Enable External Access to a Trusted Anypoint Platform Organization
To establish a connection to a trusted Anypoint Platform organization, both organizations must reside in the same control plane, and trust must be established between organizations before permissions can be granted. For the users of Organization A to share with the users of Organization B, Organization A must list Organization B as a trusted organization, and Organization B must likewise list Organization A. If either Organization A or Organization B removes the other, all shared permissions are revoked.
Permissions shared between organizations are granted at the organization level. For example, if Organization A grants Organization B permission to view an asset, it grants that permission to every user in Organization B. Organization A does not receive any information about Organization B’s users, sub-organizations, or internal layout.
Add a New Trusted Organization
When you add a new organization to your external access configuration, you establish one half of a trust relationship. After the other organization adds yours to its configuration, both organizations can share permissions with each other.
To add an organization to your configuration, you must know its Anypoint domain. Domains are human-readable names that uniquely identify an Anypoint Platform organization. Ask the administrators of the other organization what their domain is, and be prepared to share your domain with them so they can add your organization to their list in return. You can view your organization’s unique domain name in the External Access page in Access Management.
To add an external organization to your list of trusted organizations:
-
From the Access Management home page, click the External Access tab.
-
In the External Access page, click Add organization.
-
Enter the unique domain name of the organization you want to share permissions with.
-
Click Add.
Remove a Trusted Organization
When you remove a trusted organization from your external access configuration, both organizations lose all existing shared permissions. In addition, you cannot grant new permissions until you reestablish the trust relationship.
To remove a trusted organization:
-
From the Access Management home page, click the External Access tab.
-
In the External Access page, select … next to the name of the organization you want to remove.
-
Click Remove organization.
-
Click Yes, remove.