Contact Us
Help Center Home > Multi-Tenant Portal > Manage Admins in the MTP

Manage Admins in the MTP

You can manage Multi-Tenant Portal (MTP) Admin accounts in each of your managed organizations within the JumpCloud MTP. After you add an Admin, you can view their details and perform a variety of other actions like requiring Multi-Factor Authentication (MFA), suspending/restoring accounts, and resetting passwords. 

Considerations:

  • All Admins in your MTP have access to all of the managed orgs in that MTP. 
  • The MTP supports granular permissions; you can restrict access to specific orgs per MTP Admin account.
  • Existing orgs aren’t automatically added to your managed org's MTP when they’re activated. You need to ask JumpCloud Support to add existing org's to your managed org's MTP.
  • Admin added to an org's MTP are automatically given access to orgs created in the MTP.
  • When creating a new Admin, API access will be disabled by default.

Adding an Admin

To add an Admin to your MTP:

  1. Log in to the MTP.
  2. Click the Administrators tab.
  3. Click the plus icon ( + ).
  4. In the Details tab, enter a First NameLast Name, and Administrator Email Address* for the new Admin.
    • Note: You must specify an email address before you can save an Admin.
  5. Toggle Multi-Factor Authentication on or off.
    • Note: If MFA is required for an MTP Admin account, the Admin will be required to provide a TOTP token with their account credentials on their next login.
  6. In the Permissions & Access tab, click the Permissions dropdown menu and select the Role* you want to assign to the Admin.
  7. API key access is disabled by default for all new Admins. Select Enable API access to allow the Admin to generate their own key.
  8. In the Organization Access field, select the orgs you want to give your Admin access to. 
  9. Click Save. You can now view details for this Admin account on the Administrators tab.

Viewing Details for Your MTP Admins

To view details for MTP Admins:

  1. Log in to the MTP.
  2. Select the Administrators tab.

The following details are shown for admin accounts:

  • Name - The Admin’s first and last name.
  • Email - The Admin’s account email address.
  • Role - The Admin's role/permission level.
  • Organizations - The orgs your Admin can access.
  • Status - The Admin’s account status; either active, pending, or suspended.
  • API Key Access - If the Admin has access to generate and use an API key or not. Hover over the status to see what it means.
  • MFA: Requirement - Whether the Admin is required to use MFA; status is either Required or Not Required
  • MFA: Enrollment - Whether the Admin has taken the first step to enroll in MFA; status is either Enrolled or Not Enrolled

Editing Admins

To edit an Admin:

  1. Log in to the MTP.
  2. Click the Administrators tab.
  3. Click on the Admin’s Name in the list.
  4. On the Details tab, modify the Admin's information:
    • First Name - The Admin's first name.
    • Last Name - The Admin's first name.
    • Administrator Email Address* - The Admin's email address. This field is required.
  5. Under Security, you can toggle Multi-Factor Authentication Not Required or Required.
    • When MFA is required for an MTP Admin account, the Admin will be required to provide a TOTP token with their account credentials when they log in to your managed org’s MTP.
  6. You also have the option to Send TOTP Reset Email.
  7. Under Account Settings, you can see the status of the account (Active, Suspended)
  8. You can also:
    • Send Password Reset Email
    • Suspend Account
    • Restore Account (This option is only available for an account that is already suspended)
  9. Click the Permissions & Access tab, under Permissions, click the Role dropdown menu and select which role you want to assign to the Admin. See Manage Admin Roles in the MTP to learn more.
  10. If you want to give the admin API access, select the checkbox next to Enable API access. If it's enabled and the Admin has generated a key, you'll see the first four characters of the Admin’s API key, and the date it was created as well. See JumpCloud API’s to learn more.
  11. In the Organization Access field, select the orgs you want to give your Admin access to.
  12. Click Save. You can view details for this Admin account on the Administrators tab.

Requiring MFA for Admins

Note:

JumpCloud requires MFA for all Admins. The non-editable Global MFA Requirement setting can be viewed in the Admin Portal under Settings > Account.

Suspending and Restoring Admin Accounts in the MTP 

Note:

Before suspending an Admin account, see Suspend and Reactivate User Accounts to learn more.

To suspend an Admin account

  1. Log in to the MTP.
  2. Click the Administrators tab.
  3. Click on an Admin from the list.
  4. Under Account Settings, click Suspend Account.

Important:

This immediately removes the Admin's access to the MTP while maintaining their date and configuration records.

  1. Confirm that you want to suspend the selected account, then click Suspend
  2. Click Save. The account appears as suspended in the Admins list.

To restore a suspended Admin account:

  1. Log in to the MTP.
  2. Click the Administrators tab.
  3. Click an Admin from the list.
  4. Under Account Settings, click Restore Account
  5. Confirm that you want to restore the selected Admin account, then click Restore
  6. Click Save. The account appears as Active in the Admins list. 
Back to Top

List IconIn this Article

Notebook IconLearn More

MTP Homepage

Manage Organizations in the MTP

Manage Admin Roles in the MTP

Scope MTP Admins to Organizations

Manage Users in the MTP

Manage Devices in the MTP

Manage Command Templates for the MTP

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case