Password Vault Group
To view in a tree structure, and to define group-based permissions, Password Vault accounts can be grouped. Adding accounts to groups can be made mandatory by defining the following parameter in the System Configuration Manager:
Parameter Name | Parameter Value |
sapm.group.required | true |
Password Vault Groups are created in the Tree structure. Users with portal rights can view the created groups or create Password VaultGroups themselves. The ability to create a Password Vault Group is specific to the user. If other user groups are given permission, other users can see it.
Password Vault Groups with the same name can be created at different levels in the tree structure. For each Password Vault Group to be unique, case sensitivity is defined by the following parameter in the System Configuration Manager:
Parameter Name | Parameter Value |
sapm.allow.case.insensitive.group.name | false |
The following portal functions are used for Password Vault Group rights:
- SAPM Group Module Visibility: The members have the right to see the Vault tab. Account and group-related rights should be given individually
- SAPM Group Manager: The members have the right to see the Vault tab as well as the right to add new groups. Account and group-related rights should be given individually.
- SAPM Group System Manager: The members have the right to see the Vault tab as well as the right to add new accounts, groups, or sub-groups. Account and group-related rights should be given individually.