Adding Permissions to Password Vault Accounts
While creating a Password Vault Account, you can define various authorization levels for those accounts. While admins create Password Vault accounts, these are utilized by other users. To grant permission rights to these users, you can configure their access levels accordingly.
Once you have created your Password Vault Account, click the "Options" button located near it. This action will open a pop-up window where you should select the "Permissions" option under the Account section. From there, you can assign permission levels to individual users or user groups as needed.
Types | Description |
READ_ONLY | These users only have the authority to see the dynamic password. |
FULL_CONTROL | Users who have full control permission are admins of Password Vault accounts. These users have full authority, such as resetting, changing the password, and giving permissions to users. |
READ_ONLY_FIRST_PART | These users only have the authority to see the first half of the dynamic password. |
READ_ONLY_SECOND_PART | These users only have the authority to see the second half of the dynamic password. |
One user can be a member of multiple user groups with different rights. In this case, the permission order is as follows:
FULL_CONTROL > READ_ONLY > READ_ONLY_FIRST_PART > READ_ONLY_SECOND_PART
This means that if a user has FULL_CONTROL and READ_ONLY rights, they will have the FULL_CONTROL right, which is superior. If they have the READ_ONLY_FIRST_PART and READ_ONLY_SECOND_PART rights, they will get the first part of the password.