> For the complete documentation index, see [llms.txt](https://docs.vergeos-demo.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.vergeos-demo.com/learn-the-platform/module-7-multi-tenancy/01-vdc-concepts.md).
# Virtual Data Center Concepts
## What is a Tenant?
A **tenant** in VergeOS is a complete **Virtual Data Center (VDC)** -- a fully self-contained environment that includes all the functionality of a base VergeOS system, excluding physical hardware management. Each tenant is essentially a "data center within a data center," providing an isolated environment for different users, organizations, or workloads.
Every tenant operates independently with its own:
* **Management UI** accessible via a unique URL
* **Compute resources** (CPU cores and RAM)
* **Storage allocation** from the parent vSAN
* **Network stack** with full L2/L3 isolation
* **User management** with local accounts or federated identity
* **Backup and DR** with individualized snapshot schedules
Unlike traditional multi-tenancy approaches that rely on logical separation (VLANs, resource pools, or RBAC boundaries), VergeOS tenants provide **true architectural isolation** -- each tenant is a fully encapsulated environment with its own networking, storage volumes, and administrative boundary.
```mermaid
graph TB
subgraph physical["Physical VergeOS System (Host)"]
direction TB
HW["Commodity Hardware
(Nodes + vSAN)"]
VOS["VergeOS Operating System"]
HW --> VOS
subgraph tenants["Tenant Layer"]
direction LR
T1["Tenant A
VDC
──────
Own UI + URL
Compute │ Storage
Networking │ Users"]
T2["Tenant B
VDC
──────
Own UI + URL
Compute │ Storage
Networking │ Users"]
T3["Tenant C
VDC
──────
Own UI + URL
Compute │ Storage
Networking │ Users"]
end
VOS --> tenants
end
style physical fill:#e8f5e9,stroke:#2e7d32
style tenants fill:#e3f2fd,stroke:#1565c0
```
{% hint style="info" %}
**VMware Bridge**
Coming from VMware? In VergeOS, each tenant is a fully isolated VDC built into the OS — its own management UI, networking stack, storage allocation, and user database, with no add-on licensing or separate management planes to stitch together.
{% endhint %}
{% hint style="info" %}
**Nutanix Bridge**
Coming from Nutanix? Rather than relying on overlay constructs within a shared management plane, VergeOS gives each tenant its own networking stack, storage allocation, and management interface — a fully encapsulated VDC.
{% endhint %}
## Architectural vs. Logical Isolation
The fundamental difference between VergeOS tenancy and competing approaches is the level of isolation provided. Most platforms offer **logical isolation** -- RBAC policies, network policies, and resource quotas that separate tenants within a shared management plane. VergeOS delivers **architectural isolation** through two key mechanisms:
### Network Encapsulation
Every tenant receives complete **Layer 2/Layer 3 network encapsulation**. When a new tenant is created, VergeOS automatically provisions:
* A **DMZ network** that serves as the connection point for all of the tenant's networks
* A **Core network** for internal management communication
* The ability to create multiple **internal networks** with their own subnets, DHCP, DNS, firewall rules, and routing
Tenant network traffic is fully encapsulated and isolated from other tenants and from the host system. This is fundamentally different from VLAN-based segmentation, where misconfiguration can expose traffic between tenants.
### Exclusive Storage Volumes
Each tenant receives **dedicated storage volumes** allocated from the parent vSAN. Storage isolation ensures that:
* Tenant data is completely segregated at the volume level
* Encryption can be applied per-tenant
* Storage performance boundaries prevent noisy-neighbor effects
* Per-tenant resource tracking — including within-tenant deduplication statistics — supports capacity planning and tenant-level billing. Cross-tenant deduplication savings are not attributed to individual tenants.
Together, network encapsulation and exclusive storage volumes provide **true isolation** -- not just policy-based separation, but architectural boundaries that prevent cross-tenant access by design.
