{"templateId":"markdown","sharedDataIds":{"sidebar":"sidebar-sidebars.yaml"},"props":{"metadata":{"markdoc":{"tagList":["admonition"]},"redocly_category":"Guides","product":"Identity Management","type":"markdown"},"seo":{"title":"Create organizations","description":"Everything about Mosaic Journeys, SDKs, and APIs","siteUrl":"https://developer.transmitsecurity.com/","llmstxt":{"hide":false,"sections":[{"title":"Table of contents","includeFiles":["**/*"],"excludeFiles":[]}],"excludeFiles":[]}},"dynamicMarkdocComponents":[],"compilationErrors":[],"ast":{"$$mdtype":"Tag","name":"article","attributes":{},"children":[{"$$mdtype":"Tag","name":"Heading","attributes":{"level":1,"id":"create-organizations","__idx":0},"children":["Create organizations"]},{"$$mdtype":"Tag","name":"blockquote","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["This page is the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["detail"]}," for ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_setup-overview#step-5-create-organizations"},"children":["Setup overview — Step 5: Create organizations"]},"."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Create your B2B customer organizations, associate them with one or more applications, and optionally structure them in a parent–child hierarchy."]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"understand-organizations","__idx":1},"children":["Understand organizations"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Take the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":[{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_main-concepts"},"children":["holiday booking platform and travel agencies"]}]}," story from ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_main-concepts"},"children":["Main concepts"]},". In Mosaic, the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["holiday booking platform"]}," is one ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["B2B application"]},". In this guide set, the main example organization is ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail travel agency"]},", but other organizations can also exist in the same application, each serving a different purpose."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["At this stage, you create the customer entities that will later receive ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["role groups"]},", ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["authentication settings"]},", and ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["members"]},"."]},{"$$mdtype":"Tag","name":"div","attributes":{"className":"b2b-wip-table-wrap"},"children":[{"$$mdtype":"Tag","name":"table","attributes":{"className":"b2b-wip-bordered-table"},"children":[{"$$mdtype":"Tag","name":"thead","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"th","attributes":{},"children":["Application"]},{"$$mdtype":"Tag","name":"th","attributes":{},"children":["Organization"]}]}]},{"$$mdtype":"Tag","name":"tbody","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{"rowSpan":"2"},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Holiday booking platform"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail travel agency"]}]}]},{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Back-office / finance partner"]}]}]}]}]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"configure-an-organization","__idx":2},"children":["Configure an organization"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["In the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Admin Portal"]},", open ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["B2B Identity"]}," > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Organizations"]}," and click ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["+ Add organization"]},"."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["In Mosaic, an ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["organization"]}," represents one of your B2B customers — a company or partner whose members sign in to your product. An ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["application"]}," represents your product (the main company)."," ","At a configuration level, the relationship between applications and organizations is ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["many-to-many"]},": one organization can be linked to multiple applications, and one application can serve multiple organizations. You set this at creation time by selecting one or more applications in the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Applications"]}," field — the org's members will only be able to access the apps linked here. You can also ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"#associate-an-organization-to-multiple-apps"},"children":["add more applications to an existing organization"]}," at any time."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["In ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["B2B Identity"]}," > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Organizations"]}," > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["+ Add Organization"]},", set the main configurations including:"]},{"$$mdtype":"Tag","name":"ol","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Organization name"]},": Set the display name used across the Admin Portal and the Org admin portal for the organization."]}]},{"$$mdtype":"Tag","name":"ol","attributes":{"start":2},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Domains"]},": Set one or more email domains associated with this org (e.g. ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["agency.com"]},"). Used to route members to the correct organization."]}]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Applications"]},": Select one or more applications this org's members can access."]