UniFi Fabrics for MSPs: What Changed in Site Manager
UniFi Fabrics for MSPs is not just another dashboard refresh. Ubiquiti is making Site Manager more serious for teams that manage many client sites, with shared administration, role-based controls, identity provider support, cross-site visibility, Canvas, orchestration, and API-driven workflows.
That is useful. It is also where MSPs get themselves in trouble.
The new Site Manager can make Ubiquiti easier to administer across clients. It does not decide who owns the console. It does not define which client changes are included in support. It does not magically turn every firewall policy cleanup into fixed-fee work.
So the practical question is not, "Should we use UniFi Fabrics?" It is this: where does Fabric administration sit in your client roadmap process, your quote scope, and your support agreement?
Quick answer
UniFi Fabrics is Ubiquiti's management layer for grouping multiple UniFi sites under shared administration and identity through Site Manager. For MSPs, the upside is cleaner multi-site visibility and control. The risk is assuming better administration automatically means better client ownership, permissions, scope, and billing.
What changed in Site Manager
Ubiquiti's April 2026 post, "The New Site Manager - Now Official", says Site Manager now brings sites into a unified Fabric with role-based controls, third-party identity provider support, visibility across sites, Canvas, orchestration, API-driven workflows, and license-free positioning.
Its January 2026 launch post, "Introducing UniFi Fabrics", framed Fabric as early access inside Site Manager. It also called out multi-tenant architecture, isolated customer environments, configuration orchestration, visibility, Zero Trust identity, device templates, and a Fabric API.
For an MSP, that changes the operating model in three useful ways:
- Multi-site visibility gets more serious. You can think in terms of client portfolios, not one controller at a time.
- Identity and roles matter more. Shared administration only works if permissions are strict, documented, and reviewed.
- Automation becomes a real planning topic. API workflows sound exciting until someone has to own the failure mode, alerting, and client approval trail.
The last point is where the margin risk lives. A cleaner admin layer can reduce repetitive work, but it can also create quiet revenue leakage if every new automation, template, and exception turns into free engineering.
The MSP decision table
| Decision area | Before Fabrics | With Site Manager and Fabrics | What MSPs still need to define |
|---|---|---|---|
| Multi-site administration | More controller-by-controller work | Shared Fabric model across sites | Which client environments belong in the standard model |
| Permissions | Local habits and one-off access patterns | Role-based controls and identity provider support | Who approves admin access, emergency access, and role changes |
| Client boundaries | Often buried in the MSP's internal process | Ubiquiti describes isolated customer environments | Who owns each site, console, billing relationship, and data trail |
| API work | Direct controller access was often required | Site Manager API paths can work through unifi.ui.com | Which reports, scripts, and automations are included in support |
| Quote scope | Network changes were easy to absorb casually | Standardization can be packaged more clearly | What is recurring support versus billable project work |
| Self-hosting | Self-hosted Network Application still exists in many MSP histories | UniFi OS Server is the modern MSP control-plane story | Whether each client is on a supported architecture for the work you plan |
This is why the Site Manager update belongs in sales operations, not just engineering chat. If you standardize on Ubiquiti, Fabrics affects discovery, scope, QBRs, quoting, and renewals.
The API story is useful, but not free labor
The strongest MSP-friendly angle may be the Site Manager API.
Art of WiFi's comparison of local admin, direct API keys, and Site Manager API keys says the Site Manager API connects through unifi.ui.com. That can avoid direct controller reachability and help with client sites behind CGNAT, dynamic IPs, restrictive firewalls, or many remote environments.
That is a real operational improvement. It also comes with constraints. The same article says the Site Manager API depends on Ubiquiti cloud, requires cloud adoption, supports UniFi OS consoles or UniFi OS Server, and does not support the legacy self-hosted Network Application through Site Manager.
So do not sell "API automation" as a vague included benefit. Define it like a project:
- Which data will be pulled?
- Which actions, if any, can be changed by script?
- Which clients are eligible?
- What happens when Ubiquiti cloud is unavailable?
- Who reviews API keys and admin roles?
- What reports are promised to the client?
If the answer is "we'll figure it out later," it is not ready for your managed services agreement.
What MSPs should quote differently
UniFi Fabrics makes standardization more attractive. It also raises the cost of sloppy scope.