## Tenant Hierarchy
VergeOS supports a **hierarchical tenant model** with two key levels:
### Provider / Host Level
The **host system** (also called the provider or parent) is the physical VergeOS installation that owns the hardware. The host system administrator has full control over:
* Physical hardware management (nodes, drives, NICs)
* Resource allocation to tenants (CPU, RAM, storage tiers)
* Tenant creation, cloning, and lifecycle management
* System-wide snapshots that include all tenants
* Monitoring and oversight of all tenant environments
### Tenant Level
Each **tenant** operates as an independent VDC. Tenant administrators can manage everything within their allocated resources:
* Virtual machines, networks, and storage within their allocation
* Users and permissions (local accounts or federated identity)
* Snapshots and DR within their own environment
* Custom branding and themes (if permitted by the parent)
### Nested Multi-Tenancy (Sub-Tenants)
VergeOS supports **nested multi-tenancy**: each tenant can create **sub-tenants** from its own allocated resources, building a hierarchy that supports complex organizational and service requirements.
```mermaid
graph TB
HOST["VergeOS Host System
(Physical Hardware)"]
HOST --> TA["Tenant A
(Service Provider)"]
HOST --> TB["Tenant B
(Enterprise)"]
HOST --> TC["Tenant C
(Education)"]
TA --> TA1["Sub-Tenant A1
(Customer 1)"]
TA --> TA2["Sub-Tenant A2
(Customer 2)"]
TA1 --> TA1a["Sub-Sub-Tenant
(Customer 1 - Dev)"]
TA1 --> TA1b["Sub-Sub-Tenant
(Customer 1 - Prod)"]
TB --> TB1["Sub-Tenant B1
(Engineering)"]
TB --> TB2["Sub-Tenant B2
(Finance)"]
TC --> TC1["Sub-Tenant C1
(Faculty A)"]
TC --> TC2["Sub-Tenant C2
(Faculty B)"]
style HOST fill:#e8f5e9,stroke:#2e7d32
style TA fill:#e3f2fd,stroke:#1565c0
style TB fill:#e3f2fd,stroke:#1565c0
style TC fill:#e3f2fd,stroke:#1565c0
style TA1 fill:#fff3e0,stroke:#e65100
style TA2 fill:#fff3e0,stroke:#e65100
style TB1 fill:#fff3e0,stroke:#e65100
style TB2 fill:#fff3e0,stroke:#e65100
style TC1 fill:#fff3e0,stroke:#e65100
style TC2 fill:#fff3e0,stroke:#e65100
style TA1a fill:#fce4ec,stroke:#c62828
style TA1b fill:#fce4ec,stroke:#c62828
```
For example, a service provider (Tenant A) can create customer tenants (Sub-Tenants A1, A2), and those customers can further subdivide their environments into dev/prod sub-tenants. Each level maintains full isolation and independent management.
## Key Features per Tenant
Every tenant in VergeOS receives the same set of capabilities — each VDC is a fully functional environment:
### Management UI & URL
Each tenant has its own web-based management interface accessible via a unique URL. Tenant admins can manage all resources, VMs, networks, and settings through this dedicated interface -- no shared management plane.
### User Management
Tenants support flexible identity management: local user accounts, authentication through the parent system, third-party identity providers (OAuth2/OIDC such as Okta, Azure AD/Entra, Google), or a combination. MSPs can centralize login across all tenant environments.
### Resource Tracking & Billing
Per-tenant resource tracking includes CPU, RAM, storage consumption, and deduplication statistics. Usage reports facilitate billing, auditing, and capacity planning -- critical for service providers who bill per-tenant.
### Backup & Disaster Recovery
DR protocols can be customized per tenant. Each tenant can control their own snapshot and retention schedules, while the host system's snapshots also capture all tenants for system-wide recovery.
### Portability
Each tenant is a portable, self-contained system. An entire VDC -- including all VMs, networks, storage, and configuration -- can be snapshotted, replicated via site sync, or moved to a different VergeOS installation as a single unit.
