Olympus Cloud - Platform Admin User Guide
Quick Summary (for RAG)
The Platform Admin Shell is the central administration console for the Olympus Cloud platform. Features include: multi-tenant architecture management (create, suspend, delete tenants), hierarchical RBAC with organization/location levels, gating engine for feature rollouts and A/B testing, SSO configuration with group mapping (SAML, OIDC), admin impersonation for support, audit logging with compliance reporting, integration management, and support tools. Target users: Platform Administrators, Support Engineers, DevOps, Security Team, Product Managers.
Version: 1.1 Last Updated: January 2026 Application: Olympus Cloud Platform Administration Access URL: https://dev.admin.olympuscloud.ai (development) | https://admin.olympuscloud.ai (production)
Table of Contents
- Overview
- Getting Started
- Dashboard
- Tenant Management
- User & Role Management
- Gating Engine
- Feature Flags
- Monitoring & Analytics
- System Configuration
- Audit & Compliance
- Integrations
- Support Tools
- Troubleshooting
Overview
The Olympus Cloud Platform Admin Shell is the central administration console for managing the entire Olympus Cloud platform. It provides tools for multi-tenant management, user administration, feature control, monitoring, and system configuration.
Target Users
- Platform Administrators: Full system access and configuration
- Support Engineers: User assistance and troubleshooting
- DevOps Engineers: Deployment, monitoring, and infrastructure
- Security Team: Audit logs, compliance, access control
- Product Managers: Feature flags and analytics
Key Features
- Multi-tenant architecture management
- Role-Based Access Control (RBAC)
- Gating engine for feature rollouts
- Real-time monitoring and alerting
- Audit logging and compliance reporting
- Integration management
- Support tools and diagnostics
Getting Started
Access Requirements
| Role | Access Level | MFA Required |
|---|---|---|
| Super Admin | Full access | Yes |
| Platform Admin | Most features | Yes |
| Support Engineer | Read + limited write | Yes |
| Viewer | Read-only | Recommended |
Logging In
- Navigate to the Admin Portal URL
- Enter your email address
- Enter your password
- Complete MFA verification (TOTP or hardware key)
- Select your working context (if multi-org)
Initial Setup
For new administrators:
- Complete security training
- Set up MFA on your account
- Review access policies
- Familiarize with audit requirements
- Request necessary permissions
Dashboard
Overview Widgets
The dashboard provides at-a-glance metrics:
System Health
- Service status (healthy/degraded/down)
- API response times
- Error rates
- Active user sessions
Business Metrics
- Total active tenants
- Daily/monthly active users
- Transaction volume
- Revenue metrics
Recent Activity
- New tenant signups
- Support tickets
- System alerts
- Deployment status
Quick Actions
- Create Tenant: Onboard a new business
- User Lookup: Find and manage users
- View Alerts: Check system notifications
- Run Reports: Generate analytics reports
Tenant Management
Understanding Tenants
A tenant represents a single business customer using the platform. Each tenant has:
- Unique identifier (tenant slug)
- One or more locations
- Users with assigned roles
- Subscription and billing
- Feature entitlements
Viewing Tenants
-
Navigate to Tenants in main menu
-
Use filters:
- Status (Active, Trial, Suspended, Churned)
- Subscription tier
- Region
- Creation date
-
Search by:
- Tenant name
- Tenant slug
- Owner email
- Phone number
Creating a Tenant
-
Click + New Tenant
-
Complete the form:
Basic Information
- Business name
- Tenant slug (URL-friendly identifier)
- Business type (restaurant, retail, etc.)
- Contact email and phone
Location Details
- Primary address
- Timezone
- Currency
- Tax configuration
Subscription
- Plan selection
- Billing cycle
- Trial period (if applicable)
- Payment method
-
Review and create
-
Send welcome email to owner
Managing Tenant Settings
General Settings
- Business name and branding
- Contact information
- Operating hours
- Tax settings
Features & Entitlements
- Enabled features
- Usage limits
- API quotas
- Storage allocations
Billing
- Current plan
- Payment history
- Upcoming invoices
- Payment method
Support
- Support tier
- Assigned account manager
- Support history
Tenant Actions
Deleting a tenant is irreversible and permanently removes all associated data, users, and configuration. Always export data first if the tenant may need it. This action requires Super Admin privileges and cannot be undone.