}]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"understand-parentchild-organizations","__idx":3},"children":["Understand parent–child organizations"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Some organizations have a more complex internal structure. In this guide set, the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail travel agency"]}," can act as a parent organization with ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["New York branch"]}," as a managed child organization."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["The parent and child will later receive different role groups. For example, the parent organization can receive ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail storefront"]},", while New York branch can be limited to ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail sales only"]},"."]},{"$$mdtype":"Tag","name":"div","attributes":{"className":"b2b-wip-table-wrap"},"children":[{"$$mdtype":"Tag","name":"table","attributes":{"className":"b2b-wip-bordered-table"},"children":[{"$$mdtype":"Tag","name":"thead","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"th","attributes":{},"children":["Main company"]},{"$$mdtype":"Tag","name":"th","attributes":{},"children":["Parent organization"]},{"$$mdtype":"Tag","name":"th","attributes":{},"children":["Managed child organization"]}]}]},{"$$mdtype":"Tag","name":"tbody","attributes":{},"children":[{"$$mdtype":"Tag","name":"tr","attributes":{},"children":[{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Holiday booking platform"]}]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Retail travel agency"]}," — head office that manages access and scope."]},{"$$mdtype":"Tag","name":"td","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["New York branch"]}," — managed branch that operates within the scope exposed by the parent."]}]}]}]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["A managed child organization can belong to more than one parent; each parent independently defines the scope available to that child."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"what-a-managed-child-organization-can-and-cannot-do","__idx":4},"children":["What a managed child organization can and cannot do"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["A managed child organization is created in the context of ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["one specific application"]}," of the parent and remains bound to it. Compared to a top-level organization, a managed child has a narrower scope:"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Bound to a single application."]}," The child is created for one application and cannot be associated with additional applications later. To give the same customer access to another application, provision them as a separate organization."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Role assignments are controlled by the parent."]}," The child can only receive the role groups that the parent exposed, and the child's admin cannot extend or modify them. See ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_create_role_groups#understand-parent-child-role-group-relationships"},"children":["Understand parent–child role group relationships"]},"."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Authentication methods can be customized."]}," The child can override the application-level authentication settings for its own members, just like a top-level organization. See ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_configure_org_roles_auth#configure-authentication-per-organization-and-application"},"children":["Configure authentication per organization and application"]},"."]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"configure-parentchild-organizations","__idx":5},"children":["Configure parent–child organizations"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Parent organizations are created in the Admin Portal like any other organization. Child organizations are provisioned from the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Org admin portal"]}," by the parent org's admin."]},{"$$mdtype":"Tag","name":"ol","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Log in to the Org admin portal"]}," as the parent org's admin (e.g. ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["yourcompany.org.sbx.transmitsecurity.io"]},") and open ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Managed organizations"]},"."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Provision the child organization"]}," from there. Here are the minimum required settings:",{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Organization name"]},": Set the display name used across the Admin Portal and the Org admin portal for the organization."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Domains"]},": Set one or more email domains associated with this org (e.g. ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["agency.com"]},"). Used to route members to the correct organization."]}]}]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Finish provisioning"]}," the child organization."]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["After the child organization is created, continue with the next setup steps to assign its role groups, configure authentication if needed, and add its members. These actions can be performed from the Admin Portal or Org admin portal, depending on your setup and permissions."]},{"$$mdtype":"Tag","name":"Admonition","attributes":{"type":"info","name":"Next step"},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Next, go to ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_configure_org_roles_auth"},"children":["Step 6: Configure org roles & auth"]}," to assign role groups, associate additional apps, and configure authentication for each organization."]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"manage-org-members","__idx":6},"children":["Manage org members"]},{"$$mdtype":"Tag","name":"Admonition","attributes":{"type":"info","name":"Complete setup first"},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":["The actions in this section are for ongoing member management. Before using them, make sure you have completed the full B2B setup flow until the ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_set_members"},"children":["Set members"]}," stage — so that organizations, role groups, and initial member assignments are already in place."]