Managing fleets of embedded devices across multiple customers, teams, or product environments is a significant challenge that grows more complex as an organization's market share scales. Each tenant requires a different level of access, varying security policies, and its own set of workflows. Without proper separation in place, organizations experience fragmented user management, siloed configurations, and an increased risk of error or data leakage.
With the release of Mender Server 4.0, the Service Provider tenant stands to overhaul multi-tenancy within Mender. The Service Provider tenant enables streamlined management of multiple isolated environments, all from a centralized interface. Within the Service Provider tenant, there are new enhancements to single sign-on (SSO) capabilities, aimed at enhancing the user experience of multi-tenancy.
The SSO improvements in Mender Server 4.0 complement the Service Provider tenant, making it easier to govern access, strengthen security, and support seamless automation across tenants.
With Mender Server 4.0, multi-tenancy capabilities are elevated through the introduction of the Service Provider tenant. The Service Provider tenant makes tenant separation more accessible through a dedicated interface and a two-level hierarchy that adds an entirely new layer of control and scalability.
The new Service Provider architecture is purpose-built for organizations that need to manage large, complex, or segmented environments—whether they’re supporting multiple external clients, internal development teams, or a mix of staging and production deployments.
The Service Provider tenant simplifies the governance of these environments, offering intuitive controls to set per-tenant device limits, assign or revoke admin rights, and maintain clear separation between environments without sacrificing central oversight. Tenant separation is a powerful foundation for scaling securely—but managing the users who interact with these tenants still demands an efficient, unified approach. To manage users and redundancies, the Service Provider tenant introduces SSO integration across tenants for necessary users.
User access management often becomes a large issue for OEMs as device fleets grow and diversify. Without a unified strategy, managing users across isolated tenants can lead to duplicate accounts, inconsistent permissions, and greater administrative overhead, which ultimately threatens the security of operations and devices.
This is particularly true in multi-tenant environments, where each tenant might need its own set of administrators, developers, or automation systems. For example:
In these scenarios, SSO is critical in reducing redundancies and ensuring streamlined and correct access for users while also:
Today, Mender supports SSO through SAML (Security Assertion Markup Language (SAML) and OpenID Connected Federated authentication. Instead of managing separate login credentials for each tenant or across solutions, users authenticate once and gain access to all authorized environments—saving time, reducing support tickets, and improving the overall security posture.
Mender supports SSO through SAML—a well-established and widely adopted protocol in enterprise identity management. SAML integration allowed organizations to authenticate users through their existing identity provider, enabling centralized control over who accesses Mender and under what conditions. The approach allows:
SAML support is a key enabler of scalable user management. It reduces friction for DevOps and IT teams, empowers security administrators, and makes it easier to extend access to distributed teams, contractors, and partners or service providers.
The enhanced SSO capabilities in Mender Server 4.0 support modern workflows and evolving enterprise needs. These SSO updates aim to introduce new ways to manage secure access while improving the overall user experience for authorized users in the Service Provider interface.
PATs serve as secure, revocable tokens that allow systems—like CI/CD pipelines or automated deployment tools—to interact with Mender without requiring user credentials. Mender Server 4.0 extends the PATs capabilities to SSO-authenticated users. Now, organizations that rely on identity providers for centralized user management can issue PATs tied to the same identities. PATs with SSO creates a seamless blend of human and machine access that aligns with modern DevOps practices.
Benefits:
Mender 4.0 also introduces support for OpenID Connect (OIDC)—a modern, REST-friendly authentication protocol built on OAuth 2.0. OIDC is increasingly favored for its ease of implementation, better integration with cloud-native applications, and broader ecosystem support compared to SAML.
With OIDC support, Mender becomes compatible with a wider range of popular identity providers, including Auth0, Google Identity, Amazon Cognito, Keycloak, and more.
For teams building microservices, serverless applications, or cloud-native IoT platforms, OIDC is often the preferred choice for SSO because it offers centralized authentication and improved scalability. Furthermore, OIDC simplifies token-based authentication, making it easier to manage sessions, access levels, and identity across a distributed system.
Together, these two enhancements—PATs and OIDC for SSO users—bolsters Mender’s overall security, allowing teams to enforce modern security best practices while ensuring flexibility, scalability, and central control to manage embedded device fleets at scale, in traditional or
The combination of enhanced SSO support and the new Service Provider tenant unlocks a wide range of practical, real-world use cases for organizations managing embedded devices across multiple environments.
An MSP supporting dozens—or even hundreds—of customers can use the Service Provider tenant to isolate each customer environment while maintaining a centralized management view. With SSO:
An enterprise managing both staging and production environments, or operating across multiple business units, can leverage child tenants to separate these environments. With SSO:
When bringing in a third-party developer or auditor, it’s important to ensure they only access what’s necessary—and only for as long as needed. With Mender’s SSO enhancements:
The Service Provider tenant tailors Mender to different environments while keeping necessary data and deployments separated.The updated SSO support in Mender Server 4.0 enhances the Service Provider tenant, allowing organizations to maintain strong security, operational agility, and scalability all with a secure and streamlined end user experience.
As embedded device deployments grow in complexity, the norm is environmental separation spanning multiple environments, customers, or user roles. Secure, centralized, and scalable management becomes non-negotiable while separating multiple environments across differing complexity. With the introduction of the Service Provider tenant and significant SSO enhancements in Mender Server 4.0, organizations have the tools to confidently scale without compromising control or security. The Service Provider tenant supplies the framework for secure tenant separation while SSO enhancements enable secure and simplistic access control across environments.
Read more about Mender’s Multi-tenancy and SSO support in the documentation.