Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Each data record is associated to a tenant

  • There is one single database, the data storage is not separated for multiple tenants

  • The actual data is no not physically divided, there is only one AppCustomer

Advantages

Disadvantages

The underlying hardware is the same for all tenants.

A misconfiguration of the security rules can lead to sharing data with other tenants.

Licencing is shared across all tenants.

SaaS functions can be used, such as dynamic registration of a new tenant (IAMaaS).

Selected data / master data can be shared across tenants.

All services are hosted for all tenants.

AppCustomer Seperation

The CoreOne Suite supports the creation of multiple AppCustomers. An AppCustomer is represented as a seperated schema within the same database. Therefore the underlying hardware can be shared but the data is stored in a dedicated schema and therefore logically seperated from other AppCustomers.

...

  • Data records are stored in the appropriate AppCustomer schemas

  • There is one single database, but data storage is seperated on schema level

  • The actual data is logically divided, there are multiple AppCustomers

Advantages

Disadvantages

The underlying hardware is the same for all tenants.

Additional complexity in the configuration.

Licencing is shared across all tenants.

Certain services have to be hosted for each AppCustomer (Portal, Auth).

SaaS functions can be used, such as dynamic registration of a new tenant (IAMaaS).

Selected data / master data can be shared across tenants.

Data is further divided. The risk of accidentally sharing data with other tenants is mitigated.

Physical Seperation

By actually installing the CoreOne Suite multiple times the data is completely separated.

Advantages

Disadvantages

The data is completely separated.

Additional complexity

.Data is seperated completly

.

Licences have to be ordered for each installation.

No dynamic registration of new tenants.

Logical Security Seperation

With the Advanced Permission Management of the CoreOne Suite you can configure security roles that gives users access to only selected data. This allows you to configure a wide variety of use cases with endless complexity. You can configure use cases such as give users only access to data that is associated to an organizational unit below the Legal Entity that they are employed to.

Advantages

Disadvantages

The underlying hardware is the same for all tenants.

Additional complexity in the configuration.

Licencing is shared across all tenants.

Certain services have to be hosted for each AppCustomer (Portal, Auth).

SaaS functions can be used, such as dynamic registration of a new tenant (IAMaaS).

Misconfiguration can lead to data being shared across use cases

Selected data / master data can be shared across tenants.

The evaluation of the security roles can be slow depending on the use case and data amount.

Data is further divided. The risk of accidentally sharing data with other tenants is mitigated.

Complex use cases can be configured.

Combining

All the described deployment scenarios can be combined. This allows you to find the best combination for your use cases. It’s also possible to migrate from one deployment scenario to another. But be aware that even though this is possible, it’s not an easy task to do. So be sure to select the ideal scenario for your use case.

...