + Pair Tenant.
In the Pair Tenant window, select the child tenant you want to pair. The dropdown only displays child tenants your are allowed to pair with.
Child tenants are grouped according to:
Unpaired: Children that have not yet been paired and are available. If another parent has requested to pair with the child but the child has not yet agreed, the tenant will appear.
Paired: Children that have already been paired to this parent.
Paired with others: Children that have been paired with other parents.
Pending: Children with a pending pairing request.
Pair the tenant.
Cortex XSIAM sends a Request for Pairing to the specified child tenant.
In the child tenant Cortex XSIAM console, a child tenant user with Admin role permissions needs to approve the pairing by navigating to Notifications , locate the Request for Pairing notification and select Approve.
Verify the parent-child pairing.
After pairing has been approved, in the child tenant’s Cortex XSIAM app, when navigating to a page managed by a parent configuration, the child user is notified by a flag who is managing their security.
In the child tenant’s, pages that you manage, appear with a read-only banner. Child tenant users cannot perform any actions from these pages, but can view the configurations you create on their behalf.