MSSP & Multi-Tenant Platform

Every customer tenant in SpoofSentry has strict data isolation enforced at the database level using row-level security (RLS). Domains, users, DMARC reports, policy settings, API keys, and dashboard views are all scoped to the tenant. There is no shared-table leakage — one customer's data is never visible to another, even if an application-level bug occurs.

Tenant boundaries apply to the API, webhooks, and all export functions. MSSP operators access customer tenants through explicit impersonation with full audit logging, not by sharing credentials or switching database contexts.

SpoofSentry provides MSSP-specific roles that separate partner operations from customer operations. MSSP Admin manages the partner account, onboards customers, and configures portfolio-level settings. MSSP Analyst monitors customer tenants, triages incidents, and executes remediation playbooks. Customer Admin manages their own tenant's domains, users, and policy preferences. Customer Viewer has read-only access to their tenant's dashboard and reports.

Role assignments are per-tenant, so an MSSP analyst can have different access levels across different customer accounts. All role changes are audit-logged.

The MSSP dashboard provides a centralized view for onboarding and managing customer tenants. New customers can be provisioned with domain lists, default policy settings, notification preferences, and initial user accounts in a single workflow. Customer lifecycle states (trial, active, suspended, offboarded) are tracked with automated transitions.

Bulk customer operations include domain import, policy template application, and report scheduling. Customer health indicators surface tenants that need attention based on domain score trends, unresolved incidents, or stalled enforcement progression.

Portfolio analytics aggregate security posture across all customer tenants. DMARC enforcement status shows how many customer domains are at p=none, p=quarantine, and p=reject. Domain security scores are compared across the portfolio with trend lines. Active threats are surfaced across all tenants in a unified incident queue.

Scheduled portfolio reports can be delivered to MSSP leadership as PDF or sent via API for integration with partner business systems. Portfolio analytics are available on MSSP Pro and Enterprise tiers.

Enterprise MSSP plans include white-label branding. MSSPs can configure a custom domain for the customer-facing portal, custom logo and brand colors in the dashboard and reports, and branded email notifications sent to customer users. Customers see the MSSP's brand, not SpoofSentry's.

White-label configuration is managed from the MSSP admin panel and applies to all customer tenants under that partner account. PDF reports and compliance evidence bundles carry the MSSP's branding.

MSSP operators can impersonate customer tenant users to troubleshoot, configure settings, or perform actions on behalf of a customer. Impersonation sessions are fully audit-logged: the impersonating user, the impersonated user, start time, end time, and every action taken during the session are recorded.

Impersonation requires explicit MSSP Admin or MSSP Analyst role assignment for the target tenant. It cannot be used to escalate privileges beyond what the impersonated user would normally have. Customers can view the impersonation audit log for their tenant.

MSSP operators can apply changes across multiple customer tenants simultaneously. Supported bulk actions include policy template application (push a standard DMARC/SPF configuration to selected tenants), domain import (onboard domains across tenants from a CSV), report scheduling (configure recurring reports for multiple customers), and notification configuration (set alert thresholds across tenants).

Bulk actions go through the same approval workflow as individual changes. Each action is applied per-tenant with independent success/failure tracking, so a failure in one tenant does not block others.