One organization, multiple tailnets

Tailscale has introduced a feature allowing organizations to create multiple tailnets under a single identity provider, providing flexibility for teams needing separation for testing, development, or customer management without adding complexity. Each tailnet can be customized with unique policies, tags, devices, and specific admin assignments, and they can be marked as "unlisted" to control visibility within the organization. This feature caters to enterprises using services like Google Workspace, Okta, or Microsoft Entra ID by allowing group references across tailnets without additional syncing. Additionally, Tailscale has launched an API for programmatically creating tailnets, which is ideal for developers looking to integrate Tailscale connectivity into applications securely. This API-generated tailnet, distinct from user-managed ones, is primarily for automation and integration scenarios. Both the multiple tailnets feature and the tailnet creation API are available through an alpha program, with plans for further enhancements like user assignments based on groups and self-serve tailnet creation in the admin console.