Admin Guide

Managing tenants, clients, users, and platform settings.

Roles Overview

TrustMFT has three roles with different levels of access:

Managing Tenants (SuperAdmin only)

Tenants are top-level organisations on the platform. Each tenant is isolated — its data, users, and clients are not visible to other tenants.

• Go to Tenants in the sidebar to view all tenants.
• Click New Tenant to onboard a new organisation. You will be prompted for the tenant name and the initial administrator's email. A welcome email with login credentials is sent automatically.
• You can Suspend a tenant to temporarily disable all access, or Cancel to mark it as inactive.
• Clicking a tenant row opens its detail page where you can manage its clients and users directly.

Managing Clients

Clients represent a group of files and users within a tenant — for example, a customer or a project. Each client has its own storage container, quota, and file size limit.

• Go to Clients in the sidebar.
• Click New Client and provide a name, storage quota, and maximum file size.
• Edit a client to change its quota or file size limit.
• Delete a client to permanently remove it and all associated files. This action is irreversible.

IP Allowlists

You can restrict which IP addresses may access a client's files by adding CIDR ranges to the client's IP allowlist. When at least one entry is configured, only requests from those ranges will be permitted. Entries accept both IPv4 and IPv6 CIDR notation (e.g., 203.0.113.0/24).

Storage Quotas

Each client has an individual storage quota. When a client's usage approaches its quota, upload attempts will be rejected. The dashboard shows current usage as a percentage of the quota. Adjust the quota in the client's edit page.

Managing Users

Users belong to a tenant and can be assigned to one or more clients.

• Go to Users in the sidebar to see all users in your tenant.
• Click New User to create a user. A welcome email with a temporary password is sent to their email address.
• Edit a user to update their name, role, or client assignments.
• Delete a user to remove their access immediately.

Resetting SFTP Passwords

Each user has a separate SFTP password. To reset it, open the user's detail page and click Reset SFTP Password. A new password will be generated and displayed once — copy and share it securely with the user.

MFA Enforcement

TenantAdmins can require all users in their tenant to set up MFA. Go to the tenant settings and toggle Require MFA. Once enabled, users who have not set up MFA will be redirected to the MFA setup page on next login.

Folder Permissions

By default, a ClientUser can access all folders in a client. You can restrict this by assigning folder-level permissions:

• Open the user's detail page and go to Client Permissions.
• Select the client and the folders the user is allowed to access.
• Supported permission types: Upload, Download, Delete, Create Folders.

Audit Logs

TrustMFT records an audit trail of all significant actions including logins, file uploads/downloads, and administrative changes.

• Go to Audit Logs (available to TenantAdmins and SuperAdmins).
• Filter by date range, user, action type, or outcome.
• Click Export CSV to download the filtered log as a spreadsheet for compliance or incident review.