### Custom Branding & Themes
Parent systems can permit tenants to brand their UI with custom company logos, color schemes, and font selections using VergeOS Themes. This is especially valuable for MSPs who want to provide white-label services.
| Feature | Description |
| ------------------------ | --------------------------------------------------------- |
| **Management UI** | Dedicated web interface per tenant with unique URL |
| **User Management** | Local, parent-delegated, or third-party IdP (OIDC/OAuth2) |
| **Resource Tracking** | Per-tenant CPU, RAM, storage, and dedup statistics |
| **Backup/DR** | Individualized snapshot schedules and retention policies |
| **Portability** | Entire VDC can be snapshotted, replicated, or relocated |
| **Custom Branding** | Themes with logos, colors, and fonts (parent-controlled) |
| **Automated Deployment** | Tenant Recipes for rapid, standardized provisioning |
| **Networking** | Full SDN stack with firewall, NAT, DHCP, DNS per tenant |
## Use Cases
VergeOS multi-tenancy serves a wide range of deployment scenarios:
### Service Provider / MSP
Cloud Service Providers (CSPs) and Managed Service Providers (MSPs) use VergeOS tenancy to deliver **multi-tenant IaaS** with:
* **Customer isolation** -- each customer gets a fully isolated VDC with their own UI, users, and resources
* **Per-tenant billing** -- resource tracking and usage reports enable accurate billing per customer
* **Self-service portals** -- customers manage their own VMs, networks, and storage through their dedicated UI
* **Scalability** -- start with 2-node edge clusters and scale out as demand grows, adding nodes and clusters without disruption
* **Nested tenancy** -- customers can create their own sub-tenants for departmental or project-level isolation
* **Tenant Recipes** -- automate standardized VDC provisioning for rapid customer onboarding
### Enterprise
Enterprises use tenants to segment infrastructure while maintaining centralized management:
* **Department/team segmentation** -- Engineering, Finance, HR each get isolated environments
* **Dev/Test/Prod isolation** -- separate environments prevent accidental cross-contamination
* **Regulatory compliance** -- tenant isolation helps meet data residency and access control requirements
* **Resource governance** -- allocate and track resources per business unit
### Education
Educational institutions benefit from tenant isolation for:
* **Faculty/research environments** -- each department or research group gets a dedicated VDC
* **Student lab environments** -- isolated, reproducible lab environments that can be provisioned and torn down rapidly
* **Eliminating infrastructure silos** -- replace standalone lab systems with centrally managed tenants
### Disaster Recovery & Portability
VergeOS tenants are inherently portable, enabling DR patterns such as:
* **Entire VDC replication** -- snapshot and replicate a complete tenant (VMs, networks, storage, config) to a remote site
* **Tenant migration** -- move a tenant between VergeOS installations as a single unit
* **Rapid recovery** -- restore a tenant from a system snapshot to recover from disasters or accidental changes
* **Site sync** -- continuous replication of tenant environments between geographically distributed sites
## How Tenants Differ from Traditional VMs
It is important to understand that a VergeOS tenant is **not** simply a virtual machine. While VMs provide compute isolation, a tenant provides a complete **infrastructure isolation boundary**:
| Aspect | Virtual Machine | VergeOS Tenant (VDC) |
| --------------- | ------------------------ | ---------------------------------------- |
| **Scope** | Single workload | Complete data center |
| **Networking** | NIC(s) on shared network | Full SDN stack (DMZ, internal, external) |
| **Storage** | Virtual disk(s) | Dedicated storage volumes from vSAN |
| **Management** | Managed by host admin | Independent admin UI + users |
| **Nesting** | N/A | Can create sub-tenants |
| **Portability** | Single VM migration | Entire environment as one unit |
| **Identity** | Host-level auth only | Independent IdP / OIDC |
## Summary
VergeOS multi-tenancy is built into the platform — not a bolt-on product or configuration overlay. Each tenant is a complete Virtual Data Center with architectural isolation (network encapsulation + exclusive storage volumes), a dedicated management interface, independent user management, and full portability. The hierarchical tenant model supports unlimited nesting, enabling service providers, enterprises, and educational institutions to build multi-tenant environments with true isolation at every level.
In the next section, we will walk through the practical steps of creating and configuring tenants using the VergeOS UI.
---
# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.
## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.vergeos-demo.com/learn-the-platform/module-7-multi-tenancy/01-vdc-concepts.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.