Base organizations

Base organizations

Application clients can have base organizations configured. Base organizations close off a specific chunk of the organizational hierarchy and restrict the client to the organizations in that extracted hierarchy.

In addition, application types determine how base organization restriction applies. Access varies between different organizational levels depending on the type of application running the client:

📘

Organization-only applications only handle access to the children of a base organizaiton.

Clients

Clients are the practical implementations of policy settings. Customers enter authentication flows, encounter your brand’s experience, and access their accounts by interacting with clients.

Clients put into practice the configurations applied to applications and/or organizations. However, configurations apply conditionally to clients: the experience customers will ultimately see on their screens may depend on the organizational affiliation of their account, not just the policies applied.

📘

Organization policy overrides allow you to provide organizations with their unique branding, communications, verification and authentication flows, or login options.

Set up a base organization

1. In Applications, select the organization-enabled application of your choice or create a new one.
2. In the application tab, go to Clients.
3. Select from the list of existing clients or create a new one.
4. In the client's General tab, open the Base organization drop-down.
5. Select from the list of available organizations.

📘

Descendant organizations of an identifier uniqueness hierarchy can't be configured as base organizations.

6. Click Save to finish your configuration.