Skip to content

Portal

Multi-tenant management portal for Proxmox VE environments, designed for MSPs and IT teams. Create, assign and isolate virtual environments for clients, departments or groups while keeping centralised control over the cluster.

Features

  • Isolated Tenant Management

    Each tenant can access only their own virtual resources.

  • Centralized Control

    Assign resources, policies and access from a single point.

  • Easy Scalability

    Quickly add new tenants without impacting the existing infrastructure.

  • Intuitive Interface

    Clear and well-organised frontend for administrators and tenants.

  • Secure and Segmented Access

    Separate logins for tenants with role-based permissions.

  • Native Proxmox Integration

    Fully compatible with existing infrastructure — no invasive changes required.

Why

Why a portal layer when PVE has its own users and roles?

Customers see only their VMs

Tenant users log into a portal that exposes only the VMs assigned to their tenant — no chance of accidentally touching another customer.

Single pane across clusters

A tenant can have VMs across multiple PVE clusters — they see one list, not "log into cluster A, log into cluster B".

RBAC over PVE permissions

Portal roles (Admin / Tenant Admin / Tenant User) layer on top of PVE permissions — define the customer experience once, regardless of underlying cluster ACLs.

MSP-grade isolation

Customers don't see each other, can't navigate to other tenants' resources, can't enumerate VM IDs that aren't theirs.

Sections

  • Tenants — create and manage tenants with their assigned VMs/CTs and users

Tenants

Each tenant contains:

  • VMs / CTs — list of Proxmox VE resources assigned to the tenant
  • Users — tenant users with role-based access control

Roles

Role Description
Portal Admin Full access to tenant management, VMs and users
Portal Tenant Admin Manages resources within their own tenant
Portal Tenant User Read-only or limited access within their tenant

Use Cases

  • MSP / Service Providers — separate environments per customer with isolated access
  • Enterprise IT — department-level resource isolation on a shared cluster
  • Education — assign lab environments to student groups