# Tenant, Groups, and Organizations

## The Snyk hierarchy

Snyk has a hierarchy that allows you to control access to Snyk scanning and features.

<figure><img src="https://2533899886-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-MdwVZ6HOZriajCf5nXH%2Fuploads%2Fgit-blob-28210924f9bfea714e24955ae05d3454481faced%2FEnterprise.png?alt=media" alt=""><figcaption><p>The Snyk hierarchy for Enterprise plans</p></figcaption></figure>

* **Account:** Users must log in to their Snyk account to scan and view or modify any settings and scan
* [**Tenants**](https://docs.snyk.io/snyk-platform-administration/groups-and-organizations/tenant): A Tenant encompasses the entire Snyk workspace of your company, team, and individual users. You have one Tenant that encompasses all your Snyk work items: Groups, Organizations, Targets, Projects, and all their adjacent entities, for example, Snyk features, Tags, Collections, and so on.
* [**Groups**](https://docs.snyk.io/snyk-platform-administration/groups-and-organizations/groups): A Group encompasses your entire base of Snyk users. You have at least one Snyk Group. Large companies may have multiple Groups with multiple Organizations.
* [**Organizations**](https://docs.snyk.io/snyk-platform-administration/groups-and-organizations/organizations): An Organization represents a specific area, such as a team, in your business. Organizations can contain multiple Projects.
* [**Targets**:](https://docs.snyk.io/discover-snyk/getting-started/glossary#target) A Target represents the external resource that Snyk scans, like a repository. One Target can relate to multiple Projects. For example, a Target `https://github.com/examplesnyk/example` contains the Projects `package.json` and `Dockerfile.`
* [**Projects**](https://docs.snyk.io/snyk-platform-administration/snyk-projects)**:** A Project is established based on the item that Snyk scans for issues, such as a manifest file. Each Project shows the results of scans. You can configure your Projects to define how to scan for issues in that Project.

## Snyk features for user management

To manage users in your Tenant, Organizations, and Groups:

* You can use the Snyk API v1 to [provision users to Orgs](https://docs.snyk.io/snyk-platform-administration/user-management-with-the-api/provision-users-to-organizations-using-the-api) and [remove members from Groups and Orgs](https://docs.snyk.io/snyk-platform-administration/user-management-with-the-api/remove-members-from-groups-and-orgs-using-the-api).
* To find out when a new user was added or to analyze unexpected activity, you can [retrieve audit logs of user-initiated activity](https://docs.snyk.io/snyk-platform-administration/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group) by Organization or Group through the Snyk REST API.
* You can [use Organization access requests](https://docs.snyk.io/snyk-platform-administration/groups-and-organizations/organizations/requests-for-access-to-an-organization) to add users and [configure session length for a Snyk Group](https://docs.snyk.io/snyk-platform-administration/groups-and-organizations/groups/configure-session-length-for-a-snyk-group).