| Action | Description | Permission |
|---|---|---|
| Suspend | Temporarily disable access | Admin |
| Reactivate | Restore suspended tenant | Admin |
| Delete | Permanently remove (irreversible) | Super Admin |
| Export Data | GDPR data export | Admin |
| Transfer | Change ownership | Super Admin |
User & Role Management
User Administration
Viewing Users
- Go to Users section
- Filter by tenant, role, status
- Search by name, email, or ID
User Details
- Profile information
- Assigned roles
- Login history
- Active sessions
- Permission audit
User Actions
- Reset password
- Force logout
- Enable/disable account
- Modify roles
- View activity log
Role-Based Access Control (RBAC)
Understanding Roles
Roles define what users can do within the system:
| Role | Scope | Description |
|---|---|---|
| Owner | Tenant | Full control of their business |
| Manager | Location | Manage one or more locations |
| Staff | Location | Day-to-day operations |
| Customer | Global | End-user consumer account |
| Platform Admin | Platform | Administer multiple tenants |
Creating Custom Roles
- Go to Roles > Create Role
- Define role name and description
- Assign permissions by category:
- Orders: View, Create, Edit, Void
- Inventory: View, Edit, Order
- Reports: View, Export, Schedule
- Users: View, Manage, Delete
- Set role scope (tenant, location, global)
- Save and assign to users
Permission Matrix
Permission Structure:
├── Orders
│ ├── orders.view
│ ├── orders.create
│ ├── orders.edit
│ ├── orders.void
│ └── orders.refund
├── Inventory
│ ├── inventory.view
│ ├── inventory.edit
│ └── inventory.order
├── Reports
│ ├── reports.view
│ ├── reports.export
│ └── reports.sales
├── Users
│ ├── users.view
│ ├── users.create
│ ├── users.edit
│ └── users.delete
└── Settings
├── settings.view
└── settings.edit
Gating Engine
Overview
The Gating Engine controls feature availability across the platform:
- Feature Flags: Enable/disable features
- Canary Releases: Gradual rollouts
- A/B Testing: Split traffic experiments
- Kill Switches: Emergency feature disables
Feature Flags
Viewing Flags
- Navigate to Gating > Feature Flags
- See all flags with status
- Filter by environment, status, owner
Creating a Flag
- Click + New Flag
- Configure:
- Flag key (e.g.,
new_checkout_flow) - Display name
- Description
- Default state
- Environments
- Flag key (e.g.,
- Set targeting rules:
- All users
- Percentage rollout
- Specific tenants
- User attributes
- Save and deploy
Flag Lifecycle
Created → Testing → Canary → GA → Deprecated → Archived
Canary Releases
Gradual rollout process:
-
Create Canary
- Select feature flag
- Define initial percentage (1-5%)
- Set promotion criteria
-
Monitor
- Error rates
- Performance metrics
- User feedback
-
Promote or Rollback
- Increase percentage if healthy
- Rollback if issues detected
Canary Dashboard
- Active canaries
- Health metrics
- Promotion history
- Incident correlation
Kill Switches
For emergency scenarios:
- Go to Gating > Kill Switches
- Find the feature
- Click Disable Immediately
- Confirm action
- Monitor impact
- Investigate and resolve
- Re-enable when safe
Feature Flags
Managing Flags
Flag Types
| Type | Use Case | Example |
|---|---|---|
| Boolean | On/Off features | dark_mode_enabled |
| Percentage | Gradual rollout | new_ui_rollout |
| String | Configuration | payment_provider |
| JSON | Complex config | feature_limits |
Targeting Rules
Rules determine who sees a feature:
Simple Rules
- All users ON/OFF
- Percentage of users
- Specific tenant IDs
- User email patterns
Advanced Rules
{
"rules": [
{
"condition": {
"attribute": "tenant.plan",
"operator": "equals",
"value": "enterprise"
},
"variation": true
},
{
"condition": {
"attribute": "user.country",
"operator": "in",
"value": ["US", "CA", "UK"]
},
"variation": true
}
],
"defaultVariation": false
}
Environments
Flags can have different states per environment:
| Environment | Purpose | Typical State |
|---|---|---|
| Development | Local testing | Liberal flags |
| Staging | Pre-production | Production mirror |
| Production | Live users | Conservative flags |
Monitoring & Analytics
System Monitoring
Health Dashboard
- Service availability
- Response time percentiles
- Error rates by service
- Resource utilization
Alerts
- Configure thresholds
- Notification channels (Slack, email, PagerDuty)
- Escalation policies
- Incident management
Business Analytics
Key Metrics
- Daily/Monthly Active Users (DAU/MAU)
- Transaction volume and value
- Tenant growth rate
- Feature adoption rates
- Customer satisfaction (NPS)
Reports
- Standard reports (daily, weekly, monthly)
- Custom report builder
- Scheduled exports
- Dashboard embedding
Performance Metrics
API Performance
- Request latency (p50, p95, p99)
- Throughput (requests/second)
- Error rates by endpoint
- Geographic distribution
