← Back to Orbit Architecture
Realm Management
Identity and Access Control
Keycloak-based identity and access control with multi-tenant realm isolation — complete separation of users, groups, and permissions per tenant.
Realm Features
Multi-Tenant Isolation
Each tenant operates in its own Keycloak realm with complete separation of users, groups, and roles.
Role-Based Access
Fine-grained permissions with role-based access control across all platform components.
Group Management
Organize users into groups with team-level permissions and resource access.
Single Sign-On
Unified authentication across all platform components with SSO support.
Realm Hierarchy
Master Realm
Central administration for platform-wide settings and super-admin users.
Tenant Realms
Dedicated realms for each tenant with isolated users, groups, and permissions.
Group-Based Access
Users organized into groups with role-based permissions for resources.