Private Group for Password Vault Account

in kron pam, users who do not have the sapm group manager or sapm group system manager role cannot normally create a vault group for themselves users can be granted the authority to create a private group via the “single connect sapm authorization create own group” role definition in the portal role definition screen 1 navigate to policy > portal definition 2 open the realm definition tab 3 add the function group “ vault authorization to create own group” for the user group when a user with this role opens the vault screen, the “ private group ” will be listed under the section displaying “account groups” kron pam will create a group name using “user name” and list it under “private group” users cannot rename or delete this private group, but can create sub groups under this group and share them with other users by configuring permissions