Help CenterOrganization Relationships
Organization Relationships define how organizations can use each other’s objects when creating Secure Network (ZTNA) policies.
They do not grant access by themselves, they control what can be selected during policy creation.
What Are Organization Relationships?
A relationship connects one organization to one or more other organizations.
- Organization – the primary organization
- Can create policies where – defines where the organization objects will be accessible from
- Organizations – the organizations it can use objects from
How It Works
Relationships control which organizations are available when building policies.
- Only configured relationships appear in selection lists
- Objects can only be selected from allowed organizations
- Relationships apply in one direction only
Direction Behavior
The “Can create policies where” setting determines how the relationship is used:
- Source – allows the organization to use its objects as the source
- Destination – allows the organization to use other organizations as destinations
To allow both directions, separate relationships must be created.
Key Behavior
- Relationships only apply to the selected Organization
- Only configured organizations appear in policy dropdowns
- Relationships are not automatically reversed
- Without a relationship, cross-organization object selection is not available
Common Use Cases
- Shared infrastructure across organizations
- Managed Service Provider (MSP) environments
- Enterprise environments with multiple organizations
Configure a Relationship
- Sign in to the ThreatLocker Portal
- Navigate to:
Organization Settings → Organization Relationships - Select an Organization
- Choose Can create policies where
- Source or Destination
- Select one or more Target Organizations
- Click Add Relationship
Best Practices
- Limit relationships to only what is necessary
- Review relationships regularly to maintain least privilege