If you are going to make UniFi a preferred network standard, put it in the roadmap. Not as "replace old network gear someday." As a real sequence: discovery, ownership cleanup, console architecture, firmware readiness, identity model, migration, acceptance criteria, and support handoff.
That belongs in your MSP project scoping process. It also belongs in the scope of work template, because client expectations will not respect your internal boundaries unless you write them down.
At minimum, quote these items separately when they apply:
- Ownership cleanup: moving from personal vendor accounts, ex-employee access, or mystery admin roles to documented control.
- Architecture migration: shifting from unsupported or legacy self-hosted patterns into a UniFi OS console or UniFi OS Server model where needed.
- Identity setup: connecting third-party identity provider support, SSO, role groups, and admin review cadence.
- Site standardization: templates, naming, site grouping, alert routing, and documentation.
- Reporting and API work: anything beyond basic health review, especially if the client expects custom dashboards or automated evidence.
- Exception handling: sites that cannot move yet because of business constraints, hardware age, compliance needs, or client politics.
This is also a margin conversation. If a network standard reduces ongoing support work, price the recurring agreement accordingly. If the standard creates migration labor, quote it. Our margin protection guide for MSP pricing and quoting gets into that split more directly.
Practical checklist before you standardize on UniFi Fabrics
Use this before putting Fabric work into a roadmap or quote.
- Confirm client ownership. Know who owns each site, each console, each admin role, and each recovery path.
- Verify platform eligibility. Ubiquiti help snippets reference UniFi OS v4.4 or newer for getting started with Fabrics. Treat that as a version check, not a guarantee that the client's environment is ready.
- Map permissions by role. Do not give every tech global admin because it is faster on Tuesday.
- Decide your identity model. If you use third-party identity provider support, document groups, exceptions, and offboarding.
- Name the cloud dependency. If the client will not accept Ubiquiti cloud dependency, do not bury that in a technical note.
- Separate support from projects. Firmware cleanup, controller migration, templates, reporting, and API work should have clear billing treatment.
- Define change approvals. A multi-site tool can make a bad change travel faster. Approval rules matter.
- Tie it to QBRs. Use the MSP QBR to show what changed, what risk dropped, and what still needs budget.
The checklist is boring on purpose. Boring is where MSP margin survives.
When Fabrics is probably a good fit
Fabrics makes sense when you manage a meaningful number of UniFi client sites and want a cleaner administrative model. It is especially relevant if your team spends too much time bouncing between environments, fighting remote controller access, or recreating the same network patterns by hand.
It also makes sense when the client base is mature enough to care about governance. Role-based controls, identity provider support, and audit-friendly operating habits are easier to sell when the client already understands that network administration is business risk, not just blinking lights.
Ubiquiti's July 2025 post on UniFi OS Server for MSPs matters here too. It describes UniFi OS Server as a way to self-host the control plane for many customer sites, while Site Manager acts as a cloud overlay with fleet health, role-based global admin access, SSO convenience, SD-WAN orchestration, policy objects, and audit trails.
That gives MSPs a more serious architecture conversation than "we like UniFi because the gear is affordable." Good. The industry needed that.
When Fabrics is not the answer
Fabrics is not the answer when the client refuses the cloud dependency required for Site Manager API workflows. It is not the answer when the environment is stuck on legacy self-hosted Network Application and nobody wants to fund the migration. It is not the answer when the MSP has no internal permission model and hopes the tool will create discipline by vibes.
It is also not a substitute for discovery. If you do not know what the client has, who owns it, what is failing, and what they can afford, Fabrics just gives you a cleaner place to be wrong.
Use it as part of a client standard when the fit is real. Put the work on the roadmap. Quote the migration honestly. Review the outcome in the QBR. Keep the exceptions visible.
Bottom line
UniFi Fabrics makes Site Manager more useful for MSPs because it treats multi-site administration, identity, orchestration, and API workflows as first-class operating concerns. That is a meaningful change from one-site-at-a-time administration.
But the business value depends on scope. If Fabrics reduces admin toil, capture that in your managed services model. If it creates migration, identity, reporting, or API work, quote it. If it changes client risk, put it in the roadmap and bring it back to the QBR.
Scopable is not a UniFi operations tool. It helps MSPs turn standards, gaps, budgets, and client priorities into roadmaps, quotes, and follow-through. If Fabrics becomes part of your network standard, that decision should show up before the client asks, "So what are we paying for next quarter?" Join Scopable early access if you want that roadmap-to-quote workflow in one place.
