Provider Portal

Start a Client Organization

This article will walk you through the creation of a client organization and outline a typical setup procedure for getting started administering a customer's organization.

Create a client organization

tip

Already have an organization setup for your customer? You can add an existing organization to the Provider Portal.

To create a client organization you must be a Provider admin:

  1. Open the Provider Portal using the product switcher:

    Product switcher - Provider Portal
    Product switcher - Provider Portal

  2. Navigate to the Clients tab of the Provider Portal and select the New client button:

    New client organization
    New client organization
  3. On the New client organization screen, enter an Organization name, Billing email, and Client owner email.

    note

    An invitation will automatically be sent to the Client owner email to join the organization as an owner.

  4. From the Choose Your Plan list, select the type of organization to create.

    tip

    Teams and Enterprise organizations include premium features for all enrolled users.

  5. Set the following options for the organization:

    • User seats: Specify the number of user seats you need for the client organization. Seats will be added if you exceed this number, unless you specify a limit.

    • Additional storage (GB): Organizations come with 1GB of encrypted storage for attachments. Add additional storage for $0.33 per GB per month.

    • Billing cadence: Choose whether you'd like to be billed for this organization annually or monthly.

  6. Once you are happy with the organization, enter your Payment Information and select Submit.

  7. Select Submit to finishing creating the organization.

Once created, navigating to the client organization from the Provider Portal will bring you to the organization vault, from which you can fully complete initial setup and engage in ongoing administration:

Client organization vault
Client organization vault

Initial setup procedure

With your newly-created client organization, you are ready to start building the perfect solution for your customer. Exact setup will be different for each client organization depending on your customers' needs, but typically will involve the following steps:

  1. Create collections. A good first step is to create a set of collections, which provide an organizing structure for the vault items you will add to the vault in the next step.

    Common collections patterns include Collections by Department (for example, users in the client's Marketing Team are assigned to a Marketing collection) or Collections by Function (such as users from the client's Marketing Team are assigned to a Social Media collection):

    Collections
    Collections

  2. Populate the organization vault. Once the structure of how you will store vault items is in place, you can begin populating the organization with your client's logins, notes, cards, and identities.

  3. Configure enterprise policies. Before beginning the user management portion of setup, configure enterprise policies in order to set rules-of-use for things such as master password complexity, use of two-step login, and admin password reset.

    note

    Enterprise Policies are only available to Enterprise organizations.

  4. Setup login with SSO. If your customer uses single sign-on (SSO) to authenticate with other applications, connect Bitwarden with their IdP to allow authentication with Bitwarden using end-users' SSO credentials.

  5. Create user groups. For Teams and Enterprise organizations, create a set of groups for scalable permissions assignment. When you start adding users, add them to groups to have each user automatically inherit the group's configured permissions (such as access to specific collections).

    One common group-collection pattern is to create Groups by Department and Collections by Function, for example:

    Collections
    Collections
  6. Start inviting users. Now that the infrastructure for the secure and scalable sharing of credentials is in place for your client, you can begin inviting users to the organization. To ensure the security of the organization, Bitwarden applies a three-step process for onboarding new users, InviteAccept Confirm.

    tip

    If your customer uses directory service or IdP (active directory, an LDAP, Okta, and more), use SCIM or Directory Connector to automatically sync organization users from the source directory and automatically issue invitations.

Make a suggestion to this page

Contact Our Support Team

For technical, billing, and product questions.

Name*
Bitwarden account email*
Verify account email*
Product*
Are you self-hosting?*
Subject*
Message...*

Cloud Status

Check status

© 2024 Bitwarden, Inc. Terms Privacy Cookie Settings Sitemap

This site is available in English.
Go to EnglishStay Here