Permissions for Secrets

Permissions allow you to define which functions a user will be able to perform with secrets. There are three types of permissions:

• Owner: Allows a user to grant any permissions, view secret data (including the credentials of shared privileged accounts), delete secrets, edit secrets, use secrets, and configure remote password rotation.

• Editor: Allows a user to grant the Editor permission and the PAM User permission, view secret data, edit secrets, and use secrets.

• PAM User: Allows a user to use secrets.

NOTE: If you define a permission for a user group, all users belonging to this group will inherit this permission.