Skip to main content

Control Plane

The Aserto Control Plane manages the lifecycle of policies, user context, and data that are used by the Authorizer. The control plane makes it easy to manage these artifacts centrally, and takes care of the details of synchronizing them to the Authorizer instance(s) deployed at the edge.


An Aserto Tenant provides the organizational scoping mechanism for artifacts managed by the Aserto Control Plane. You can think of a tenant just like a GitHub organization.


The artifacts that are managed per-tenant are:

  • Connections: connections to external systems such as identity providers and source code control systems
  • Policies: references to a set of authorization policy repositories
  • User directory: the meta-directory that Aserto builds from the identity providers that it is connected to
  • Decision logs: a centralized log of the aggregated decisions that are made by authorizers