Recycle Bin For Vault Accounts

kron pam keeps a record of deleted vault accounts and can restore them later a group called recycle bin is present on the vault screen under unassigned accounts when the user deletes any vault account, the deleted account will be automatically assigned to this group a general parameter called vault account recycle bin duration can be set in the system configuration manager screen this parameter stores the number of days after which the accounts moved to the recycle bin will be permanently deleted parameter value defined by user (must be day) the recyclebinjob over at the job scheduler can be set to run every day to check accounts in the recycle bin group and permanently remove those whose time has expired if the time has not expired yet for deleted accounts, the user is able to list and restore them if a vault's group has been deleted before restoring the vault then like the below figure if the user selects recover account from the recycle bin, and wants to change the vault account, there will be an account name field where the user can change the vault account name if the vault's group has been deleted before recovering the vault account, kron pam will move the vault account from recycle bin to unassigned accounts when the user finds the account they want to recover from the recycle bin group and clicks on the properties button, two buttons labeled restore account and permanently delete appear on the screen if the user clicks the "restore" button, the system makes the relevant account available for use again if the permanently delete button is clicked, kron pam permanently deletes the account, and there will be no way to recover it permanently delete action is allowed for the below users; pam admin owner of the account password vault admin (vault admin)