Organization administration
Organization–level administration is the first place org administrators manage structure and access across the whole organization. In the product it is exposed as Identity Management with a header that shows the current organization name, and a tab strip for the main org-wide areas.
Typical path: /identity/settings (the exact host and prefix depend on your Praxis deployment; identity is the usual API base segment for these routes).
Tabs at organization scope
| Tab | What you can do |
|---|---|
| Tenants | Create, search, and manage tenants. New tenant is available when your role has organization write access. |
| Users | See and search all users in the organization (org–scoped user list). Users |
| Invitations | See outstanding invitations for the org, with filters, and open Invite user to create new ones. Invitations |
| SSO | Configure SAML or OIDC for your IdP, list existing connections, and add new ones with Configure SSO when allowed. |
Search boxes on Tenants, Users, and Invitations filter the current tab’s table.
Invite user (when organization write is allowed) starts the invitation flow in organization context (not tied to a single tenant in the modal).
Configure SSO opens the SSO wizard for a new connection at organization or tenant scope, depending on what you select in the modal.
What this is not
- Tenant–specific API tokens and tenant-only SSO defaults are managed under Tenant administration (tenant Settings), not on this first-level Identity Management screen.
- Your own account and password are under Profile / account settings, not under these org tabs.
Breadcrumbs
The UI breadcrumb often shows Home → Identity Management → <Organization name> → <current tab> so you always know which org is active. Switch organization from the org/tenant control in the shell before opening Identity Management if you belong to more than one.