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["From the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Admin Portal"]},", you can manage members at two levels: actions on the member themselves, and actions scoped to a specific application within this organization. Per-application actions apply only to how that member uses the app in the context of this org — if the same member belongs to another organization that uses the same app, their access there is unaffected."]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Go to ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["B2B Identity"]}," > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Organizations"]}," > [your org] > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Members"]},". Open the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["⋮"]}," menu next to the relevant member for the following actions:"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Edit member"]}," (opens ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Edit member"]}," drawer > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Member details"]}," tab): Update the member's profile fields — email (required), phone number, preferred language, department, title, and direct manager."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Assign applications"]}," (opens ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Edit member"]}," drawer > ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Applications access"]}," tab): Add or change the applications the member can access within this org, and assign the corresponding roles. See ",{"$$mdtype":"Tag","name":"MarkdownLink","attributes":{"href":"/guides/user/b2b/b2b_set_members#configure-members"},"children":["Configure members"]},"."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Remove member"]},": Remove the member from this organization."]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["To manage the member's access for a specific application, click on the member to expand their application list, then open the ",{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["⋮"]}," menu next to the relevant app:"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Assign roles"]},": Assign or update the member roles for that application. The available roles depend on the role groups assigned to the organization for that app."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Suspend"]},": Suspend the member's access to the application. A suspended member cannot sign in until their access is restored."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Terminate sessions"]},": End all active sessions the member has for that application."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Reset password"]},": Send the member a password reset email for the application."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Resend invitation"]},": Resend the membership invitation email to the member, in case the original invite expired or was not received."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Manage passkey credentials"]},": View and remove passkey credentials registered by the member for the application."]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Remove application"]},": Remove the application from this member's access within the organization."]}]},{"$$mdtype":"Tag","name":"style","attributes":{},"children":["\n    /* Blockquote intro block */\n    [data-component-name=\"Markdown/Markdown\"] blockquote {\n        border-left: 4px solid #BBC5FF !important;\n        border-radius: 2px;\n        background-color: #F1F2FF !important;\n        padding: 20px 10px 15px 10px;\n        margin: 10px 1px;\n    }\n\n    /* Create organization — bordered example tables */\n    .b2b-wip-table-wrap {\n        margin: 10px 0;\n        border-radius: 5px;\n        overflow: hidden;\n        border: 1px solid #ededf2;\n    }\n\n    table.b2b-wip-bordered-table {\n        border-collapse: collapse;\n        width: 100%;\n        margin: 0;\n    }\n\n    table.b2b-wip-bordered-table th,\n    table.b2b-wip-bordered-table td {\n        border: 1px solid #ededf2 !important;\n        padding: 10px;\n        text-align: left;\n        vertical-align: top;\n    }\n\n    table.b2b-wip-bordered-table thead th {\n        background-color: #f5f5f5 !important;\n        color: #000000 !important;\n        font-weight: 600 !important;\n    }\n\n    table.b2b-wip-bordered-table ul {\n        margin: 0;\n        padding-left: 1.25em;\n    }\n"]}]},"headings":[{"value":"Create organizations","id":"create-organizations","depth":1},{"value":"Understand organizations","id":"understand-organizations","depth":2},{"value":"Configure an organization","id":"configure-an-organization","depth":2},{"value":"Understand parent–child organizations","id":"understand-parentchild-organizations","depth":2},{"value":"What a managed child organization can and cannot do","id":"what-a-managed-child-organization-can-and-cannot-do","depth":3},{"value":"Configure parent–child organizations","id":"configure-parentchild-organizations","depth":2},{"value":"Manage org members","id":"manage-org-members","depth":2}],"frontmatter":{"markdown":{"toc":{"depth":2}},"navigation":{"previousButton":{"text":"Previous:","hide":false,"label":"Create app role groups","link":"/guides/user/b2b/b2b_create_role_groups"},"nextButton":{"text":"Next:","hide":false,"label":"Configure org roles & auth","link":"/guides/user/b2b/b2b_configure_org_roles_auth"}},"seo":{"title":"Create organizations"}},"lastModified":"2026-05-14T12:07:42.000Z","pagePropGetterError":{"message":"","name":""}},"slug":"/guides/user/b2b/b2b_create_organization","userData":{"isAuthenticated":false,"teams":["anonymous"]},"isPublic":true}