Application Performance
- Page load times
- Core Web Vitals
- User session duration
- Crash reports
System Configuration
Global Settings
Platform Configuration
- Default timezone
- Supported languages
- Currency settings
- Tax configurations
Security Settings
- Password policies
- MFA requirements
- Session timeouts
- IP allowlists
Integration Settings
- API rate limits
- Webhook configurations
- Third-party connections
Environment Management
Environment Variables
- View current configuration
- Update values (requires approval)
- History and rollback
Secrets Management
- API keys
- Database credentials
- Third-party tokens
- Rotation policies
Maintenance
Scheduled Maintenance
- Plan downtime windows
- Notify affected tenants
- Display maintenance banners
- Track maintenance history
Data Management
- Backup schedules
- Retention policies
- Archive configuration
- Data purging
Audit & Compliance
Audit Logs
All administrative actions are logged:
Log Contents
- Timestamp
- User performing action
- Action type
- Target resource
- Previous and new values
- IP address
- User agent
Viewing Logs
- Go to Audit > Activity Logs
- Filter by:
- Date range
- User
- Action type
- Resource type
- Export for compliance
Compliance Reports
Available Reports
- User access report
- Permission changes
- Data access log
- Security events
- GDPR data requests
Scheduled Reports
- Configure automatic generation
- Email distribution lists
- Retention periods
Data Governance
Data Subject Requests
- Right to access
- Right to erasure
- Right to portability
- Data correction
Processing Requests
- Go to Compliance > Data Requests
- Find pending requests
- Verify identity
- Process request
- Document completion
Integrations
Managing Integrations
Available Integrations
- Payment processors (Stripe, Square, Toast)
- Accounting (QuickBooks, Xero)
- Marketing (Mailchimp, SendGrid)
- Analytics (Google Analytics, Mixpanel)
- Support (Zendesk, Intercom)
Configuration
- Go to Integrations
- Select integration
- Enter API credentials
- Configure options
- Test connection
- Enable for tenants
Webhooks
Outgoing Webhooks
- Configure endpoints
- Select events
- Set authentication
- View delivery logs
Incoming Webhooks
- Generate webhook URLs
- View received payloads
- Configure processing
API Management
API Keys
- Generate keys
- Set permissions
- Configure rate limits
- Monitor usage
Documentation
- API reference
- Code examples
- SDK downloads
- Changelog
Support Tools
User Lookup
Quick user search and management:
- Enter email, phone, or user ID
- View user profile
- Check recent activity
- Reset password if needed
- Impersonate for debugging
Impersonation
All actions taken during impersonation are logged in the audit trail with the impersonating admin's identity. Impersonation sessions are time-limited and require MFA. Use impersonation only for diagnosing user-reported issues.
For troubleshooting user issues:
- Find user account
- Click Impersonate
- Confirm security prompt
- Act as user
- Exit impersonation
- All actions logged
Diagnostic Tools
Health Checks
- Service connectivity
- Database status
- Cache status
- Queue depth
Debug Mode
- Enable verbose logging
- Trace requests
- Export diagnostics
Knowledge Base
Access support resources:
- Common issues and solutions
- Runbooks
- Escalation procedures
- Training materials
Troubleshooting
Common Issues
| Issue | Solution |
|---|---|
| User can't log in | Check account status, reset password, verify MFA |
| Tenant not loading | Verify tenant status, check subscription |
| Feature not available | Check feature flags, verify entitlements |
| Performance issues | Check system health, review recent deployments |
| Data discrepancy | Review audit logs, check sync status |
Escalation Path
- Level 1: Check documentation and common issues
- Level 2: Contact on-call support engineer
- Level 3: Escalate to platform engineering
- Level 4: Executive escalation for critical issues
Getting Help
- Documentation: docs.olympuscloud.ai
- Support Slack: #platform-support
- On-Call: PagerDuty rotation
- Email: platform-support@nebusai.com
Appendix
Keyboard Shortcuts
| Shortcut | Action |
|---|---|
| Cmd/Ctrl + K | Global search |
| Cmd/Ctrl + / | Show shortcuts |
| G + T | Go to Tenants |
| G + U | Go to Users |
| G + G | Go to Gating |
| G + M | Go to Monitoring |
| G + A | Go to Audit |
Glossary
| Term | Definition |
|---|---|
| Tenant | A business customer account |
| Slug | URL-friendly identifier |
| Gating | Feature availability control |
| Canary | Gradual feature rollout |
| RBAC | Role-Based Access Control |
| MFA | Multi-Factor Authentication |
Contact
- Platform Team: platform@nebusai.com
- Security Team: security@nebusai.com
- Compliance: compliance@nebusai.com
Olympus Cloud Business OS - Platform Administration