Multi-Tenant Operations

Many clients.
One console.

Shield gives MSSPs a prevention-first network security capability that reduces analyst workload and improves customer outcomes. Shield blocks malicious traffic at the network layer using the Global Threat Engine.

Know More. Miss Less.

Shield enables MSSPs to manage multiple customers from a single platform while maintaining strict separation of data, policies, and access. Each tenant operates independently. You retain centralized visibility and control through Shield Command Hub.

At a Glance
AudienceMSSP operations leaders managing multiple client environments
ProblemConsole sprawl and per-client overhead erode service margins
How Shield helpsShield Command Hub manages all tenants from one console with role-based access
Best fitMSSPs managing 50-500 mid-market and enterprise tenants
Next stepApply to partner program
Command Hub · Client View
acme-corp
1000 Windows Endpoints · 12 Shield OnPremise
Protect
northwind
500 Android Endpoints · 8 Stratus
Protect
contoso
36 Stratus · 2 Shield OnPremise
Observe
fabrikam
750 Windows · 250 Android · 4 Shield OnPremise
Protect
globex
18 Stratus · 200 Windows Endpoints
Protect
Tenant Isolation

Real separation.
Real control.

Logical separation of each customer’s data, traffic, and policies. No cross-tenant visibility unless explicitly authorized. Secure, per-tenant access boundaries built into the platform, not bolted on.

Group-based RBAC. Each client gets their own group by default. Groups can span devices across multiple clients when that suits your operations. A user gets a role per group, and the role controls how much editing they can do inside it. Admin for one group. User for another. Observer for a third. Real permissions, real flexibility.

Command Hub · Client View
acme-corp
1000 Windows Endpoints · 12 Shield OnPremise
Protect
northwind
500 Android Endpoints · 8 Stratus
Protect
contoso
36 Stratus · 2 Shield OnPremise
Observe
fabrikam
750 Windows · 250 Android · 4 Shield OnPremise
Protect
globex
18 Stratus · 200 Windows Endpoints
Protect
One thing to know

Custom groups that span multiple clients are powerful for your operations team, but they are not meant for end-client users. If you build a multi-tenant group, never assign it to a customer. You’re the one keeping the walls up: Shield gives you the tools, you set the access.

Onboarding at Scale

Standard steps.
Repeatable outcomes.

01 Deploy

On-prem, cloud, or endpoint

Pick the platform that fits the customer’s environment. Stratus for cloud workloads. Shield OnPremise for datacenter and campus. Endpoint for remote workforce. Mix as needed.

02 Register

Tenant in Command Hub

One tenant created per customer by default. Groups configured. Roles assigned. Baseline permits set if needed. The tenant boundary is logical and enforced.

03 Visibility

Hours, not days

Begin enforcement and visibility within hours. Immediate insight into traffic and risk. First customer-ready report ready by week one of operations.

Standardization

What’s repeatable.
What’s custom.

Repeatable

Deployment models. Baseline policies. Reporting structures. Apply the same templates across every tenant to keep onboarding fast and onboarding quality consistent.

Custom

Exceptions. Permits. Customer-specific reporting needs. Where the customer needs flexibility, you have it. Where the platform should standardize, it does.

Bulk changes

Apply updates across multiple tenants simultaneously. Maintain consistency without manual reconfiguration. Threat intelligence updates happen automatically across every tenant.

Audit trail

Visibility into configuration changes and enforcement actions. Track who made changes and when. Built-in evidence for customer compliance reviews.

Monitoring Model

What your SOC
watches every day.

01 Daily View

What matters most

Blocked traffic and enforcement activity. Suspicious endpoints and unusual communication patterns. Trends across tenants surfaced through AI Insights.

02 Priority Items

What lights up

Repeated blocked communications from high-risk connections. Indicators of compromised devices or abnormal behavior. High-risk destinations or patterns. Backed by AI Recommendations.

03 Quiet Defaults

No noise tax

Prevention-first reduces volume at the source. Logging instead of constant interruption. Focus on meaningful events, not chasing every false positive.

Reporting Per Tenant

The reports
your customers want.

Advanced reports

Threat, traffic, and behavior insights per tenant. Visibility into IoCs, suspicious endpoints, and patterns. Detailed threat reports by Intrusion threat hunting experts can be added on.

Cadence options

On-demand access. Historical reporting available as needed. You set the rhythm with the customer, the platform supports it.

Two altitudes

Executive summary outputs for the board. Advanced reports for the analyst details. Same data, two stories, no separate tooling required.

Operational Metrics

What an MSSP
measures.

Time to deploy

Hours, not weeks. Per tenant.

Analyst time saved

Reduced triage and investigation effort across the client base.

Volume reduction

Fewer downstream events flowing into your SIEM and ticketing queues.

Proof of value

Clear evidence of blocked threats and reduced risk. Customer-ready.

MSSP Operational Guide.

Shield is designed to reduce what reaches the SOC queue before analysts ever see it. For MSSPs managing multiple customer environments, that means fewer meaningless alerts, lower analyst workload, and more time spent on real threats.

Shield complements your existing SIEM, EDR, and firewall stack. It does not replace any of them. It blocks the known-bad traffic those tools would otherwise have to triage.

Talk to an Engineer

Customer Reporting for MSSPs.

Shield Command Hub generates blocked-event logs and exportable reports (CSV and Excel) that MSSPs can use for customer-facing reporting. Every blocked connection is timestamped, categorized, and attributable to a specific tenant.

See How MSSPs Use Shield Reporting →

RECOMMENDED NEXT STEP

Ready to see what Shield finds in your environment?

Request a POV Book a Meeting Talk to an Engineer